Privacy Policy

Last updated: March 19, 2026

1. Information We Collect

When you use SocialProof, we collect:

  • Account information: Email address, password (hashed), and billing details when you sign up or subscribe.
  • Widget data: Event data (purchase notifications, signups, reviews) that you configure your widget to display. This data is provided by you or your integrations (e.g., Shopify webhooks).
  • Visitor analytics: Anonymous visitor counts and page views on sites where your widget is installed. We do not use cookies for tracking. We use a privacy-friendly fingerprint based on IP + User-Agent, hashed and rotated daily.
  • Usage data: Pages visited on socialproof.tech, feature usage, and error logs to improve the service.

2. How We Use Your Information

  • To provide and maintain the SocialProof service.
  • To process billing and manage your subscription.
  • To display social proof notifications on your website.
  • To send transactional emails (account confirmations, billing receipts).
  • To improve the service and fix bugs.

We do not sell your data to third parties. We do not use your data for advertising.

3. Data Sharing

We share data only with the following service providers, solely to operate SocialProof:

  • Supabase (database and authentication hosting)
  • Stripe (payment processing)
  • Vercel (application hosting)
  • Shopify (if you use our Shopify integration — webhook data flows between Shopify and SocialProof)

4. Data Retention

Event data (notifications) is retained for 90 days by default. Analytics data is retained for 30 days. Account data is retained until you delete your account. You can request deletion of all your data by emailing support@socialproof.tech.

5. Security

We use industry-standard security measures including:

  • All data encrypted in transit (TLS/HTTPS).
  • Database access restricted via Row Level Security (RLS).
  • API authentication via JWT tokens.
  • Webhook payloads verified via HMAC signatures.
  • No plaintext storage of sensitive credentials.

6. Your Rights

You have the right to:

  • Access the data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Export your widget and event data.

To exercise these rights, email support@socialproof.tech.

7. Cookies

The SocialProof widget does not set cookies on your visitors' browsers. The socialproof.tech dashboard uses a session cookie for authentication only.

8. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes via email or a notice on our website.

9. Contact

For questions about this privacy policy, email support@socialproof.tech.