Our Privacy Policy

Our Privacy Policy outlines how we collect, use, and protect your personal information. Your privacy and security are our priorities.

Last Updated on October, 18, 2025

Introduction

Introduction

Evolvoom.io ("we," "us," "our," or "Company") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered AI-powered conversational retention platform for eCommerce brands.

Company Information:
Evolvoom.io
1111b South Governors Avenue Ste 34868
Dover, Delaware 19904
Email: hello@evolvoom.io

Information We Collect

Information We Collect

2.1 Personal Information You Provide

Account Information: Name and email address when you register
Contact Information: Information you provide when contacting customer support

2.2 Shopify Store Data (via API Integration)

When you connect your Shopify store, we access and process the following data through Shopify's API:

Customer Data: Customer information from your store (read/write access)
Order Data: Order history, transaction details, and purchase information (read/write access)
Product Data: Product catalog and inventory information (read/write access)
Abandoned Checkouts: Incomplete purchase data for recovery campaigns
Inventory Data: Stock levels and inventory management (read/write access)
Discount & Pricing: Discount codes and price rules (read/write access)
Gift Cards: Gift card information
Store Settings: Payment account information
Fulfillment Data: Order fulfillment information

2.3 Usage and Analytics Data

Customer behavior patterns within your store
Campaign performance metrics
System usage data for service improvement

2.4 Payment Information

We do NOT collect, store, or have access to your credit card information, billing addresses, or payment details. All payment processing is handled securely by Stripe, our third-party payment processor.

2.5 Legal Basis for Processing

We process personal data under the following lawful bases as defined by the GDPR:

(a) Consent (Article 6(1)(a)) — for marketing communications, analytics, and optional features.

(b) Contractual necessity (Article 6(1)(b)) — to perform our obligations under your subscription or free trial.

(d) Legal obligations (Article 6(1)(c)) — to comply with tax, accounting, or regulatory requirements.

Where processing relies on consent, we maintain records of consent (timestamp, method, and source) and provide clear mechanisms to withdraw consent at any time.

2.1 Personal Information You Provide

Account Information: Name and email address when you register
Contact Information: Information you provide when contacting customer support

2.2 Shopify Store Data (via API Integration)

When you connect your Shopify store, we access and process the following data through Shopify's API:

Customer Data: Customer information from your store (read/write access)
Order Data: Order history, transaction details, and purchase information (read/write access)
Product Data: Product catalog and inventory information (read/write access)
Abandoned Checkouts: Incomplete purchase data for recovery campaigns
Inventory Data: Stock levels and inventory management (read/write access)
Discount & Pricing: Discount codes and price rules (read/write access)
Gift Cards: Gift card information
Store Settings: Payment account information
Fulfillment Data: Order fulfillment information

2.3 Usage and Analytics Data

Customer behavior patterns within your store
Campaign performance metrics
System usage data for service improvement

2.4 Payment Information

2.5 Legal Basis for Processing

We process personal data under the following lawful bases as defined by the GDPR:

(a) Consent (Article 6(1)(a)) — for marketing communications, analytics, and optional features.

(b) Contractual necessity (Article 6(1)(b)) — to perform our obligations under your subscription or free trial.

(d) Legal obligations (Article 6(1)(c)) — to comply with tax, accounting, or regulatory requirements.

Where processing relies on consent, we maintain records of consent (timestamp, method, and source) and provide clear mechanisms to withdraw consent at any time.

How We Use Your Information

How We Use Your Information

We may use the information we collect from you for the following purposes:

Provide and operate our AI-powered conversational retention services
Initiate personalized, human-like SMS conversations with existing customers about their recent orders and experiences
Offer product recommendations or loyalty incentives based on prior interactions or purchases
Analyze customer behavior for retention and satisfaction insights
Provide customer support and technical assistance
Improve and optimize our platform and AI models
Comply with legal and contractual obligations

We do not use customer data for cold outreach, third-party promotions, or unrelated marketing.
All communication originates from existing customer relationships or verified opt-ins.

Provide and operate our AI-powered conversational retention services
Initiate personalized, human-like SMS conversations with existing customers about their recent orders and experiences
Offer product recommendations or loyalty incentives based on prior interactions or purchases
Analyze customer behavior for retention and satisfaction insights
Provide customer support and technical assistance
Improve and optimize our platform and AI models
Comply with legal and contractual obligations

We do not use customer data for cold outreach, third-party promotions, or unrelated marketing.
All communication originates from existing customer relationships or verified opt-ins.

Data Storage Security

Data Storage Security

4.1 Data Isolation

Evolvoom’s AI initiates messages to existing customers after an order to ask how their experience went, assist with any issues, or suggest related products.

4.2 Opt-Out and Preferences
Our AI is designed to handle opt-outs conversationally. If a customer indicates they no longer want messages, the AI responds naturally (e.g., “No problem, I’ll stop reaching out. If you ever want to chat again, just text back.”).

4.3 Frequency and Relevance
Messages are occasional, contextual, and limited to relevant post-purchase or loyalty follow-ups.
Customers will never receive mass or generic SMS campaigns under this policy.

4.1 Data Isolation

Evolvoom’s AI initiates messages to existing customers after an order to ask how their experience went, assist with any issues, or suggest related products.

Third-Party Disclosure

Third-Party Disclosure

We work with the following trusted third-party providers:

5.1 Communication Services

Twilio: SMS/text message delivery
Resent: Email marketing automation

5.2 AI

OpenAI: AI-powered customer engagement features

5.3 Other Services

Stripe: Payment processing (they handle all payment data)
Intercom: Customer support chat

All messaging data transmitted through our delivery infrastructure and AI provider(s) is processed solely for the purposes of message delivery, analysis, and conversational response generation.
We do not share or sell customer phone numbers, message content, or personal data for any form of marketing resale, advertising, or third-party outreach.
All vendors we work with are bound by strict confidentiality and data-processing agreements compliant with GDPR, CCPA, and TCPA regulations.

We work with the following trusted third-party providers:

5.1 Communication Services

Twilio: SMS/text message delivery
Resent: Email marketing automation

5.2 AI

OpenAI: AI-powered customer engagement features

5.3 Other Services

Stripe: Payment processing (they handle all payment data)
Intercom: Customer support chat

6. Usage-Based Billing

6.1 Subscription Plans
We offer monthly subscriptions billed in advance:

Starter — $24.99/month → 2,500 credits included each billing cycle
Growth — $124.99/month → 12,500 credits included each billing cycle
Enterprise — Contact sales for custom pricing and higher limits

Subscriptions renew monthly until canceled.

6.1 Subscription Plans
We offer monthly subscriptions billed in advance:

Starter — $24.99/month → 2,500 credits included each billing cycle
Growth — $124.99/month → 12,500 credits included each billing cycle
Enterprise — Contact sales for custom pricing and higher limits

Subscriptions renew monthly until canceled.

6.2 Credits & Metering

1 credit = $0.01
Credits are consumed by platform actions (e.g., SMS segments, emails sent, AI messages) per the metering rules shown in your dashboard.
Unused credits do not carry over unless expressly stated in your account.

6.2 Credits & Metering

1 credit = $0.01
Credits are consumed by platform actions (e.g., SMS segments, emails sent, AI messages) per the metering rules shown in your dashboard.
Unused credits do not carry over unless expressly stated in your account.

6.3 Top-Ups & Overages

You can purchase additional credits in packs of 1,000 / 2,500 / 5,000 at any time.
Top-ups are applied immediately; charges are aggregated and billed at the end of your 30-day cycle to the payment method on file.
You may enable auto top-up to maintain continuity when your balance falls below a threshold.

6.3 Top-Ups & Overages

You can purchase additional credits in packs of 1,000 / 2,500 / 5,000 at any time.
Top-ups are applied immediately; charges are aggregated and billed at the end of your 30-day cycle to the payment method on file.
You may enable auto top-up to maintain continuity when your balance falls below a threshold.

6.4 Billing & Payment Processing

All billing (subscriptions, top-ups, and pass-through usage) is processed by Stripe.
By subscribing, you authorize us to charge your payment method for: (a) the monthly subscription, and (b) any credit top-ups and pass-through usage accrued in the period.
We may attempt to charge prior to third-party costs being incurred to avoid service interruption.

6.4 Billing & Payment Processing

All billing (subscriptions, top-ups, and pass-through usage) is processed by Stripe.
By subscribing, you authorize us to charge your payment method for: (a) the monthly subscription, and (b) any credit top-ups and pass-through usage accrued in the period.
We may attempt to charge prior to third-party costs being incurred to avoid service interruption.

7. Data Retention

7.1 Active Subscribers

We retain your information as long as you maintain an active subscription to provide ongoing services.

7.2 After Subscription Cancellation

Upon subscription cancellation:

Most customer and store data is deleted
We retain only basic account information (name and email) for business records
You may request complete data deletion by contacting hello@evolvoom.io

7.3 Data Deletion and Retention Policy

Upon subscription cancellation or verified deletion request:

- All customer and store data (including backups) is permanently deleted within 30 days unless retention is required by law.

- We retain minimal billing and contact information solely for legal and tax compliance.

- Users may request confirmation of deletion by contacting hello@evolvoom.io.

- All data stored in third-party systems (e.g., Stripe, Twilio, OpenAI) is deleted or anonymized per their Data Processing Agreements (DPAs).

7.1 Active Subscribers

We retain your information as long as you maintain an active subscription to provide ongoing services.

7.2 After Subscription Cancellation

Upon subscription cancellation:

Most customer and store data is deleted
We retain only basic account information (name and email) for business records
You may request complete data deletion by contacting hello@evolvoom.io

7.3 Data Deletion and Retention Policy

Upon subscription cancellation or verified deletion request:

- All customer and store data (including backups) is permanently deleted within 30 days unless retention is required by law.

- We retain minimal billing and contact information solely for legal and tax compliance.

- Users may request confirmation of deletion by contacting hello@evolvoom.io.

- All data stored in third-party systems (e.g., Stripe, Twilio, OpenAI) is deleted or anonymized per their Data Processing Agreements (DPAs).

8. Your Rights and Choices

8.1 Access and Control

You have the right to:

Access your personal information
Update or correct your account information
Request data deletion
Opt-out of communications

8.2 How to Exercise Your Rights

Account Settings: Update information through your dashboard
Help Center: Access opt-out options in your dashboard
Email Us: Contact hello@evolvoom.io for data requests
Support: Use the help center for assistance

8.3 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under GDPR including:

Right to data portability
Right to object to processing
Right to restrict processing
Right to lodge a complaint with supervisory authorities

8.4 CCPA Rights (California Users)

California residents have rights under the California Consumer Privacy Act (CCPA) including:

Right to know what personal information is collected
Right to delete personal information
Right to opt-out of sale of personal information (Note: We do not sell personal information)
Right to non-discrimination

8.5 Data Portability and Objection Rights

You may request:

- A machine-readable copy (CSV/JSON) of your stored personal data.

- Restriction or objection to the processing of your data for direct marketing or profiling purposes.

Requests can be made through your account dashboard or by emailing hello@evolvoom.io.

All verified requests are handled within 30 days in accordance with GDPR requirements.

8.6 SMS/Chat Opt-Out

Evolvoom.io provides the technology infrastructure that allows our users (store owners and merchants) to communicate with their customers through conversational SMS or chat.
Opt-out handling is fully supported within our system. If an end customer indicates—verbally or textually—that they no longer wish to receive messages, the AI immediately stops outreach for that conversation and records the opt-out event within the merchant’s account.
Each merchant using Evolvoom.io is responsible for maintaining proper consent and honoring customer opt-out preferences in accordance with applicable laws and carrier regulations.
Evolvoom.io provides the compliance tools and infrastructure (including keyword recognition for “STOP,” “UNSUBSCRIBE,” and related expressions) to ensure these requests are respected automatically.

8.1 Access and Control

You have the right to:

Access your personal information
Update or correct your account information
Request data deletion
Opt-out of communications

8.2 How to Exercise Your Rights

Account Settings: Update information through your dashboard
Help Center: Access opt-out options in your dashboard
Email Us: Contact hello@evolvoom.io for data requests
Support: Use the help center for assistance

8.3 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under GDPR including:

Right to data portability
Right to object to processing
Right to restrict processing
Right to lodge a complaint with supervisory authorities

8.4 CCPA Rights (California Users)

California residents have rights under the California Consumer Privacy Act (CCPA) including:

Right to know what personal information is collected
Right to delete personal information
Right to opt-out of sale of personal information (Note: We do not sell personal information)
Right to non-discrimination

8.5 Data Portability and Objection Rights

You may request:

- A machine-readable copy (CSV/JSON) of your stored personal data.

- Restriction or objection to the processing of your data for direct marketing or profiling purposes.

Requests can be made through your account dashboard or by emailing hello@evolvoom.io.

All verified requests are handled within 30 days in accordance with GDPR requirements.

8.6 SMS/Chat Opt-Out

9. Data Sharing and Disclosure

9.1 We Do NOT Sell Your Data

We do not sell, trade, or rent your personal information to third parties.

9.2 Limited Sharing

We may share information only in these circumstances:

Service Providers: With third-party providers as described above
Legal Requirements: When required by law, court order, or legal process
Business Protection: To protect our rights, property, or safety
Business Transfers: In connection with a merger, acquisition, or sale of assets

9.1 We Do NOT Sell Your Data

We do not sell, trade, or rent your personal information to third parties.

9.2 Limited Sharing

We may share information only in these circumstances:

Service Providers: With third-party providers as described above
Legal Requirements: When required by law, court order, or legal process
Business Protection: To protect our rights, property, or safety
Business Transfers: In connection with a merger, acquisition, or sale of assets

10. International Data Transfers

Evolvoom.io processes data in the United States and other countries outside the European Economic Area (EEA) and the United Kingdom.

To ensure adequate protection of your data, we rely on the following safeguards:

- The **European Commission’s Standard Contractual Clauses (SCCs)** for data transfers from the EEA.

- The **UK International Data Transfer Addendum** for UK data subjects.

- Encryption in transit and at rest, and restricted access to personal data.

Transfer Impact Assessments (TIAs) are maintained for each vendor handling EU/UK user data.

Evolvoom.io processes data in the United States and other countries outside the European Economic Area (EEA) and the United Kingdom.

To ensure adequate protection of your data, we rely on the following safeguards:

- The **European Commission’s Standard Contractual Clauses (SCCs)** for data transfers from the EEA.

- The **UK International Data Transfer Addendum** for UK data subjects.

- Encryption in transit and at rest, and restricted access to personal data.

Transfer Impact Assessments (TIAs) are maintained for each vendor handling EU/UK user data.

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18.

12. Cookies and Tracking

Our website may use cookies and similar technologies to:

Remember your preferences
Analyze website usage
Improve user experience

You can control cookies through your browser settings, but some features may not function properly without them.

12.1 Cookie Consent

We use a cookie banner for users in the EEA and UK to collect explicit consent before setting any non-essential cookies.

You may modify or withdraw your cookie preferences at any time through our "Cookie Settings" interface.

Essential cookies are used solely for authentication, billing, and security.

Our website may use cookies and similar technologies to:

Remember your preferences
Analyze website usage
Improve user experience

You can control cookies through your browser settings, but some features may not function properly without them.

12.1 Cookie Consent

We use a cookie banner for users in the EEA and UK to collect explicit consent before setting any non-essential cookies.

You may modify or withdraw your cookie preferences at any time through our "Cookie Settings" interface.

Essential cookies are used solely for authentication, billing, and security.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically. When we make changes:

We will post the updated policy on this page
We will update the "Last Updated" date
For material changes, we may provide additional notice

We encourage you to review this policy regularly.

13. Data Controller and Data Processing Agreements

Data Controller: Evolvoom Inc.

Email: hello@evolvoom.io

Address: 1111b South Governors Avenue Ste 34868, Dover, Delaware 19904

Evolvoom Inc. acts as the Data Controller for all user data processed through Evolvoom.io.

We maintain signed **Data Processing Agreements (DPAs)** with all third-party processors, including:

Stripe, Twilio, OpenAI, Intercom, Resend, Supabase and Vercel.

Each processor is contractually bound to GDPR-equivalent obligations regarding data protection, sub-processor management, and incident notification.

We may update this Privacy Policy periodically. When we make changes:

We will post the updated policy on this page
We will update the "Last Updated" date
For material changes, we may provide additional notice

We encourage you to review this policy regularly.

13. Data Controller and Data Processing Agreements

Data Controller: Evolvoom Inc.

Email: hello@evolvoom.io

Address: 1111b South Governors Avenue Ste 34868, Dover, Delaware 19904

Evolvoom Inc. acts as the Data Controller for all user data processed through Evolvoom.io.

We maintain signed **Data Processing Agreements (DPAs)** with all third-party processors, including:

Stripe, Twilio, OpenAI, Intercom, Resend, Supabase and Vercel.

Each processor is contractually bound to GDPR-equivalent obligations regarding data protection, sub-processor management, and incident notification.

14. Compliance Statement

Evolvoom.io adheres to international data protection frameworks, including:

- General Data Protection Regulation (GDPR – EU/UK)

- California Consumer Privacy Act (CCPA)

- Telephone Consumer Protection Act (TCPA)

- CAN-SPAM Act (USA)

Our compliance includes consent logging, opt-out automation, data portability, and verified Data Processing Agreements with all processors.

Evolvoom.io’s conversational messaging system complies with The Campaign Registry (TCR) and carrier guidelines for mixed-use messaging (customer care + marketing).
All conversations occur within existing customer relationships and begin with prior consent obtained by the merchant.
Evolvoom’s AI continuously analyzes context and customer tone to identify when a recipient expresses disinterest or requests no further communication. When such intent is detected, the AI automatically ends the conversation and halts further outreach — without requiring explicit keyword responses.
This behavior-based mechanism fulfills carrier requirements for respecting opt-out intent while maintaining a natural, human-like conversation flow.

Evolvoom.io adheres to international data protection frameworks, including:

- General Data Protection Regulation (GDPR – EU/UK)

- California Consumer Privacy Act (CCPA)

- Telephone Consumer Protection Act (TCPA)

- CAN-SPAM Act (USA)

Our compliance includes consent logging, opt-out automation, data portability, and verified Data Processing Agreements with all processors.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information:

Email: hello@evolvoom.io
Address: 1111b South Governors Avenue Ste 34868, Dover, Delaware 19904

For data protection inquiries, please include "Privacy Request" in your subject line.

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information:

Email: hello@evolvoom.io
Address: 1111b South Governors Avenue Ste 34868, Dover, Delaware 19904

For data protection inquiries, please include "Privacy Request" in your subject line.

Our Privacy Policy

Our Privacy Policy

Introduction

Introduction

Information We Collect

Information We Collect

How We Use Your Information

How We Use Your Information

Data Storage Security

Data Storage Security

Third-Party Disclosure

Third-Party Disclosure

6. Usage-Based Billing

6. Usage-Based Billing

7. Data Retention

7. Data Retention

8. Your Rights and Choices

8. Your Rights and Choices

9. Data Sharing and Disclosure

9. Data Sharing and Disclosure

10. International Data Transfers

10. International Data Transfers

11. Children's Privacy

11. Children's Privacy

12. Cookies and Tracking

12. Cookies and Tracking

13. Changes to This Privacy Policy

13. Changes to This Privacy Policy

14. Compliance Statement

14. Compliance Statement

15. Contact Us

15. Contact Us