«Sofair» (the «Service») is operated by Sofair (the «Company»), an Israel-based provider of AI-visibility tracking infrastructure for WordPress, Shopify, and independent websites. Our registered contact details are at the foot of this page.
For the purposes of the EU General Data Protection Regulation (GDPR), Sofair acts as a data processor when you use our Shopify or WordPress integrations on behalf of your customers, and as a data controller for the personal data of our direct merchants (you).
| Data | Why | Legal basis |
|---|---|---|
| Email address | Account access, alert delivery, support | Contract performance |
| Shopify shop domain / WordPress URL | Identify your tracking instance | Contract performance |
| Brand name, competitor names, prompt list | Configure what we track in AI assistants | Contract performance |
| Payment metadata (NOT card details) | Billing reconciliation via Shopify / PayPal | Contract performance |
When you enable the AI-traffic pixel on your store, we record per-visit:
| Data | Why | Legal basis |
|---|---|---|
| Anonymous visitor fingerprint (no IP stored long-term) | De-duplicate visits across pages | Legitimate interest |
| HTTP Referer (where they came from) | Classify AI vs non-AI source | Legitimate interest |
| Page URL + UTM params | Map traffic to landing pages | Legitimate interest |
| Conversion event (transaction value + currency) | Attribute revenue back to AI source | Legitimate interest |
We do not collect: visitor names, email addresses, IP addresses (only hashed for bot-detection within 60 seconds, then discarded), browser cookies, payment card details, precise geolocation, or any data that could identify an individual person.
To compute Share-of-Voice we forward your category questions to third-party AI providers. The prompts you configure are NOT personal data, but they are transmitted to:
All four providers have published DPAs and Standard Contractual Clauses (SCCs) that cover EU-to-US data transfers. We do not send any merchant or visitor personal data to these providers — only the abstract category prompts you configure.
| Sub-processor | Purpose | Region |
|---|---|---|
| Our hosting provider | Server + database hosting | EU / US |
| Email delivery (SMTP relay) | Alert + weekly digest emails | Configured per deployment |
| Shopify, Inc. | App platform + Managed Pricing billing | Canada / US |
We notify merchants at least 30 days before adding any new sub-processor that handles
personal data. Send [email protected] to receive change notices.
Active accounts: for as long as you use the Service, plus any legally-required retention (e.g., tax invoices: 7 years in Israel; financial records under similar GDPR / IL Companies Law obligations).
On uninstall — 30-day grace period: when you uninstall the app, we immediately mark your data for deletion but do not yet hard-delete it. This grace window lets you reinstall within 30 days and recover your configuration (brand list, prompt set, alert preferences). It matches Shopify's own recommended processor timeline.
Day 10 — automatic Shopify trigger: Shopify fires the
customers/redact webhook 10 days after uninstall, which causes us to
anonymise (not yet delete) any customer-linked records.
Day 30 — hard delete: all personal data linked to your account is
permanently deleted from production systems and from encrypted backups on the next
backup rotation cycle (≤72 hours after Day 30). For WordPress / standalone users
who don't have a Shopify-triggered webhook, email [email protected]
to start the same 30-day countdown earlier.
Earlier deletion on request: you can request immediate deletion at
any time by emailing [email protected]. We complete erasure within 30
days of receiving the request (GDPR Article 17 timeline; usually much faster).
Aggregated anonymised statistics (e.g., «X% of merchants in vertical Y see SoV gain after Z weeks», benchmark distributions of cost per call across providers) may be retained indefinitely for product analytics, public reports, and Sofair's own marketing benchmarks. These aggregates cannot be re-linked to any identifiable user, shop, or person, and contain no personal data within the meaning of GDPR Article 4(1).
Whether you are protected by GDPR, the Israeli Privacy Protection Law, the California Consumer Privacy Act, or other equivalents, you can:
To exercise any right: email [email protected]. We respond within 30 days
(GDPR deadline) — usually much faster.
We use industry-standard measures: TLS 1.2+ for all data in transit, encrypted database backups, principle of least privilege for staff access, audit logs of all API key issuance, and bcrypt-hashing for any secret values stored at rest.
We disclose security incidents that affect personal data to affected merchants and relevant authorities within 72 hours of discovery, per GDPR Article 33.
Sofair processes data on servers located in the European Union. AI provider sub-processors may process prompts in the United States or other regions where they operate. All such transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, plus the provider's individual security commitments.
The Sofair website (sofair.ai) does not set tracking cookies. The Sofair Shopify app
runs entirely inside Shopify's admin iframe and uses Shopify's session tokens (JWT) — no
cookies are set by us. The optional AI-traffic pixel on merchant storefronts uses
localStorage (not cookies) to store an anonymous visitor fingerprint;
visitors can clear this at any time via browser settings.
We notify active merchants by email when we make material changes to this policy, at least 30 days before the change takes effect. The version date at the top of this page reflects the most recent revision.
Privacy inquiries: [email protected]
General support: [email protected]
Sub-processor change notifications: [email protected]
EU representative (per GDPR Article 27): To be appointed before sales to EU merchants exceed the Article 27 threshold; until then, all EU-related inquiries are answered directly by the Israeli-registered entity within the GDPR 30-day response window.