Table Pilot (“we”, “us”) is an app for Shopify merchants. This policy describes what data we collect, why, how we store it, and your rights. It applies to every merchant who installs the app and every storefront visitor whose browser renders a Table Pilot table.
1. Data we collect from merchants
When you install Table Pilot, we store the following in our database:
- Your Shopify shop domain (e.g.
my-store.myshopify.com) - Shopify-provided access tokens required for the API scopes you grant
- Your app plan (Free / Starter / Pro) and AI credit balance
- Tables you create: columns, rows, design settings, conditional rules, and translations you explicitly enter
- AI usage logs (action type, timestamp, credits charged) — no prompt contents stored
- Storefront analytics events (see section 2)
2. Data we collect from your storefront visitors
When a Table Pilot table renders on your storefront, the theme block emits the following events to our server:
- Event type (
impression,view_seconds,button_click,link_click) - The short ID of the table the event fired on
- An ephemeral session ID generated in
sessionStorage(cleared when the visitor closes their tab — never persisted across sessions) - The visitor’s locale, device family, and ISO country code derived from IP
- For link / button clicks: the host portion of the clicked URL (no query strings, no path)
We do not collect: names, emails, addresses, order history, payment information, cookies that persist across sessions, or any personally identifiable information.
3. AI and third-party processing
When you use Table Pilot’s AI features (Generate rows, Paste and structure), the prompt you provide — plus your table’s column schema and up to three existing rows as style examples — is sent to OpenAI (gpt-4o-mini). We do not send your customer data to AI providers.
4. Data retention
- Merchant data is kept for as long as the app is installed.
- When you uninstall, Shopify sends us a
shop/redactwebhook 48 hours later. At that point, all your merchant data is permanently deleted via cascade-delete from our database. - Storefront analytics events are kept for 180 days, then aggregated into anonymous counters.
- Session tokens expire per Shopify’s session lifetime (60 minutes idle).
5. Your rights
Under GDPR and similar laws, you can:
- Request a copy of your data (
customers/data_requestwebhook) - Delete a specific customer’s data (
customers/redactwebhook) - Delete all your shop’s data (uninstall +
shop/redact)
We respond to these webhooks automatically, within the 30-day compliance window Shopify requires. Email info@webdevarif.com for any other data request.
6. Subprocessors
We use the following third-party services:
| Provider | Purpose | Data shared |
|---|---|---|
| Railway | App hosting | All app data |
| PostgreSQL on Railway | Database | All app data |
| OpenAI | AI features | Prompts + table schema (opt-in via AI buttons) |
| Shopify | Authentication, billing, webhooks | Shop domain + tokens |
7. International data transfers
Data is hosted on Railway’s servers. If you’re in the EU, cross-border transfers are covered by Standard Contractual Clauses — our Data Processing Addendum covers the details.
8. Changes to this policy
We’ll update the “Last updated” date whenever this policy changes. For material changes, we’ll notify installed merchants via email at least 30 days before the change takes effect.
9. Contact
Privacy questions and data requests: info@webdevarif.com
General support: info@webdevarif.com