Privacy Policy

This Privacy Policy describes how MochaDash ("we", "us", or "our") collects, uses, and protects your information when you use our analytics dashboard service.

Information We Collect

We collect information from the following sources when you connect your accounts:

• Shopify: Order data, product information, customer information (name, email, purchase history), inventory levels, and return/refund data.
• Google Analytics 4: Session data, traffic sources, user behavior, conversion events, and page performance metrics.
• Google Ads: Campaign performance, ad spend, clicks, impressions, conversions, and ROAS metrics.
• Klaviyo: Email campaign metrics, flow performance, subscriber data, and engagement metrics.

We also collect account information you provide directly, including your name and email address.

How We Use Your Information

We use your information to:

• Display analytics dashboards showing your ecommerce performance
• Generate and deliver scheduled email reports to you and your team
• Provide insights and recommendations based on your data
• Improve our service and develop new features
• Communicate with you about your account and service updates

Data Storage and Security

Your data is stored in secure, encrypted databases hosted on reputable cloud infrastructure. We implement industry-standard security measures including:

• Encryption in transit (TLS/SSL) for all data transfers
• Encryption at rest for stored data
• Secure authentication with JWT tokens and httpOnly cookies
• Regular security audits and monitoring

Third-Party Services

We use the following third-party services to operate MochaDash:

• Google Analytics API and Google Ads API: To retrieve your analytics and advertising data
• Shopify API: To retrieve your store, order, and product data
• Klaviyo API: To retrieve your email marketing data
• SendGrid: To deliver email reports and notifications
• Stripe: To process subscription payments
• Sentry: For error monitoring and performance tracking

Data Retention

We retain your data for as long as your account is active. When you delete your account or uninstall the Shopify app, we will delete your data within 30 days, unless we are required to retain it for legal or regulatory purposes.

Your Rights

You have the right to:

• Access: Request a copy of the data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Portability: Request your data in a portable format

To exercise these rights, please contact us using the information below.

Cookies

We use essential cookies for authentication (session cookies). These cookies are necessary for the service to function and cannot be disabled. We do not use tracking cookies or advertising cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date.