Trust Center
Public trust, legal, and operational readiness
This page is the public source of truth for GhostSync's Shopify access, AI boundaries, retention rules, support paths, and incident posture.
Last updated: April 3, 2026
Shopify access and runtime boundaries
GhostSync only requests the Shopify scopes required to read your product catalog, read and write inventory quantities, and resolve fulfilment locations.
AI is used during onboarding to generate supplier templates from sample files. Daily sync parsing, guardrails, delta calculation, and Shopify writes remain deterministic. Incidental PII in supplier files is never passed to OpenAI and is securely handled by our retention pipelines.
Onboarding: Supplier template generation from sample supplier files during onboarding.
Daily runtime: Daily processing and execution stay on deterministic code paths without LLM decisions.
Retention, deletion, and storage
- Raw supplier uploads
- Deleted after 24 hours.
- Merchant data
- Core merchant records are retained until a verified deletion request is processed. Some billing, support, security, audit, and provider-side records may follow separate retention rules.
- Account deletion
- The current deletion flow removes core merchant records immediately, but some supporting, provider-side, finance, support, and log records may follow separate retention or manual cleanup workflows.
- Data portability
- Self-serve export covers core profile data, supplier configurations, subscription history, and recent sync/billing logs. It provides operational portability, not a full system-wide historical archive.
- Encryption posture
- GhostSync stores platform data on AWS-managed infrastructure with encryption at rest.
Support channels and response targets
In-product sync support
Request help from actionable sync logs in the dashboard.
Open channel
Email support
General merchant help and product questions.
Open channel
Sales
Commercial, rollout, and enterprise readiness questions.
Open channel
Privacy & procurement
DPA, SCC, and EU/UK diligence path.
View details
Status page
Live service health and incident communication.
Open channel
Founder-led targets
- Critical incident acknowledgement
- Within 1 business day
- Merchant support first response
- Within 2 business days
- Sales first response
- Within 2 business days
Live platform health and incident updates are published on the GhostSync status page. These are founder-led response targets, not a contractual SLA.
Supported self-serve production geography: 50 United States plus DC, and Canadian provinces outside Quebec.
Recent release notes
March 23, 2026
Customer-facing ROI dashboard
Merchants can now see monthly and cumulative ROI metrics, including hours saved, stockout protections, and estimated revenue protected.
March 23, 2026
Self-serve data portability export
Merchants can export their GhostSync data in JSON or CSV from Settings with 24-hour rate limiting and sensitive-field redaction.
March 20, 2026
Public status page linked across product surfaces
GhostSync now links the live status page from the marketing site and dashboard so merchants have a public source of truth during incidents.
Incident history
GhostSync publishes live service issues on the status page. This trust center also keeps a public incident-history section when incidents are documented for long-form review.
No published incidents yet.
If GhostSync publishes a customer-facing incident review, it will appear here. Live communication remains available on the status page.