Privacy Policy

1. Introduction

Welcome to AuditTags ("we," "our," or "us"). We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our GA4 audit service at audittags.com.

2. Information We Collect

2.1 Information You Provide

• Email Address: Required to send you audit results and receipts
• Store URL: The Shopify store URL you want audited
• Payment Information: Processed securely by Stripe (we never see your full card details)

2.2 Automatically Collected Information

• Usage Data: IP address, browser type, device information
• Analytics Data: Via Google Analytics 4 to improve our service
• Marketing Attribution: UTM parameters, referrer, landing page (to understand how you found us)

2.3 Audit Data

• HTML content from your store's homepage and cart page
• Detected GA4 IDs, GTM containers, and consent management platforms
• Audit findings and recommendations

3. How We Use Your Information

• Provide Service: Process your payment and deliver audit results
• Communication: Send results, receipts, and occasional product updates (you can unsubscribe)
• Improvement: Analyze usage patterns to improve our service
• Compliance: Meet legal and regulatory requirements
• Fraud Prevention: Detect and prevent fraudulent activity

4. Data Sharing and Disclosure

We share your information only with:

4.1 Service Providers

• Stripe: Payment processing (PCI-DSS compliant)
• Supabase: Secure database hosting (SOC 2 Type II compliant)
• Resend: Email delivery service
• Vercel: Application hosting and infrastructure
• Google Analytics: Anonymous usage analytics

4.2 Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights and safety.

We do NOT sell, rent, or trade your personal information to third parties.

5. Data Retention

• Audit Results: Stored for 90 days, then automatically deleted
• Payment Records: Retained for 7 years for tax/accounting purposes
• Email Address: Retained until you request deletion
• Analytics Data: Retained for 14 months (Google Analytics default)

6. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Deletion: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Objection: Object to processing of your data for marketing purposes
• Withdraw Consent: Opt out of marketing emails at any time

To exercise these rights, email us at [email protected]

7. Data Security

We implement industry-standard security measures:

• HTTPS/TLS encryption for all data in transit
• Encrypted database storage (AES-256)
• Regular security audits and updates
• Strict access controls (service accounts, role-based access)
• Automated backups with encryption

However, no internet transmission is 100% secure. We cannot guarantee absolute security.

8. International Data Transfers

Your data may be processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses (SCCs) with service providers
• Compliance with GDPR, CCPA, and other data protection laws
• Adequate security measures in all jurisdictions

9. Cookies and Tracking

We use the following types of cookies:

• Essential Cookies: Required for site functionality (e.g., session management)
• Analytics Cookies: Google Analytics 4 to understand usage patterns
• Marketing Cookies: Track UTM parameters for attribution

You can disable cookies in your browser settings, but some features may not work properly.

10. Children's Privacy

Our service is not intended for individuals under 18 years old. We do not knowingly collect data from children. If we learn we have collected data from a child, we will delete it immediately.

11. Changes to This Policy

We may update this privacy policy periodically. Changes will be posted on this page with an updated "Last Updated" date. Significant changes will be communicated via email.

12. Contact Us

For privacy-related questions or requests, contact us at: