Supra Blog AutomationSupra Blog AutomationAI blog automation for ecommerce storesView pricingInstall on Shopify

Privacy Policy

This Privacy Policy explains how Supra Blog Automation collects, uses, stores, discloses, and protects information when merchants install or use the app, visit the public website, or communicate with us. By using the app, you acknowledge that information may be processed as described in this policy.

1. Scope

This policy applies to the public marketing site, the embedded Shopify app, operational emails, support communications, generated content workflows, scheduling workflows, and connected third-party services used to operate the product. It does not govern data practices of Shopify, your store theme, your payment providers, or any third-party service you use outside the app.

2. Information we collect

We may collect or receive the following categories of information when needed to provide the service:

  • Shop account details such as store name, domain, plan, subscription state, and billing-related subscription identifiers.
  • Store content data such as blogs, articles, products, collections, article handles, links, product images, and related publishing metadata.
  • Merchant-provided settings such as author names, default writing preferences, automation schedules, selected products, selected collections, and notification preferences.
  • Generated content data such as titles, article content, summaries, tags, image URLs, generated images, publication status, and failure logs.
  • Technical and operational information such as request metadata, timestamps, webhook events, quota state, error reports, and audit-style activity logs needed to operate or secure the app.
  • Support or contact information you provide when you email us or otherwise request assistance.

3. How we receive information

Information may be received directly from Shopify, directly from the merchant, from merchant actions inside the app, from Shopify APIs that the merchant authorizes, from emails sent to us, and from service providers used to operate app features such as AI generation, image generation, email delivery, hosting, logging, and database infrastructure.

4. How we use information

We use information only as reasonably necessary to operate, maintain, improve, secure, support, and enforce the app and its related services. This includes using information to:

  • Authenticate the store, maintain installation state, and manage access to the app.
  • Generate article titles, article content, internal links, product-aware content, summaries, tags, and images.
  • Schedule automations, enqueue blog post jobs, publish or draft articles, and keep status information synchronized.
  • Upload or transform images, store generated files, and return permanent store-ready asset URLs.
  • Send operational notifications, support responses, billing-related status updates, quota notices, and automation-related emails when enabled.
  • Monitor usage, troubleshoot failures, detect abuse, improve app quality, and enforce product limits or restrictions.
  • Comply with contractual, regulatory, legal, tax, accounting, fraud prevention, and security obligations.

5. AI, automation, and generated content

To provide AI-assisted features, we may send prompts, store context, selected product references, article settings, and related generation inputs to model providers or tooling providers acting on our behalf. Generated content may include article text, summaries, titles, internal links, product references, and generated or transformed images. We do not guarantee factual accuracy, legal compliance, originality, or fitness for a specific purpose of generated output, and merchants remain responsible for reviewing and approving content before it is published when review is desired.

6. Shopify data and merchant responsibility

The app uses Shopify data only to the extent required to provide requested features. Merchants are responsible for ensuring that the data they connect to the app, and the instructions they submit through the app, can lawfully be used for generation, scheduling, publication, and operational processing. If you provide personal data, customer data, or third-party content through prompts or uploaded assets, you represent that you have the rights and permissions needed for that use.

7. Cookies, logs, and analytics

The public site and related infrastructure may use standard technical logs, caching, and similar technologies for availability, security, diagnostics, and basic performance monitoring. We may also receive standard server-side metadata such as IP address, user agent, referrer, request path, and timestamps. We do not promise that the website is cookie-free, but we aim to limit collection to what is reasonably necessary to operate and secure the service.

8. Sharing and disclosure

We do not sell merchant data. We may disclose information only in the following limited situations:

  • To service providers and subprocessors that help us operate the app, including hosting, database, logging, email, AI, image, and infrastructure providers.
  • To Shopify and Shopify-connected systems where disclosure is required to install, authenticate, bill, publish, or operate the app.
  • To comply with law, regulation, lawful requests, court orders, fraud prevention, dispute handling, or protection of rights, safety, and property.
  • In connection with a merger, acquisition, financing, restructuring, sale of assets, or similar corporate transaction, subject to appropriate confidentiality treatment where reasonably practicable.
  • With your consent or at your direction.

9. International processing

Information may be processed in countries other than the merchant’s jurisdiction, including countries where our vendors or infrastructure providers operate. By using the app, you understand that information may be transferred, stored, and processed internationally, subject to the technical and contractual protections we choose to apply.

10. Data retention

We retain data for as long as reasonably needed to provide the service, operate automations, maintain records, enforce terms, resolve disputes, satisfy legal obligations, investigate abuse, and support merchant requests. We may delete, anonymize, aggregate, or irreversibly de-identify information when detailed data is no longer needed. Backup or log data may persist for a limited period after primary deletion.

11. Security

We use reasonable technical and organizational measures intended to protect information against unauthorized access, misuse, alteration, loss, and disclosure. No system is perfectly secure, no transmission method is entirely risk-free, and we do not guarantee absolute security, uninterrupted protection, or immunity from breach, abuse, or compromise.

12. Merchant communications and notifications

If you enable notifications or provide a contact email, we may send operational messages related to app activity, automations, quota limits, support, legal notices, or account issues. These messages may still be sent when needed for service operation or legal compliance even if promotional communications are not used. Unsubscribe options apply only where legally required or where we choose to offer them.

13. Data subject rights and requests

Depending on applicable law, merchants may have rights to request access, correction, deletion, restriction, objection, or portability. We may need to verify identity, confirm authority, and limit or deny requests where permitted by law, security needs, contractual requirements, recordkeeping duties, or the rights of others. Requests can be sent through the contact page.

14. Children

The app is intended for business use and is not directed to children. We do not knowingly build the service for use by children or intentionally collect information from children through the app.

15. Third-party links and services

The website, app, generated content, and operational emails may include links to third-party services, including Shopify, app listing pages, documentation, support systems, or provider-hosted resources. We are not responsible for the privacy, security, availability, or content practices of third parties.

16. Policy changes

We may update this Privacy Policy from time to time by posting a revised version. Changes become effective when posted unless a later date is stated. Continued use of the app after an update may be treated as acceptance of the revised policy to the extent permitted by law.

17. Contact

If you have questions about this policy, want to make a privacy request, or need to contact us about data handling, use the contact page.

Supra Blog AutomationSupra Blog Automation

AI blog automation for ecommerce stores. Generate, schedule, publish, and illustrate store-ready blog posts from one workflow.

FeaturesPricingFAQPrivacyTermsContact© 2026 Supra Blog Automation