Privacy Policy

Signal CRO — Shopify App

Last updated: March 2026

Overview

Signal CRO ("we", "our", or "the app") is a Shopify app that helps merchants understand and improve their store's conversion rate. This policy explains what data we collect, how we use it, and your rights regarding that data.

By installing Signal CRO, you agree to the practices described in this policy.

Data We Collect

Storefront Behavioural Events

When a visitor browses your store, our web pixel collects anonymous behavioural events including:

  • Pages visited and page URLs
  • Products viewed, added to cart, and purchased
  • Checkout funnel progression (started, completed)
  • Search queries submitted
  • Device type (mobile, desktop, tablet)
  • Anonymous session identifier (randomly generated per session)

We do not collect visitor names, email addresses, IP addresses, or any other personally identifiable information through the pixel. Session identifiers are random strings with no link to individual identity.

Order Data

We store order metadata from your Shopify store including order totals, product line items, currency, fulfilment status, and order creation dates. We use an internal customer identifier (Shopify's numeric customer ID) to detect repeat purchase patterns — we do not store customer names, emails, or addresses.

Product Data

We store product titles, types, prices, image counts, tags, and review counts to power product-level recommendations.

Store Configuration

We store your Shopify store domain, access token (for API calls), plan tier, currency, and timezone. This is necessary to operate the app.

How We Use Your Data

  • Funnel analytics — We aggregate behavioural events to compute conversion rates, drop-off points, and session counts across your funnel stages.
  • CRO recommendations — We analyse your funnel metrics, product performance, and order patterns to surface actionable improvement opportunities.
  • Anomaly detection — We monitor daily metrics for unusual changes (e.g. a sudden drop in conversion rate) and alert you when they occur.
  • Benchmarking — We compare your store's performance against general e-commerce benchmarks to contextualise your metrics.

We do not sell your data, use it for advertising, or share it with third parties except as described below.

Third-Party Services

Anthropic Claude API

We use the Anthropic Claude API to generate the written detail and action plans for CRO recommendations. When generating a recommendation, we send anonymised metric data (conversion rates, funnel numbers, product names and prices) to Anthropic's API.

We do not send any customer personal data, visitor identifiers, or order-level data to Anthropic. Only aggregated metrics and product catalogue information are included.

Anthropic's privacy policy is available at anthropic.com/privacy.

Supabase (Database)

Your store data is stored in a PostgreSQL database hosted on Supabase. Supabase is SOC 2 Type II certified and stores data in the United States. Their privacy policy is at supabase.com/privacy.

Railway (Hosting)

The Signal CRO application server is hosted on Railway. Application logs may contain store domain names and anonymised event metadata. Railway's privacy policy is at railway.com/legal/privacy.

Data Retention

  • Active stores — Data is retained for as long as your store has Signal CRO installed.
  • After uninstallation — Your store record is marked as uninstalled but retained for 48 hours to allow re-installation without data loss. After 48 hours, Shopify sends us a deletion request and we permanently delete all associated data.
  • Customer data deletion — When a customer requests data deletion through your Shopify store, we delete their customer record and associated order data within the timeframe required by GDPR (30 days).

GDPR Compliance

Signal CRO is compliant with the General Data Protection Regulation (GDPR) and Shopify's mandatory privacy requirements:

  • Customer data requests — We handle customers/data_request webhooks from Shopify and log all data we hold for a customer on request.
  • Customer data deletion — We handle customers/redact webhooks and permanently delete customer records and associated orders.
  • Shop data deletion — We handle shop/redact webhooks and permanently delete all store data within the required timeframe after uninstallation.
  • Minimal data collection — We collect only what is necessary to provide the service. No personal visitor data is collected through the storefront pixel.

Your Rights as a Merchant

As a Shopify merchant using Signal CRO, you have the right to:

  • Access your data — Contact us to request a summary of all data we hold for your store.
  • Delete your data — Uninstalling Signal CRO initiates the data deletion process. All data is permanently deleted within 48 hours after Shopify sends the deletion confirmation.
  • Correct inaccuracies — Contact us if you believe any store data we hold is inaccurate.
  • Data portability — Contact us to request an export of your store's analytics data in a machine-readable format.

Security

We take reasonable technical and organisational measures to protect your data:

  • All data is transmitted over HTTPS/TLS
  • Database access is restricted to the application server via connection pooling with authentication
  • Shopify access tokens are stored encrypted at rest in our database
  • Webhook payloads are verified using HMAC signatures before processing

Changes to This Policy

We may update this policy as the app evolves. Material changes will be communicated via the Shopify admin notification system. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

For privacy-related questions, data requests, or concerns, contact us at: privacy@signal-cro.com