Privacy Policy

1. General Information

Protecting your personal data is of highest importance to us. This Privacy Policy explains what data we collect, how we use it, and what rights you have under the GDPR.

2. Controller

KPIQ – Alter Günes

Pechlerausstr. 15

83308 Trostberg, Germany

Email: info@kpiq.info

3. Types of Data Processed

We process:

Contact data (name, email)
Account & usage data (login data, settings)
KPI and marketing analytics data provided by users
Technical data (IP address, browser information, device information, logs)
Data from integrations (e.g., Shopify) when a user connects external services (details in “Shopify App / Shopify Integration – Future Use”)

4. Purpose of Processing

Providing KPIQ functions and services
Analytics, reporting, and optimization of digital performance indicators
Customer communication, support, and maintenance
IT security, error management, and fraud prevention
Compliance with legal requirements

5. Legal Bases

GDPR Art. 6(1)(b) – contract performance
GDPR Art. 6(1)(a) – consent (e.g., analytics, tracking)
GDPR Art. 6(1)(f) – legitimate interest (IT security, improvement of the platform)

6. Data Retention

We store personal data only as long as necessary for the purposes described above or to meet legal obligations.

6a. Storage, Processing and Anonymization of User Data (AWS S3)

KPIQ processes analysis and business data provided by users solely to deliver the functionality of the platform.

All processing is performed server-side within KPIQ’s infrastructure (e.g., AWS S3, AWS Lambda).

The processing includes:

Initial temporary storage:
Data entered by users is first stored in a secure processing area to enable calculations and analysis.
Processing and analysis:
The data is analyzed to generate metrics, reports, and AI-based insights.
Anonymization:
Personal identifiers are removed or anonymized so that no individual can be identified.
Archiving anonymized data:
Only anonymized data may be stored long-term for system improvement, quality assurance, or statistical evaluation.
Deletion of personal data:
Personal data that is no longer required for platform operation is deleted unless legal retention duties apply.

These processing steps are not related to cookies and apply exclusively to server-side processing necessary to provide KPIQ services.

7. Shopify App / Shopify Integration (Future Use – Not Active Yet)

This section applies to future versions of KPIQ that will be released as an official Shopify App.

The KPIQ Shopify App is not yet available, but development will begin after GoLive.

7.1 Data Processed

If a user installs the future KPIQ Shopify App, we may process:

Store information (store name, domain)
API scopes granted by the merchant
Product, order, marketing, and performance data
Customer data (only if explicitly authorized)
Metadata related to app usage and API load

7.2 Purpose

Syncing data between Shopify and KPIQ
Providing analytics and performance insights
Improving app features

7.3 Data Deletion

Upon uninstall:

Access to Shopify data is immediately revoked
All associated personal data is deleted within 30 days

7.4 Merchant Rights

Shopify merchants may:

Request a copy of their stored data
Request deletion at any time

Contact: info@kpiq.info

7.5 Third Parties

Data is shared only with:

Hosting providers (e.g., AWS)
Security and analytics providers

All processors are GDPR compliant.

8. Sharing with Service Providers

Data is shared only with carefully selected and GDPR-compliant processors (hosting, security, analytics).

9. International Transfers

Transfers outside the EU are conducted only with GDPR-compliant safeguards (e.g., Standard Contractual Clauses).

10. User Rights

Right of access
Right to rectification
Right to erasure
Right to restriction of processing
Right to data portability
Right to withdraw consent
Right to lodge a complaint with a supervisory authority

11. Contact

For data protection inquiries:

info@kpiq.info