Privacy Policy

Last updated: March 13, 2026

TrueBeacon ("we", "us", or "our") is a Shopify analytics application that helps merchants understand their profitability. This Privacy Policy explains how we collect, use, and protect your information when you use our application.

1. Information We Collect

When you install and use TrueBeacon, we access the following data from your Shopify store through Shopify's secure API:

Store information: Store name, domain, email address, currency, and Shopify plan type
Order data: Order totals, line items, shipping costs, discounts, refunds, and payment status
Product data: Product names, variants, SKUs, prices, inventory levels, and cost-per-item
Customer data: Customer email addresses (hashed for analytics), order history, and purchase frequency — used solely for lifetime value and cohort analytics

We also collect information you provide directly:

Custom cost of goods sold (COGS) entries
Fixed and variable cost configurations
Ad spend data from connected advertising platforms
Margin targets and saved scenarios
Notification preferences and integration settings

2. How We Use Your Information

We use your data exclusively to provide the TrueBeacon analytics service:

Calculate profit, margins, and contribution margins across your orders and products
Generate your P&L statements, dashboards, and reports
Compute lifetime value, cohort retention, and break-even metrics
Power scenario modeling and budget optimization features
Send notification emails and Slack summaries you have configured
Improve and maintain the application

We do not sell, rent, or share your data with third parties for advertising or marketing purposes. We do not use your data to train machine learning models.

3. Data Storage & Security

Your data is stored securely in a PostgreSQL database hosted on Supabase (AWS US-East-1). We implement the following security measures:

All data transmitted over HTTPS/TLS encryption
Row-level security ensuring strict tenant isolation — you can only access your own store's data
Authentication handled through Shopify's secure OAuth 2.0 flow
API tokens for connected ad platforms encrypted with AES-256-GCM
No storage of Shopify API credentials on the client side

4. Third-Party Services

TrueBeacon integrates with the following third-party services to provide its features:

Shopify: Store data access via Shopify API
Vercel: Application hosting
Supabase: Database hosting
Resend: Transactional email delivery (weekly summaries, alerts)
Google Sheets API: Report export (only when you explicitly connect your Google account)
Ad platform APIs (Meta, Google, TikTok, Snapchat, AppLovin): Ad spend data import (only when you explicitly connect each platform)

Each third-party service has its own privacy policy. We only share the minimum data required for each integration to function.

5. Data Retention

We retain your data while the TrueBeacon app is installed on your Shopify store. When you uninstall the app, all data associated with your store is automatically deleted within 48 hours in compliance with GDPR requirements.

You can also request immediate data deletion at any time from Settings → Data & Privacy within the app, or by emailing us.

6. Your Rights

You have the right to:

Access your data — export all your data as JSON or CSV from Settings → Data & Privacy
Delete your data — request deletion from within the app or by contacting us
Rectify your data — update cost configurations, settings, and preferences at any time
Port your data — export your data in standard formats (JSON, CSV, Google Sheets)
Withdraw consent — disconnect any third-party integration or uninstall the app at any time

7. GDPR Compliance

TrueBeacon complies with the General Data Protection Regulation (GDPR) and responds to all Shopify-mandated data requests:

Customer data requests: We provide all stored data related to a specific customer upon request
Customer data erasure: We delete all data related to a specific customer upon request
Shop data erasure: We delete all data related to a store within 48 hours of app uninstallation

8. Cookies

TrueBeacon uses only essential cookies required for authentication and session management within the Shopify admin. We do not use tracking cookies, advertising cookies, or analytics cookies.

9. Storefront Impact

TrueBeacon is an admin-only application. We do not inject any scripts, tracking pixels, theme modifications, or frontend code into your storefront. Your store's performance and customer experience are completely unaffected.

10. Children's Privacy

TrueBeacon is a business-to-business application designed for Shopify store owners. We do not knowingly collect information from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or through the application. Continued use of TrueBeacon after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or your data, contact us at:

Email: support@truebeacon.ai

Website: www.truebeacon.ai