LiftCommerce

Privacy Policy

Last updated: April 10, 2026

What We Collect

We collect the following categories of information when you use LiftCommerce:

Account Information

Name, email address, profile photo (if provided via OAuth), and password (stored as a secure hash). We collect this when you sign up or authenticate via Google or GitHub.

Usage Data

Pages visited, features used, AI agent interactions, optimization requests, session duration, and in-app events. This is used to improve the Service and understand how sellers use LiftCommerce.

Store Data (via OAuth)

When you connect a marketplace (Shopify, Amazon, eBay, or Etsy), we request read and write access to product listings, inventory data, review data, and order metadata through official OAuth flows. We only access what is necessary to provide the Service. We do not access customer payment information.

Payment Information

We do not store your credit card or bank details. All payment processing is handled by LemonSqueezy, our Merchant of Record. We receive only anonymized transaction confirmations and subscription status from LemonSqueezy.

How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the LiftCommerce platform.
  • Run AI agents to optimize your product listings and generate ad copy.
  • Monitor reviews and track competitor activity on your behalf.
  • Send transactional emails (account confirmations, billing receipts, usage alerts).
  • Send product updates and feature announcements (you can opt out at any time).
  • Detect, investigate, and prevent fraud, abuse, and security incidents.
  • Improve AI model accuracy using aggregated, anonymized usage patterns.
  • Comply with legal obligations.

We do not sell your personal data or store data to third parties for advertising purposes.

Third-Party Services

We work with the following trusted third-party providers:

Supabase

Authentication & Database

Handles user authentication (including OAuth), session management, and stores your account data and usage records in a PostgreSQL database. Data is encrypted at rest.

LemonSqueezy

Payment Processing (Merchant of Record)

Processes all subscription payments, handles tax compliance globally, and issues receipts. LemonSqueezy is the Merchant of Record — your card statement will show their name.

Cloudflare

Infrastructure & CDN

Serves the LiftCommerce web application and API at the edge globally. Cloudflare provides DDoS protection, TLS encryption, and performance optimization. Worker logs may contain request metadata.

Anthropic API

AI Features

Powers our AI agents for listing optimization, review analysis, and ad copy generation. Product listing data is sent to Anthropic's API for processing. Anthropic does not use your data to train their models under our enterprise agreement.

Data Retention

We retain your account data and store data for as long as your account is active. If you cancel your subscription, your data is retained for 30 days to allow for account recovery, then permanently deleted.

Usage logs and analytics data are retained for up to 12 months in aggregated form. AI agent interaction history is retained for 90 days and then purged. Payment records are retained for 7 years as required by applicable tax laws.

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion:Request that we delete your personal data (“right to be forgotten”).
  • Portability: Request an export of your data in a machine-readable format.
  • Opt-out: Unsubscribe from marketing emails at any time via the link in any email or through account settings.

To exercise any of these rights, email us at support@lift-commerce.com. We will respond within 30 days.

Cookies

We use essential cookies to maintain your authenticated session and remember your preferences. We do not use advertising cookies or third-party tracking cookies. The following cookies are set by LiftCommerce:

  • Session cookies: Set by Supabase to maintain your logged-in state. Cleared when you log out.
  • Preference cookies: Store your UI preferences (e.g., theme). Expire after 1 year.

Security

We implement industry-standard security measures to protect your data, including TLS encryption in transit, AES-256 encryption at rest, and JWT-based authentication with short-lived tokens. For more details, see our Security page.

Despite these measures, no system is perfectly secure. If you discover a security vulnerability, please report it to security@lift-commerce.com.

Contact

For privacy-related questions or to exercise your rights, contact us:

LiftCommerce Privacy

Email: support@lift-commerce.com

Website: lift-commerce.com/privacy