Privacy Policy

1. Who We Are

Raisolve, Inc. ("Raisolve", "we", "us", or "our") operates the website raisolve.com and the Raisolve AI customer support platform. Our registered address is available upon request at legal@raisolve.com.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Email address and password (hashed)
• Name and business name
• Payment information (processed via Stripe — we do not store card details)
• Shopify store URL and access token (encrypted at rest)

2.2 Gmail Data

With your explicit authorization through Google OAuth, Raisolve accesses your Gmail account to:

• Read incoming customer support emails
• Send replies on your behalf
• Access email threads for context

Gmail data is processed exclusively to provide the Raisolve service. We do not use Gmail data to serve advertisements. We do not allow humans to read your Gmail data except when explicitly requested for debugging with your consent. This usage complies with Google's API Services User Data Policy, including the Limited Use requirements.

2.3 Shopify Data

We access your Shopify store data including orders, customers, products, and fulfillment status solely to generate accurate AI responses to your customers. This data is not shared, sold, or used for any purpose beyond service delivery.

2.4 Usage Data

We collect anonymized usage data including pages visited, features used, and error logs to improve the service. This data cannot be used to identify you personally.

3. How We Use Your Information

We use your data to:

• Operate and improve the Raisolve platform
• Generate AI-powered support replies on your behalf
• Sync order and customer data from Shopify
• Send service notifications and billing emails
• Respond to support requests
• Comply with legal obligations

We do not use your data to train third-party AI models, sell to data brokers, or deliver targeted advertising.

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:

• Contract performance: Processing necessary to provide the Raisolve service
• Legitimate interests: Security monitoring, fraud prevention, service improvements
• Legal obligation: Tax records and compliance requirements
• Consent: Gmail access and marketing communications (withdrawable at any time)

5. Data Sharing

We share data only with these categories of service providers, all bound by Data Processing Agreements:

• Supabase — Database and authentication (EU/US data centers)
• Anthropic — AI inference for reply generation (data not retained for training)
• Stripe — Payment processing (PCI DSS Level 1)
• Vercel — Hosting infrastructure
• Google — Gmail API integration

We never sell your personal data. We will disclose data when required by law or court order.

6. International Data Transfers

Raisolve stores data primarily in the United States and European Union. Transfers from the EEA to the US are governed by Standard Contractual Clauses (SCCs) approved by the European Commission.

7. Free Trial and Credits

When you register for Raisolve, you receive:

• 30-day free trial — full access to the platform, no credit card required
• 1,000 free tokens — credited to your account upon registration to use any AI features

Free trial tokens and complimentary credits are associated with your account and are subject to our Terms of Service. We process token usage data to track consumption and ensure fair use of the platform. Token usage data is retained for 24 months as part of your billing records.

8. Data Retention

• Account data is retained while your account is active
• Email data is retained for 24 months, then purged automatically
• Billing records are retained for 7 years (legal requirement)
• You may request deletion at any time (see Section 9)

9. Security

We implement industry-standard security measures:

• TLS 1.3 encryption for all data in transit
• AES-256 encryption for sensitive data at rest
• OAuth tokens stored encrypted, never in plaintext
• Role-based access controls for all internal systems
• Regular security audits and penetration testing
• SOC 2 Type II compliance (in progress)

10. Your Rights

Depending on your location, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a machine-readable format
• Restriction: Limit how we process your data
• Objection: Object to processing based on legitimate interests
• Withdraw consent: Revoke Gmail/Shopify access at any time

To exercise any of these rights, email privacy@raisolve.com. We will respond within 30 days.

11. Cookies

We use essential cookies for authentication and session management. See our Cookie Policy for full details.

12. Children's Privacy

Raisolve is not directed to children under 16. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected such data, please contact us immediately.

13. Changes to This Policy

We will notify you of material changes via email and an in-app notice at least 30 days before they take effect. Continued use of the service constitutes acceptance of the updated policy.

14. Contact Us

If you are in the EEA, you have the right to lodge a complaint with your local supervisory authority (e.g., the ICO in the UK, CNIL in France, or AEPD in Spain).