Woo Sidekick
Pricing
Join Waitlist

Privacy Policy

Last updated: April 7, 2026

Privacy Policy

This Privacy Policy describes how Woo Sidekick ("we", "us", "our") handles your information.

Information We Collect

Account Information

  • Name and email address (when you register)
  • WooCommerce store URL

Store Data

When you connect your store, we access WooCommerce data through the MCP protocol to answer your questions. This may include:

  • Orders (totals, dates, status)
  • Customer information (names, emails, billing addresses)
  • Products (names, prices, inventory)
  • Coupons and categories

We access this data read-only and on-demand — only when you ask a question.

WooCommerce API Credentials

Your WooCommerce consumer key and secret are encrypted at rest using Fernet symmetric encryption. They are never logged or exposed in plain text.

Usage Data

  • Questions you ask and response metadata (token counts, response time)
  • Number of queries used per billing period

Waitlist Information

If you join our waitlist, we collect your name, email, and optionally your Twitter/X handle.

How We Use Your Information

  • To answer your questions about your store data
  • To manage your account and billing
  • To enforce plan limits
  • To improve the Service
  • To communicate with you about the Service

Data Processing

Your questions are processed using Google Gemini AI. Questions and store data are sent to Google's API to generate answers. We apply PII masking to answers (email addresses and phone numbers are partially redacted).

Data Storage

  • Account data: PostgreSQL database
  • WooCommerce credentials: Encrypted at rest (Fernet)
  • We do not store your full store data — it is queried in real-time and not persisted

Data Sharing

We do not sell your data. We share information only with:

  • Google (Gemini AI): To process your questions
  • Stripe: To process payments
  • Infrastructure providers: For hosting and operations

Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your data
  • Withdraw consent at any time

To exercise these rights, email support@woosidekick.com.

Data Retention

  • Account data is retained while your account is active
  • Usage logs are retained for billing and service improvement
  • Waitlist data is retained until launch or until you request removal
  • Upon account deletion, your data is permanently removed

Security

We implement industry-standard security measures including:

  • Encrypted storage of sensitive credentials
  • HTTPS for all communications
  • Bearer token authentication
  • Rate limiting on API endpoints

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email.

Contact

Questions about this policy? Email us at support@woosidekick.com.

Woo Sidekick© 2026
AboutTermsPrivacyContact