Privacy Policy

1. Information We Collect

We collect information in the following categories:

Account Information

• Name and email address
• Company name and business information
• Phone number (optional)
• Account credentials (password stored securely using encryption)

Store Connection Data

When you connect your e-commerce platform to Talo, we access read-only data including:

• Order information (order IDs, amounts, dates, statuses)
• Product data (names, prices, categories, inventory levels)
• Customer data (aggregated and used for analytics purposes)
• Traffic and conversion metrics

Usage Data

We automatically collect information about how you interact with our Service:

• Pages visited and features used within the Talo dashboard
• Time spent on the Service
• Device information (browser type, operating system, device type)
• IP address and general location data

Payment Information

Payment processing is handled by our third-party payment processor. We do not store or have direct access to your payment card numbers. We only receive confirmation of successful transactions and basic billing information (last four digits, card type, expiration date) for record-keeping purposes.

2. How We Use Your Information

We use the collected information to:

• Provide, operate, and maintain the Service
• Generate analytics dashboards and reports for your business
• Process your subscription and billing
• Send you service-related communications (account updates, security alerts)
• Send automated performance reports as configured by you
• Improve and develop new features for the Service
• Respond to your inquiries and provide customer support
• Detect and prevent fraud, abuse, and security incidents
• Comply with legal obligations

3. Data Sharing and Third Parties

We do not sell your personal information or your store data to third parties.

We may share information with:

• Service Providers: Third-party vendors who assist in operating our Service (hosting, analytics, payment processing, email delivery). These providers are bound by confidentiality agreements and may only use your data as necessary to perform services for us.
• E-commerce Platform APIs: To retrieve your store data, we connect to third-party platforms (Shopify, Tienda Nube, VTEX, etc.) via their official APIs.
• Legal Requirements: When required by law, subpoena, or other legal process, or to protect our rights, property, or safety.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

4. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. Upon account termination:

• Account data is retained for 30 days, then permanently deleted
• Analytics and store data is deleted within 30 days of account termination
• Billing records may be retained longer as required by law
• Anonymized and aggregated data may be retained for product improvement

5. Security

We implement industry-standard security measures to protect your data:

• Encryption of data in transit (TLS/SSL) and at rest
• Secure authentication and access controls
• Regular security audits and vulnerability assessments
• Employee access restricted on a need-to-know basis
• Secure cloud infrastructure with SOC 2 compliant providers

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights

GDPR Rights (European Economic Area)

If you are in the EEA, you have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your personal data
• Portability: Request transfer of your data in a machine-readable format
• Restriction: Request limitation of processing
• Objection: Object to certain processing activities

CCPA Rights (California)

California residents have the following rights:

• Right to Know: Request disclosure of personal information collected
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: We do not sell personal information, but you may opt out of certain data sharing
• Non-Discrimination: We will not discriminate against you for exercising your rights

To exercise any of these rights, please contact us at privacy@talo.ar.

7. Cookies

We use cookies and similar tracking technologies to:

• Essential Cookies: Required for the Service to function (authentication, security)
• Analytics Cookies: Help us understand how users interact with the Service
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Service.

8. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will take steps to delete such information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Effective Date" at the top of this policy
• Sending you an email notification (for material changes)

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

10. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: