Privacy Policy

Last updated: 2026-05-23

Who we are

AccessifyAI is a Shopify-installable application operated by Ensomedia (sole proprietorship, Poland), the data controller for personal data processed through this app. For privacy enquiries contact contact@ensomedia.pl. We have not appointed a designated Data Protection Officer because our processing activities do not cross the thresholds in GDPR Art. 37; privacy requests are handled directly by the controller at the email above.

Lawful basis for processing (GDPR Art. 6)

• Contract performance (Art. 6(1)(b)): storing your shop domain, access token, configuration, scan results, and subscription metadata to deliver the accessibility scanning service you subscribed to.
• Legitimate interests (Art. 6(1)(f)): limited operational logs (request id, error traces) to keep the service stable and secure. Balanced against your interests: logs are retained 30 days then deleted, contain no end-customer PII.
• Legal obligation (Art. 6(1)(c)): responding to Shopify GDPR-compliance webhooks and to direct rights requests from data subjects.

What data we collect

When a merchant installs AccessifyAI we receive and store:

• The shop's myshopify.com domain and primary custom domain.
• A Shopify-issued offline access token used to call the Shopify Admin API on the merchant's behalf.
• Configuration the merchant enters in our admin UI (widget colour, scan schedule, language, plan tier).
• Public storefront HTML retrieved during accessibility scans, the structured issue list extracted from it, and timestamps. We do not store customer-identifying HTML attributes — these are stripped before any data is persisted or sent to AI providers.
• AppSubscription billing metadata (subscription id, plan, trial end date) returned by Shopify Billing. We never see card numbers or bank details — Shopify handles all payment instruments.

What we do not collect

• We do not read, store, or transmit your customers' personal data. Our scanner inspects public HTML only; customer-bound attributes (data-customer-*, cart tokens, session ids, mailto/tel hrefs, form values) are redacted before any further processing.
• We do not place tracking pixels on storefronts.
• We do not sell or share personal data with advertisers, and we do not exchange personal data for monetary or other valuable consideration.

How AI processing works (EU AI Act Art. 50(1))

Pro-tier AI fix suggestions, alt-text generation, and report narratives are produced by sending a redacted accessibility issue payload to Groq, our AI inference provider. We pass only the minimum required: the WCAG criterion, an HTML element selector, and a short HTML snippet (after PII scrubbing). Groq's privacy and data-retention terms apply to that processing — groq.com/privacy-policy. AccessifyAI does not retain the AI provider's input or output beyond the scope of returning the fix to the requesting merchant.

AI-generated content is labelled as such in the AccessifyAI admin UI before any merchant decision to apply it. Merchants always preview a unified diff in a Monaco editor and click an explicit confirmation before any AI-generated code is written to their theme.

Data retention

Scan results, issue lists, AI fix suggestions, and audit logs are retained for as long as the app is installed, plus 30 days after uninstall to allow re-install without data loss. After 30 days post-uninstall we permanently delete the merchant's data. Merchants on the Pro plan can configure a shorter retention window (down to 30 days) in app settings; we honour that setting through an automated weekly purge of records older than the configured window.

AutoFix snapshots created when a fix is applied are retained for the rollback window the merchant sets (default 30 days). Report exports are retained 90 days then permanently deleted.

Your rights under the GDPR

Merchants and their end customers can exercise the following rights:

• Right of access (Art. 15): request a copy of any data we hold related to you.
• Right to rectification (Art. 16): correct inaccurate data we hold.
• Right to erasure (Art. 17): request deletion of your data.
• Right to data portability (Art. 20): receive your data in a structured, commonly used, machine-readable format (we export as JSON).
• Right to restrict processing (Art. 18): limit how we process your data while a request is under review.
• Right to object (Art. 21): object to processing based on legitimate interests.
• Right to lodge a complaint (Art. 77): with your national data protection authority. In Poland that is the Prezes Urzędu Ochrony Danych Osobowych (UODO).

Email contact@ensomedia.pl from the email associated with the Shopify shop owner. We respond within 30 days as required by Art. 12(3). Shopify also automatically delivers GDPR compliance webhooks to AccessifyAI when a customer or shop requests data export or deletion, and we honour those automatically.

California residents (CCPA / CPRA)

If you are a California resident or your shop's end-customers are California residents, you have the following rights under the California Consumer Privacy Act as amended by the California Privacy Rights Act:

• Right to know (Cal. Civ. Code §1798.100, §1798.110): what categories of personal information we collect about you and for what purposes.
• Right to delete (§1798.105): request deletion of your personal information.
• Right to correct (§1798.106): correct inaccurate personal information.
• Right to opt out of “sale” or “sharing” (§1798.120, §1798.135): AccessifyAI does not sell personal information and does not share it for cross-context behavioural advertising. There is therefore no opt-out link required; if our practices change we will provide one.
• Right to non-discrimination (§1798.125): we do not deny service, charge different prices, or provide a different level of quality because you exercised a CCPA right.

California residents can exercise these rights by emailing contact@ensomedia.pl. We verify the request against the shop owner's Shopify-registered email. Authorised agents may submit requests on behalf of a consumer with documented authorisation under §1798.135(c).

Sub-processors

The following sub-processors are used to operate AccessifyAI:

• Google Cloud (GCP) — application hosting (Cloud Run, europe-central2) and managed Postgres database (Cloud SQL). Data is stored in the EU.
• Groq — AI inference for fix suggestions and report narratives. Only redacted accessibility data is sent.
• Shopify — authentication, billing, and webhook delivery.

Security

All traffic is TLS-encrypted. Access tokens are stored encrypted at rest by the underlying Google Cloud SQL provider. We do not use third-party analytics inside the merchant admin app. The storefront widget runs entirely client-side and sends only widget-configuration ping requests to our domain, no end-customer telemetry.

International data transfers

Our primary infrastructure runs in the European Union (europe-central2). Groq processes inference requests on infrastructure outside the EU. We rely on the EU Standard Contractual Clauses published in Commission Implementing Decision (EU) 2021/914 to legitimise that transfer, plus the technical safeguards described above (redaction before transmission, no end-customer PII).

Changes to this policy

We will post any material changes to this policy on this page and update the "Last updated" date. Material changes that affect existing data processing will additionally be sent to merchants by email at least 14 days before they take effect.

Contact

Ensomedia
Email: contact@ensomedia.pl

Terms of Service