ProfitPath Privacy Policy

Last updated: 2026-05-09

This privacy policy describes how Russell SPC LLC ("we," "our," or "Russell SPC") collects, uses, and protects information when you use the ProfitPath app on Shopify ("the App"). It applies only to the App and not to other Russell SPC services. ProfitPath is a CFO-tier analytics tool: it computes per-SKU contribution margin, tracks inventory, forecasts cash, and synthesizes AI-driven insights from data you authorize us to read from your Shopify store.

The short version: We read product, inventory, order, and aggregate customer data from your Shopify store to compute margin and cash-flow analytics. We do not read PII (names, emails, addresses, payment methods). We do not sell or share your data with advertisers. You can export or delete everything at any time. On uninstall, we purge all your data within 30 days.

1. Information we collect

1.1 Data we read from your Shopify store

When you install ProfitPath, you authorize us to read the following data via Shopify's Admin API:

Products and variants — title, SKU, barcode, price, cost per item, inventory quantity, vendor, options. Used to populate scenarios and the inventory ledger.
Inventory levels and locations — used to seed initial on-hand counts and refresh quantities.
Orders, refunds, returns — order count, line items, refund amounts, return rates. Used to compute observed velocity and reconcile against your projections. We do not store customer-level order details.
Customers (aggregate only) — repeat purchase rate, average order value, cohort retention. We do not read customer names, email addresses, phone numbers, postal addresses, or payment methods.
Reports — Shopify's built-in contribution data, used as a sanity check against our calculations.

1.2 Data you create inside the App

While using ProfitPath, you generate:

Scenarios (per-SKU economics: sale price, costs, velocity, channel mix).
Inventory transactions (stock in, stock out, adjustments, with optional notes).
Cash forecast inputs (starting cash, planned POs, recurring costs).
Audit trail entries (automatic; records every material change).
AI insight outputs (text generated by the LLM provider you select).

1.3 Data we do NOT collect

We explicitly do not read or store:

Customer names, email addresses, phone numbers, or postal addresses.
Payment methods or saved card data.
Storefront content, theme files, blog posts, or pages.
Data from other Shopify apps you have installed.
Browsing or behavioral analytics about your customers.

2. How we use the information

We use the data described above for the following purposes:

Computing analytics — margin per SKU, portfolio aggregation, cash forecast, sensitivity analysis, LTV cohorts, reconciliation reports.
Generating AI insights — when you trigger an AI analysis, scenario data is sent to the AI provider you selected (see Section 5). PII is never included; only the SKU economics and scenario metadata you entered.
Operating the service — authentication, sync, error logging, billing.
Improving the product — aggregated, anonymized telemetry on which features are used (no merchant data is included in this telemetry).

We do not use your data to train AI models, sell to advertisers, or share with third parties beyond the subprocessors disclosed in Section 5.

3. Data retention

While the App is installed, all your data is retained continuously to keep your analytics current. Specifically:

Hot storage — scenarios, transactions, and forecasts are stored in Cloudflare D1 (our database) and are accessible immediately for read/write.
Quarterly archive — every calendar quarter, we generate an encrypted ZIP archive of your hot data and place it in Cloudflare R2 storage. You can download it via a signed URL (valid 30 days) from the in-app Settings panel.
Hot-data purge — data older than 90 days is purged from hot storage automatically once it has been archived. The archive remains downloadable for the entire time the App is installed.
On uninstall — within 30 days of receiving Shopify's app/uninstalled webhook, we purge all your data from both hot storage and quarterly archives. This is a hard delete; no soft-delete copy is kept.

4. Your rights

4.1 Export

At any time, you can export all your scenarios, transactions, and forecasts from Settings → Export in the App. The export is a single JSON file. CSV exports are available per-table (inventory ledger, transactions, audit trail) for spreadsheet use.

4.2 Deletion

You can delete individual scenarios from the inventory ledger. You can request a complete account-wide deletion before uninstalling by emailing support@russellspc.com. We confirm and complete the deletion within 30 days.

4.3 GDPR (EU/UK merchants)

If you are a merchant in the European Union or United Kingdom, you have the right to access, correct, port, restrict processing of, and delete personal data we hold about you. Submit requests to support@russellspc.com. We respond within 30 days. We honor Shopify's shop/redact, customers/redact, and customers/data_request webhooks per Shopify's GDPR-compliance requirements.

4.4 CCPA (California merchants)

California residents have the right to know what personal information we collect, to delete it, and to opt out of any "sale" of personal information. We do not sell personal information. Requests: support@russellspc.com.

5. Subprocessors

We use a small set of third-party services to operate the App. Each is contractually bound to data-protection terms equivalent to or stronger than this policy.

Cloudflare, Inc. — hosting (Pages), database (D1), edge compute (Workers), object storage (R2), and identity gating (Access). SOC 2 Type II compliant.
Shopify Inc. — billing, OAuth, webhook delivery, and the embedded admin frame.
AI providers (only when you trigger an analysis):
- Anthropic, PBC (Claude)
- OpenAI, OpCo LLC (GPT)
- Google LLC (Gemini)
- X.AI Corp. (Grok)
- DeepSeek AI (DeepSeek)
When you bring your own API key (BYOK), the data is sent under your provider account, not ours. When you use the default pooled tier, data is sent under our pooled account; the provider's own privacy policy applies to that transmission. PII is never included in AI requests.

We do not use third-party advertising networks, behavioral analytics tools, or data brokers.

6. Security

We protect your data with the following measures:

Transport encryption — all traffic is HTTPS / TLS 1.2+.
At-rest encryption — Cloudflare D1 and R2 encrypt data at rest by default.
BYOK key encryption — when you connect your own AI provider key, it is encrypted with AES-256-GCM using a master key stored as a Cloudflare Worker secret. Your browser never holds the plaintext key.
Access control — Cloudflare Access gates the admin surface; OAuth + signed JWT validation gates the Shopify app.
Audit trail — every material change to your data is logged with timestamp, field, before/after values, and source.

7. Cookies and tracking

The embedded App uses session storage and the Shopify App Bridge session token for authentication. We do not use third-party cookies, advertising trackers, or fingerprinting.

8. Children's privacy

ProfitPath is a B2B tool for Shopify merchants. It is not directed at children under 16 and we do not knowingly collect data about anyone under 16. Children under 16 should not use the App.

9. Changes to this policy

We will update this policy when our data practices change. The "Last updated" date at the top reflects the most recent revision. Material changes (new data categories, new subprocessors, new sharing) will be communicated to active merchants via in-app notification at least 30 days before they take effect.

10. Contact

For privacy questions, data requests, or to report a concern:

Russell SPC LLC
Attn: Privacy
6941 SE Constitution Blvd, Apt 203
Hobe Sound, FL 33455
Email: support@russellspc.com