Privacy Policy

1. Who We Are

RiseyAI Limited
Registered Office: 14 Wills Avenue, West Bromwich, West Midlands, B71 2QS, United Kingdom
Contact Email: support@risey.ai

Risey.ai is a voice AI platform for Shopify merchants that enables automated, personalised voice messaging at key moments in the customer journey, such as cart recovery, page abandonment, and post-purchase engagement.

2. Scope of This Policy

This Privacy Policy applies to:

• All Shopify merchants who install and use the App
• Visitors to our website
• End users who interact with voice campaigns triggered via the merchant's store

3. What Information We Collect

3.1. From Merchants (Shopify Users)

We collect the following personal and business data:

• Shopify account details: store name, URL, email address, subscription plan
• Account preferences, app usage statistics, and billing data (excluding payment details)
• Voice recordings: uploaded audio, and AI-generated voice clones
• Campaign metadata: message content, behaviour triggers, and targeting criteria
• Support requests, emails, and other communications with us

3.2. From End Customers (Indirectly via Shopify Stores)

Collected through interactions with merchant campaigns:

• Identifiers: name, email address, phone number
• Commerce data: items viewed or purchased, abandoned carts
• Behavioural data: page activity, idle time, mouse movement (for exit-intent)
• Engagement data: audio listens, email opens, link clicks, impressions

3.3. Automatically Collected Data

• Cookies and similar technologies (for session tracking and behavioural targeting)
• Device information, IP address, browser type, referral URLs, and time zone

4. How We Use Your Information

We process data for the following purposes:

4.1. For Service Delivery

• Power personalised voice campaigns triggered by customer behaviour
• Send voice messages via pop-ups, email, WhatsApp, or SMS
• Measure campaign performance: listens, clicks, conversions, revenue recovered

4.2. For Support and Operations

• Respond to merchant support queries
• Monitor platform performance and reliability
• Identify and resolve technical issues

4.3. For Improvement and Development

• Analyse usage trends to improve features and user experience
• Train voice models and improve personalisation (with anonymised data)

4.4. For Marketing and Communication

• Send product updates, newsletters, promotional messages, and surveys to merchants
• Request participation in testimonials, case studies, or marketing campaigns (always with prior consent)
• Provide information about new features, integrations, or offers relevant to merchant use

You may opt out of marketing communications at any time by clicking the "unsubscribe" link in our emails or by contacting us at support@risey.ai.

5. Legal Basis for Processing (for EEA/UK Users)

We rely on the following lawful bases under the GDPR:

• Contractual necessity: to provide services under our agreement
• Legitimate interests: to improve our product, prevent abuse, and engage users
• Consent: for marketing communications, testimonial use, and analytics
• Legal obligation: to comply with applicable law

6. Data Sharing and Disclosure

We do not sell personal data. However, we share data with:

6.1. Trusted Sub-Processors

Only to deliver and support our services, under strict data protection terms:

• Eleven Labs – AI voice processing
• Digital Ocean – cloud infrastructure and data storage
• Brevo – email and marketing communication services
• Meta Platforms, Inc. – For sending voice messages via WhatsApp

6.2. Legal Compliance and Safety

We may disclose data:

• To comply with legal obligations or valid legal processes
• To enforce our terms and defend our rights
• To protect against fraud, abuse, or threats to users

6.3. Business Transfers

In the event of a merger, acquisition, asset sale, or insolvency, data may be transferred to relevant parties with notice provided where legally required.

7. Data Retention

• Raw and AI-generated audio: automatically deleted after 90 days
• Merchant campaign and engagement data: retained for the duration of the merchant relationship and a short period thereafter for legal and operational needs
• Customer metadata: retained in line with campaign activity and auto-purged where no longer necessary

You may request deletion of your data at any time (see Section 10).

8. Cookies and Tracking

We use cookies and similar technologies to:

• Detect user behaviour for campaign triggering (e.g. idle time, mouse movement)
• Track email engagement (opens, clicks)
• Maintain user sessions in the dashboard

You can disable cookies in your browser settings, though this may limit certain functionality.

9. Data Security

We implement appropriate technical and organisational safeguards, including:

• Encryption of data at rest and in transit (TLS 1.2+)
• Secure UK-based hosting via Digital Ocean (London)
• Access restricted to authorised personnel
• Role-based permissions and audit logging

10. Your Rights

Under applicable data protection laws (e.g., GDPR, CCPA), you have the right to:

• Access the personal data we hold about you
• Request the deletion of your data
• Object to processing in specific contexts (e.g., marketing)
• Withdraw consent at any time
• Complain to a data protection authority (e.g., the UK ICO or relevant EU body)

To exercise your rights, please email: support@risey.ai

Please note: merchants cannot directly export campaign or customer data, but we can facilitate deletion upon request.

11. Data Transfers

Although data is primarily stored in the UK, some processing may occur outside your jurisdiction. We ensure that such transfers are made using legal mechanisms such as:

• Adequacy decisions (where applicable)
• Standard Contractual Clauses (SCCs)
• Other GDPR-compliant safeguards

12. Children's Privacy

Risey.ai is not intended for use by children under 16. We do not knowingly collect or process data from minors. If we become aware that such data has been collected, it will be deleted without delay.

13. Changes to This Policy

We reserve the right to update this policy. Changes will be communicated via email. Your continued use of our services after changes take effect constitutes acceptance of the updated terms.

14. Contact Us

For any questions, concerns, or rights requests: