Privacy Policy
Last updated: 12 July 2026
Ignite AI Reviews ("the app", "Ignite", "we", "us") is a Shopify application that generates product-review content and renders it on a merchant's storefront, at the explicit instruction of the merchant who installs it. This policy explains what we access, why, how long we keep it, and how we protect and delete it.
Who controls the data
The merchant is the data controller of their store data. We act as a data processor that reads a merchant's own product information and writes AI-generated review content back to that merchant's own products. We do not sell data, use it for advertising, or use store data to train models.
What we access
- Product content you ask us to generate reviews for — the product's title, description, specifications and public page text. This is the same information a shopper reads on the page.
- A Shopify Admin API token for your store (scoped to writing product content and files), used to save the generated reviews and author images back to your products.
- Optionally, an AI provider API key you enter (Anthropic / OpenAI / Gemini) in "bring your own key" mode. This key is transmitted per request and held only in memory to make the AI call — it is never stored on our servers and never rendered on your live storefront.
Ignite does not access, read, store or process your customers' personal information — no customer names, emails, addresses, or order history. The reviews it creates are AI-generated marketing content, not records of real customers.
How we use it
We use product content solely to research the product's benefits and purchase objections and to write review copy and generate matching author photos, then save that content to your product metafields and Shopify Files. We do not use it for any other purpose.
How we protect it
- All requests are transmitted over HTTPS/TLS only.
- The backend is a locked-down Cloudflare Worker; requests are authenticated and the API returns no information to unauthenticated callers (anti-enumeration).
- Bring-your-own AI keys are held only in memory for the duration of a single request and are never logged or persisted.
- Your Shopify Admin token is held as an encrypted server-side secret.
Data retention & deletion
- Generated review content is stored on your own products (as metafields) and author images in your own Shopify Files — you own and control them, and can delete them at any time from your store.
- Because we do not collect or store any customer personal data, Shopify's mandatory compliance
webhooks (
customers/data_request,customers/redact,shop/redact) have no customer PII to return or erase;shop/redactremoves your store's stored connection. - Uninstalling the app or emailing [email protected] removes your stored connection.
Sub-processors
The app runs on Cloudflare (compute, storage, DNS, image generation). When you generate reviews, the product content is sent to the AI provider you choose (Anthropic, OpenAI or Google) to produce the text and, optionally, author images. No other third parties receive your data.
Your rights
You may request access to, correction of, or deletion of your data at any time by emailing [email protected]. We respond to GDPR/CCPA requests within the timeframes required by law.
Contact
Questions about this policy: [email protected].