Privacy Policy
Last updated: March 19, 2026
BetterReviews ("we", "our", "us") operates the BetterReviews platform, a Shopify app that helps merchants collect and display product reviews. This policy explains how we collect, use, and protect personal data.
1. Data We Collect
From Customers (via Shopify stores)
- Email address — to send post-purchase review request emails and match reviews to verified buyers
- First name — to personalize review request emails and display verified buyer attribution
- Review content — ratings, titles, text, and uploaded photos/videos submitted by customers
- Order data — order IDs, fulfillment status, and product line items to trigger post-purchase review request emails and verify purchases for verified buyer badges
- Conversation transcripts — full AI-guided conversation messages when using the chat-based review flow
- AI analysis data — quality scores, sentiment analysis, and content classifications generated from review content
From Merchants
- Account email — for authentication and communication
- Store information — store name, domain, subscription status
- Shopify access token — encrypted, used for metafield writes and order verification
Analytics Events
- Web pixel events — product views, widget interactions, and purchase events
- We collect only opaque identifiers (
customer_id,order_id) — no email, name, or other personally identifiable information - Analytics data cannot be reverse-mapped to individuals without Shopify API access
- Collection respects Shopify's Customer Privacy API consent signals
2. How We Use Data
- Review collection — sending post-purchase review request emails to customers
- Verified buyer badges — matching reviewers to orders to display trust signals
- Review display — showing reviews on product pages via theme extensions
- Product analytics — aggregated metrics on review performance and product page optimization
- AI conversations — guiding customers through detailed review submissions
- AI-powered review analysis — quality assessment, content moderation, and spam detection
We do not sell personal data. We do not use personal data for advertising or profiling.
3. Lawful Basis for Processing (GDPR)
- Legitimate interest (Article 6(1)(f)) — review submission is voluntary, and customers reasonably expect their data to be processed for the purpose of publishing their review on the merchant's store
- Contract performance (Article 6(1)(b)) — when a customer responds to a review request email, processing is necessary to fulfill that request
Under the legitimate interest basis, no consent checkbox is required at the point of submission. Transparency is provided by this privacy policy, which is linked from all review submission forms.
4. Data We Do NOT Collect
- Physical addresses
- Phone numbers
- Payment or credit card information
- Browsing history outside of the merchant's store
5. Data Retention
| Data Type | Retention Period |
|---|---|
| Reviews (content) | Until merchant deletes or store uninstalls |
| Customer PII in reviews | Until redaction request (within 30 days) |
| Review requests | 90 days after sending |
| Conversation transcripts | Until merchant deletes or store uninstalls |
| AI analysis data | Until merchant deletes or store uninstalls |
| Analytics events | 13 months |
| Compliance exports | 90 days |
| Database backups | 7-day rolling |
6. Third-Party Processors
| Provider | Purpose | Data Shared |
|---|---|---|
| Google Workspace | Business email (inbox) | Email correspondence content |
| Resend | Transactional email delivery (primary) | Recipient email, email content |
| AWS SES | Transactional email delivery (fallback) | Recipient email, email content |
| OpenAI | AI conversation guidance and review analysis | Review text, conversation messages (no email or name) |
| Anthropic | AI conversation guidance and review analysis | Review text, conversation messages (no email or name) |
| Tinybird | Analytics pipeline | Opaque IDs only (no PII) |
| Cloudflare R2 | Media storage | Uploaded images/videos |
| Hetzner | Infrastructure hosting | All application data (encrypted) |
7. Security Measures
- AES-256-GCM encryption for customer PII and Shopify access tokens at rest
- TLS 1.3 for all data in transit
- bcrypt password hashing with strong password requirements
- SHA-256 one-way hashing for API keys
- Per-store rate limiting
- Database accessible only via internal network (no public access)
8. Your Rights (GDPR)
If you are located in the European Economic Area, you have the right to:
- Access — request a copy of your stored data
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your data
- Restriction — request limits on how your data is processed
- Portability — receive your data in a machine-readable format
- Objection — object to processing of your data
To exercise these rights, contact the Shopify store where you made your purchase. The merchant will submit your request through Shopify, which triggers our automated GDPR webhook handlers. We process all data requests and redaction requests within 30 days.
9. Your Rights (CCPA)
If you are a California resident, you have the right to:
- Know what personal information we collect and how it is used
- Request deletion of your personal information
- Opt out of the sale of your personal information
We do not sell personal information. To exercise your rights, contact the Shopify store where you made your purchase, or email us directly.
10. Cookies
BetterReviews does not set first-party cookies on merchant storefronts. Our web pixel uses Shopify's built-in analytics infrastructure, which respects the merchant's cookie consent configuration.
11. Children's Privacy
BetterReviews is not directed at children under 13. We do not knowingly collect personal information from children.
12. Changes to This Policy
We may update this policy from time to time. Material changes will be communicated via the app dashboard. The "last updated" date at the top reflects the most recent revision.
13. Contact
For privacy inquiries: privacy@betterreviews.app
BetterReviews is operated by Daniel Studzinski.