← SonarID

Privacy Policy

Last updated: February 9, 2025

SonarID Inc. (“SonarID,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our customer intelligence platform.

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and password (or authentication credentials via Google OAuth).

Shopify Store Data

When you connect your Shopify store, we access customer names, email addresses, order history, and shipping addresses via read-only API access. We never access payment card data.

Enrichment Data

We use third-party enrichment services (EnrichLayer) to match customer email addresses against publicly available professional data, including job titles, company names, social media profiles, and follower counts.

Usage Data

We collect analytics data about how you use SonarID, including pages visited, features used, and interactions. This data is collected via PostHog and is used to improve our product.

2. How We Use Your Information

  • Provide and maintain the SonarID service
  • Enrich customer profiles to identify VIP customers
  • Send notifications via Slack and email about detected VIPs
  • Process payments through Stripe
  • Improve and optimize our platform
  • Send transactional emails (welcome, onboarding, alerts)

3. Third-Party Services

We share data with the following third-party services as necessary to operate SonarID:

  • Stripe— Payment processing. We never store payment card data.
  • EnrichLayer— Email enrichment to identify professional profiles.
  • Slack— Delivering VIP alert notifications to your workspace.
  • PostHog— Product analytics and usage tracking.
  • Inngest— Background job processing.

4. Cookies

We use essential cookies for authentication and session management. We use analytics cookies (PostHog) to understand product usage. You can control cookie preferences through your browser settings.

5. Data Retention

We retain your account data for as long as your account is active. Enrichment data is cached for up to 90 days to reduce redundant lookups. When you delete your account, we delete your data within 30 days.

6. Data Security

We implement industry-standard security measures including encryption in transit (TLS), encryption at rest, and access controls. Shopify API tokens are stored encrypted. We use read-only API access wherever possible.

7. Your Rights

CCPA (California Residents)

You have the right to:

  • Know what personal information we collect
  • Request deletion of your personal information
  • Opt out of the sale of personal information (we do not sell your data)

GDPR (EU/EEA Residents)

You have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Request erasure of your data
  • Restrict or object to processing
  • Data portability

8. Children's Privacy

SonarID is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through a notice on our platform.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, contact us at privacy@sonarid.com.