Privacy Policy

Last updated: March 30, 2026

Thank you for choosing Risify, a Shopify app developed and operated by Solverhood OÜ (Estonia) and StatsUp, LLC (USA).

This Privacy Policy explains how we collect, use, share, and protect personal data when you use our app. We are committed to protecting your privacy and complying with applicable data protection regulations including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

This Privacy Policy applies to merchants who install and use the Risify app on their Shopify stores.

The Information We Collect

From Our Clients (Merchants)

Upon app installation and during its use, we collect the following information from your Shopify store:

Store, merchant and app usage information:

• Store URL
• Store plan
• Store domain
• Date of installation, uninstallation
• Store owner name
• Email address
• Country

We collect data on how the app is used to help us improve functionality, troubleshoot issues, and deliver a better user experience.

• Operations performed inside the app (schema configuration, breadcrumb settings, FAQ management, meta tag editing, audit results, keyword tracking)
• Payment history (excluding payment details; all billing is managed by Shopify)
• Contact emails via Support page

Store content data:

To deliver our core SEO and structured data services, Risify reads and processes the following store content:

• Product and collection data (titles, descriptions, images, variants, tags, types)
• Online store page content
• Theme data (to detect app embed status and theme compatibility)
• Metaobject definitions and metaobjects
• Locale and language settings

This store content data is used solely to power Risify’s features such as schema markup generation, breadcrumb configuration, FAQ management, meta tag optimization, and store audits.

AI-generated content:

When you use the AI Content Agent (FAQ generation, meta tag generation), your product and collection data is sent to third-party AI services to generate content. Only store content data (product titles, descriptions, collection names, etc.) is sent to these services - no personal data or visitor data is included in these requests.

Store Visitors (End Users)

Risify does not collect, process, or store any data from your store visitors. Risify’s storefront components (breadcrumbs, schema markup, FAQ displays) render as static HTML and JSON-LD code on your store pages without any tracking scripts, cookies, or data collection mechanisms.

How We Use the Data

We use the collected data to:

• Deliver our core SEO, structured data, and content optimization services
• Generate schema markup, breadcrumbs, and structured data for your store
• Power the AI Content Agent for FAQ and meta tag generation
• Provide store audit results and keyword tracking
• Provide customer support and manage accounts
• Monitor and improve app performance

We collect and process data to ensure that Risify functions properly, delivers value to our clients, and complies with applicable privacy laws such as the GDPR and CCPA.

Your Rights

If you are a European resident, you have the right to:

• Access the data we hold about you
• Request corrections or deletion

To exercise your rights, go to your Risify App > Settings > Account or contact us at [email protected].

Please note that personal data will be transferred outside of Europe, including the US.

Shopify API Scopes

Risify integrates with Shopify and requests certain API scopes to function. These scopes allow Risify to read and write specific types of store data to enable SEO optimization, schema markup, and content management services. Below is a breakdown of each scope, what data it involves, and how Risify uses it:

Products and Collections (read and write): Enables us to read product and collection data including titles, descriptions, images, variants, tags, and types. This is essential for schema markup generation, AI content generation, breadcrumb configuration, meta tag management, and store audits. Write access allows Risify to save generated meta tags, FAQs, and other content directly to your products and collections.

Online Store Pages (read and write): Allows us to read and manage online store page content. This is used for meta tag optimization, schema generation, and store audit functionality.

Metaobject Definitions and Metaobjects (read and write): Enables Risify to create and manage structured content using Shopify’s metaobject system. This is used to store FAQ data, breadcrumb configurations, and other structured content generated by Risify.

Themes (read and write): Required to detect whether Risify’s App Embed blocks are enabled on your live theme and to ensure compatibility. Write access is used to manage app embed settings.

Locales (read): Allows Risify to read your store’s language and locale settings to ensure schema markup and generated content is configured correctly for your store’s language.

Read more here: Shopify API access scopes

Data Security & Transfers

We collect contact information provided by the store owner to communicate relevant updates, provide support, and share product-related information or promotional content. You can opt out of marketing communications at any time.

All data is stored and processed in the United States using AWS infrastructure.

• Third-Party Services: We share data only with trusted third-party providers necessary for delivering the app’s core features. For AI content generation features, product and collection data (not personal data) is sent to third-party AI services.
• No Unrelated Sharing: We do not sell, rent, or share your personal data with third parties for unrelated advertising or commercial purposes.
• Legal Requirements: We may disclose information if required to comply with legal obligations or to protect our legal rights.

We implement strong security measures to protect data:

• AWS cloud hosting with encryption in transit and at rest
• AWS IAM for access control
• Shopify’s secure login and optional 2FA
• HTTPS for all data transfers
• Internal access is restricted to authorized personnel only

All payments and billing are handled via Shopify, which is PCI DSS compliant.

Data Retention

We retain data only for as long as necessary:

• Merchant data is retained for the duration of the service agreement
• Store content data processed by Risify (such as generated FAQs, meta tags, and schema configurations) is retained for the duration of the service agreement to ensure continuity of service
• Clients may request deletion of their data at any time via Risify Settings

If you would like us to delete your personal data from our systems, please contact us at [email protected]. We will respond to your request in a timely manner and ensure your data is securely deleted, unless retention is required by law.

Children’s Privacy

We do not knowingly collect or process personal data from individuals under the age of 16, unless we have obtained verifiable consent from a parent or legal guardian, as required under Article 8 of the GDPR and other applicable laws.

If we become aware that we have collected personal data from a child without the necessary consent, we will take immediate steps to delete that information.

Changes

We reserve the right to update this policy periodically. Updates will be posted here, and significant changes will be communicated via email.

Contact Us

Risify is developed and maintained by two partner entities:

Solverhood OÜ
Parnu Mnt 12, Tallinn, Estonia
Registry Number: 14383462
VAT ID: EE102030321

StatsUp, LLC
30 North Gould Street, STE R, Sheridan, WY 82801, United States
Tax ID: 38-4336557

Together, we operate globally to serve Shopify merchants while complying with data protection laws.

If you have any questions about this policy or your personal data, you can reach us at: [email protected]