← zekeds.com

CGW Privacy Policy

ZDS Ventures LLC — Last updated: April 8, 2026

This Privacy Policy describes how CGW (“the App”), operated by ZDS Ventures LLC, collects, uses, stores, and deletes data when you install CGW on your Shopify store. By installing the App, you agree to this policy.

1. Who We Are

CGW is developed and operated by ZDS Ventures LLC, a company registered in California, United States. Palo Alto, CA is our place of business. For questions about this policy, contact us at me@zekeds.com.

2. What Data We Access

When you install CGW, you grant the App read-only access to the following Shopify data through Shopify’s OAuth API:

• Orders — order totals, line items, financial status, fulfillment status, timestamps, and associated customer identifiers. Full order history is accessed (including orders older than 60 days) to support cohort analysis and lifetime value calculations.
• Customers — customer identifiers, email addresses, and order counts. Email addresses are used solely to identify repeat customers across orders (cohort stitching) and are never used for marketing or shared with third parties.
• Products — product IDs, titles, and inventory data used to validate order line items.
• Fulfillments and inventory — fulfillment events used to validate order completion status.

CGW does not access payment card data, passwords, or any data not listed above. CGW never writes to your Shopify store — all access is read-only.

3. How We Use Your Data

Data accessed from your store is used exclusively to provide CGW’s analytics and reporting service to you. Specifically:

• Order and customer data is ingested into a Google BigQuery dataset associated with your store and used to generate analytics reports, quality checks, and strategic briefings.
• AI-generated summaries are produced using Anthropic’s Claude API. Data submitted to Claude is governed by Anthropic’s API usage policies. Your store data is never used to train any AI or machine learning model, by ZDS Ventures LLC or by Anthropic under our API agreement.
• Data is never sold, rented, or shared with third parties for any purpose other than operating the service (see Section 4).
• Data is never used for advertising, profiling, or any purpose beyond providing you with analytics for your own store.

4. Third-Party Services

CGW uses the following third-party infrastructure to operate. Each acts as a data processor on our behalf:

• Google Cloud Platform (BigQuery, Cloud Run, Secret Manager) — your store data is stored in BigQuery in the United States (us-central1 region). Google’s data processing terms apply.
• Anthropic (Claude API) — QC results (aggregated check outcomes, not raw customer records) are submitted to Anthropic’s API to generate plain-English summaries. Anthropic does not retain API inputs for training purposes under our enterprise agreement.
• Airbyte — used to sync data from your Shopify store to BigQuery. Airbyte operates as a pass-through and does not store your store data independently.

No other third parties have access to your store data.

5. Data Storage and Security

• All data is stored in Google BigQuery in the United States.
• Data is encrypted in transit (TLS) and at rest (Google-managed encryption).
• Your Shopify access token is stored in Google Secret Manager and is never logged or exposed.
• Access to your data is restricted to CGW’s production systems. No human reviews your raw store data except to investigate technical issues, and only with your consent.

6. Security Incident Response

In the event of a security incident involving merchant or customer data, ZDS Ventures LLC will:

• Investigate and work to contain the incident within 24 hours of discovery.
• Notify affected merchants via email within 72 hours if their data was compromised.
• Take corrective action to prevent recurrence and document the incident and response.

To report a suspected security issue, contact me@zekeds.com immediately.

7. Data Retention and Deletion

Your store data is retained for as long as CGW is installed on your store. When you uninstall CGW:

• CGW receives a shop/redact webhook from Shopify within 48 hours of uninstallation.
• All BigQuery datasets associated with your store are deleted within 48 hours of receiving this webhook.
• Your Shopify access token is deleted from Secret Manager within 48 hours of uninstallation.

If you wish to request deletion of your data before that period, contact me@zekeds.com and we will process the deletion promptly.

8. Customer Data (Your Customers)

CGW accesses data about your store’s customers (such as email addresses and order histories) in order to provide analytics to you. CGW does not contact your customers directly, does not use your customers’ data for any purpose other than providing analytics to you, and does not share your customers’ data with any third party except as described in Section 4.

If one of your customers requests deletion of their data from your store, CGW will delete their associated records from our systems upon receiving the applicable Shopify GDPR webhook. If you receive a customer data deletion request, you can also contact us at me@zekeds.com.

9. Your Rights

Depending on your jurisdiction, you may have rights to access, correct, or delete personal data we hold about you or your store. To exercise any of these rights, contact me@zekeds.com. We will respond within 30 days.

10. Changes to This Policy

We may update this policy from time to time. When we do, we will update the “Last updated” date at the top of this page. Continued use of the App after changes constitutes acceptance of the updated policy.

11. Contact

ZDS Ventures LLC
Palo Alto, CA, United States
me@zekeds.com