Privacy Policy

1. What We Collect

GMC Unlock collects only the information necessary to perform website compliance scans and deliver reports. This includes:

• The URL you submit for scanning.
• Business profile details you provide (business type, platform, etc.).
• Google Merchant Center data accessed via OAuth (read-only).
• Shopify store data accessed via OAuth (read-only).
• Publicly available website content retrieved during the scan.

2. How We Use Your Data

Your data is used exclusively to:

• Generate your compliance scan report.
• Compare data across connected sources for consistency analysis.
• Improve the accuracy and quality of our scanning service.

We do not sell, rent, or share your data with third parties for marketing purposes.

3. Third-Party Services

We use the following third-party services to operate:

• Google APIs — to access Merchant Center data (read-only) and PageSpeed Insights.
• Shopify API — to access store data (read-only) when you connect your store.
• Anthropic (Claude AI) — to analyze scan data and generate compliance reports.
• Supabase — to securely store scan results and connection tokens.
• Vercel — to host and serve the application.

4. Google & Shopify Permissions

When you connect your Google or Shopify account, we request read-only access. We never edit, delete, or modify any data in your accounts. You can disconnect at any time from the scan report page.

5. Data Retention

Scan reports are stored in our database for your future reference. OAuth tokens are stored securely and used only to fetch data during scans. You may request deletion of your data by contacting us.

6. Security

All data is transmitted over HTTPS. OAuth tokens are stored securely in our database and are never exposed to the client. We follow industry-standard security practices.

7. Contact

For questions about this privacy policy or to request data deletion, contact us at ofer25.al@gmail.com.