Privacy Policy
Last updated: May 4, 2026
Profitsss is a profit-and-loss analytics dashboard that combines data from your connected Shopify stores and Google Ads accounts. This page explains what data we collect, how we use it, and your rights over it.
Plain-English summary: we read your Shopify orders + products and your Google Ads spend so we can show you a unified profit dashboard. We don't share, sell, or rent your data. We don't run ads against it. We don't look at it unless you ask for support. You can delete everything any time by emailing us.
Who we are
Profitsss is operated by the team behind the e-commerce stores it serves (Polizatto, Miloska, Lightsnest, and others). We are not a public SaaS at this time — the service is single-user, used by our internal operations team. Contact: support@profitsss.com.
What data we collect
1. Shopify store data (when you connect a store)
- Store metadata: shop domain, name, native currency
- Product catalog: titles, SKUs, prices, COGS (Cost per item), images, variants
- Orders: order ID, placed date, line items, totals, refunds, fulfilment status, shipping country
- Customer fields tied to orders: name, email, phone, shipping address (we store these so order-detail pages can render — we never email or contact your customers)
- Shopify access tokens (so we can keep syncing after the initial connect)
2. Google Ads data (when you connect an account)
- Customer ID and Manager Customer ID
- OAuth refresh + access tokens (stored encrypted at rest — AES-256-GCM — and decrypted only in-memory at the moment a sync runs)
- Campaign-level daily metrics: cost, clicks, impressions, conversions, conversion value
- We do not read keyword-level data, audience definitions, ad creatives, or budgets beyond what's reported in metrics
3. Account data
- Email address (for sign-in)
- HMAC-signed session cookie (httpOnly, Secure, 30-day TTL) — carries only your user id and workspace id, no personal data
- Password, stored only as a salted scrypt hash (never in plaintext, never logged, never recoverable). We never see your password.
4. Operational telemetry
- Vercel access logs (IP, user agent, response codes — retained per Vercel's policy)
- Vercel Speed Insights and Vercel Analytics scripts (anonymous performance data)
- No third-party tracking pixels (no Facebook Pixel, no Google Analytics, no Hotjar, etc.)
How we use the data
- To compute and display your KPIs: revenue, COGS, ad spend, net profit, ROAS, POAS, refunds, margin, sold-units
- To run scheduled syncs every 10 minutes so dashboards stay fresh
- To send you the data back through your authenticated dashboard session
- To debug sync failures (we log error messages, not the underlying data)
We do not:
- Sell, rent, or share your data with third parties
- Use your data to train AI models
- Send marketing emails to you or your customers
- Access your data outside automated syncs unless you ask for support
Sub-processors
We use the following third-party services to operate Profitsss. Data sent to each is limited to what's necessary for that service's function.
| Provider | Purpose | Data sent |
|---|---|---|
| Vercel | Hosting + edge functions | HTTP requests, environment variables (incl. tokens) |
| Supabase | PostgreSQL database | All persisted data (encrypted at rest, TLS in transit) |
| Shopify | Source of store data | Outbound API requests with your store's access token |
| Google Ads | Source of ads data | OAuth + GAQL requests with your refresh/access tokens |
Data retention
- Orders + line items: 365 days from order date (older orders are not pulled by sync; existing rows stay until you delete the store)
- Products + variants: retained until you disconnect the store
- Google Ads metrics: last 90 days of campaign data, refreshed every 10 minutes
- OAuth tokens: stored encrypted (AES-256-GCM), retained until you disconnect the account or revoke from Shopify / Google — disconnecting deletes the stored token and stops all further API access for that account
- Logs: per Vercel's default (typically 24 hours for access logs, longer for error traces)
Security
- HTTPS-only, HSTS enabled
- Database connections over TLS to Supabase pgbouncer
- Session cookies are httpOnly + Secure + SameSite=Lax with HMAC signatures, constant-time verified server-side
- OAuth state CSRF tokens are HMAC-signed with 10-minute TTL
- Stored OAuth tokens are encrypted at the application layer with AES-256-GCM before they ever reach the database
- Passwords are hashed with scrypt (per-user salt) and verified in constant time
- Strict tenant isolation: every workspace's data is partitioned by a workspace id derived solely from your signed session — one customer can never read another customer's stores, orders, campaigns, or spend
Your rights (GDPR, CCPA, and equivalents)
You have the right to:
- Access all data we hold about you (export available on request)
- Delete your account and all associated data
- Correct inaccurate data (most fields are sourced from Shopify / Google Ads — corrections happen at source on next sync)
- Restrict processing by disconnecting integrations from /app
- Withdraw consent by revoking OAuth access in your Shopify Admin / Google Cloud Console
- Lodge a complaint with your local data protection authority
To exercise any of these, email support@profitsss.com. We respond within 30 days.
Customer data on connected stores
When you connect a Shopify store, we receive customer details attached to orders (name, email, phone, shipping address). We are a data processor for that data — your store remains the data controller. We use it only to render order-detail pages within your dashboard. We never email customers, transfer their data to third parties, or use it for any purpose beyond displaying it back to you.
To delete customer data: disconnect the store in /app, or email us with specific customer identifiers to redact.
Cookies
We use one functional cookie:
profitsss_session— httpOnly, Secure, 30-day TTL, signed with HMAC. Stores nothing but your authenticated email + a timestamp. Required for sign-in to work.
No marketing or analytics cookies. No third-party trackers.
Changes to this policy
We'll update the "Last updated" date at the top whenever this changes. Substantive changes (e.g., new sub-processor, new data category) will be announced in the dashboard at next sign-in.
Contact
Email: support@profitsss.com
Site: https://profitsss.com