For Merchants

Privacy Policy

Last updated: February 2, 2026

This Privacy Policy describes how Immerso VTO ("the App") collects, uses, and processes data from Merchants ("you") and your customers ("End Users").

We act as a Data Processor on your behalf. We prioritize ephemeral data processing—meaning we hold End User data for the shortest time necessary to provide the service.

1. Information We Collect from Merchants

To install and operate the App, we collect the following information directly from your Shopify account:

  • Store Information: Shop URL, primary email address, store currency, and timezone.
  • Contact Information: Name and email address of the administrator installing the App.
  • Usage Metrics: Aggregated data on widget loads, try-on counts, and conversion events to provide you with analytics.

2. End-User Data (Your Customers)

This is the critical data we process to enable the Virtual Try-On experience.

Image Processing & Retention

  • Original User Photos: These are uploaded temporarily to our secure cloud. They are permanently deleted within 24 hours of upload.
  • Generated Results: The AI-generated "Try-On" images are retained for 7 days to allow users to view their history and share results. After 7 days, they are permanently deleted.
  • No Training: We do not use your customers' photos to train our public AI models.

3. Sub-processors & Infrastructure

We use industry-leading infrastructure to ensure security and speed. Our current sub-processors include:

  • Tier-1 Cloud Infrastructure (Global Secure Locations): For secure data storage, high-performance AI processing, and computation.
  • Authentication & Database Provider (Global Secure Locations): For secure identity management and real-time data synchronization.

4. GDPR & Data Rights

As a merchant, you have the right to request the deletion of all data associated with your store. Upon uninstallation of the App, we automatically purge store-specific configuration data within 48 hours, though we may retain anonymized billing logs for tax compliance.

Data Protection Officer

If you have specific questions regarding DPA (Data Processing Agreements) or security audits, please contact our team directly:
partner@immersoai.com