Data Policy

Last updated: December 2024

This Data Policy explains what data Zolvio collects, how we process it, and how we protect it. This supplements our Privacy Policy with technical details.

Data Collection Methods

Session Recording Script

When you install Zolvio, a JavaScript snippet is added to your store that:

  • Captures DOM changes and user interactions
  • Records mouse movements and click positions
  • Tracks scroll behavior
  • Collects device and browser metadata

Heatmap Data

Click and scroll events are aggregated into heatmaps showing:

  • Click density by page area
  • Scroll depth percentages
  • Element interaction frequency

AI Audit Data

During audits, we analyze:

  • Page HTML structure
  • Visual screenshots
  • Performance metrics
  • Content and copy

Data Masking

We automatically mask sensitive information:

  • Text inputs: All text typed into form fields is replaced with asterisks
  • Credit cards: Payment fields are excluded from recording
  • Passwords: Password fields are never captured
  • Custom masking: You can mark additional elements to exclude

Data Storage

Location

Data is stored on servers in the United States with industry-standard security.

Encryption

  • In transit: TLS 1.3
  • At rest: AES-256 encryption

Retention Periods

PlanRetention
Starter7 days
Growth60 days
Pro180 days

After the retention period, data is automatically and permanently deleted.

Data Access

Access to your data is restricted to:

  • Authorized users on your Shopify store
  • Zolvio engineering team (for support and maintenance)
  • Automated systems for processing

Third-Party Services

We use the following third-party services:

  • Cloud hosting: For data storage and processing
  • AI providers: For audit analysis (data is processed but not stored)
  • Shopify: For authentication and billing

Data Export

You can export your data at any time:

  • Session recordings can be downloaded
  • Audit reports can be exported as PDF
  • A/B test results can be exported as CSV

Data Deletion

Request complete data deletion by:

  1. Uninstalling the Zolvio app
  2. Contacting us at privacy@zolvio.io

Deletion requests are processed within 30 days.

Compliance

Zolvio is designed to help you comply with:

  • GDPR (EU General Data Protection Regulation)
  • CCPA (California Consumer Privacy Act)
  • Shopify's app requirements

Contact

For data-related questions, contact us at data@zolvio.io