ReturnSense AIBack to Home

Privacy Policy

Last updated: March 2026

1. Introduction

This Privacy Policy describes how Digital Soft Distribution Sp. z o.o., operating as SoftBlaze ("we", "us", or "our"), collects, uses, and protects information through ReturnSense AI ("the App"), a Shopify application that provides AI-powered return analytics and prevention tools.

By installing and using ReturnSense AI, you agree to the collection and use of information in accordance with this policy. If you do not agree, please uninstall the App.

2. Data We Collect

When you install ReturnSense AI on your Shopify store, we access and process the following data through Shopify's authorized OAuth flow:

Order Data

  • Order IDs, line items, quantities, and amounts
  • Order dates and fulfillment status
  • Associated customer IDs (internal Shopify IDs)

Return & Refund Data

  • Return reason codes and free-text customer notes
  • Refund amounts and resolution types
  • Return request dates and processing timelines

Product Data

  • Product titles, descriptions, and categories
  • Pricing, variants, and images
  • Inventory and product status

Customer Data

  • Customer email addresses and names
  • Order history and return history per customer
  • Customer segmentation data (repeat returner flags)

What we do NOT collect:

  • Payment card information or billing details
  • Customer passwords or authentication credentials
  • Data from stores where the App is not installed

3. How We Use Your Data

We use the collected data exclusively to provide and improve the App's services:

  • Analyze return patterns to identify root causes (sizing issues, misleading descriptions, quality problems)
  • Score product descriptions for accuracy and completeness
  • Generate AI-powered recommendations for reducing return rates
  • Calculate return costs, savings, and ROI metrics
  • Provide industry benchmarks using anonymized, aggregated data
  • Send automated alerts when return rates spike or anomalies are detected
  • Generate periodic reports on return trends and improvements

4. Third-Party Services

We use the following third-party services to operate the App:

Supabase (Database Hosting)

Hosted in the EU (Frankfurt, Germany). Provides PostgreSQL database with row-level security ensuring per-store data isolation. Your data is stored separately from other merchants' data.

OpenAI (AI Analysis)

We use GPT-4o-mini for natural language analysis of return reason notes and product description scoring. Data sent to OpenAI includes return reason text and product descriptions only — no customer PII (names, emails, or addresses) is sent to AI providers.

Vercel (Application Hosting)

The App is hosted on Vercel's edge network. Vercel processes HTTP requests but does not store your business data.

5. Data Retention

  • Active installations: Data is retained for as long as the App is installed on your Shopify store.
  • After uninstallation:All store-specific data is deleted within 30 days of uninstallation, in compliance with GDPR and Shopify requirements. Deletion is triggered automatically via Shopify's shop/redact webhook.
  • Anonymized benchmarks: Aggregated, fully anonymized benchmark data (e.g., average return rates by product category) may be retained indefinitely. This data cannot be traced back to any individual store or customer.

6. Data Security

We implement industry-standard security measures to protect your data:

  • Encryption in transit: All data is transmitted over TLS 1.3 encrypted connections.
  • Row-level security:Database policies ensure complete per-store data isolation. One merchant cannot access another's data.
  • Authentication: API access is secured via Shopify session tokens and OAuth verification.
  • GDPR webhooks: We implement all mandatory Shopify GDPR webhooks: customers/data_request, customers/redact, and shop/redact.

7. Your Rights

Under the General Data Protection Regulation (GDPR) and applicable data protection laws, you have the following rights:

  • Right to access: Request a copy of all data we hold about your store.
  • Right to rectification: Request correction of any inaccurate data.
  • Right to erasure: Request deletion of all your data. Uninstalling the App triggers automatic deletion within 30 days.
  • Right to data portability: Request an export of your data in a machine-readable format.
  • Right to restrict processing: Request that we limit how we process your data.
  • Right to object: Object to specific processing activities.

To exercise any of these rights, contact us at privacy@softblaze.dev. We will respond within 30 days.

8. Cookies & Tracking

ReturnSense AI does not use tracking cookies, advertising pixels, or any third-party analytics trackers within the Shopify admin experience.

The only client-side storage used is Shopify's session token mechanism, which is required for authentication within the Shopify admin.

9. Shopify App Store Compliance

  • We comply with Shopify's API Terms of Service and Partner Program Agreement.
  • Data is accessed exclusively through Shopify's authorized OAuth flow with scoped permissions.
  • We handle all mandatory Shopify GDPR webhooks for data requests, customer redaction, and shop redaction.
  • We do not sell, rent, or share merchant or customer data with third parties for marketing purposes.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Continued use of the App after changes constitutes acceptance of the revised policy.

For material changes that affect how we process your data, we will notify you via the Shopify admin notification system.

11. Contact Us

Digital Soft Distribution Sp. z o.o. (SoftBlaze)

Email: privacy@softblaze.dev

App: ReturnSense AI

Website: returnsense.ai