Logo

Start Free Pilot

Logo

Start Free Pilot

Logo

Legal

Privacy policy

Sabato AI Privacy Policy

Effective Date: 1 February 2026
Last Updated: 11 February 2026

Vanvitelli Ventures SL, the company behind Sabato AI (“we”, “us”, “our”), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and disclose personal data when you use our Shopify Application, website, and Voice AI platform (collectively, the “Services”).


Who We Are

Data Controller:
Vanvitelli Ventures SL
Gran Vía Asima, 20, Oficina 13
Palma de Mallorca, 07009
Baleares, Spain
NIF: B13980974
Contact: privacy@sabato.ai


What Data We Collect

We collect the following categories of data to provide our Voice AI and Catalog Search services:

  1. Account Data: Name, email address, shop URL (myshopify.com domain), billing details, and other account-related information necessary to manage your subscription.

  2. Shopify Store Data: To function as a connector, we sync and cache public-facing store data, including:

    • Products: Titles, descriptions, tags, variants, and images.

    • Inventory: Stock levels and location availability (to answer "is this in stock?" queries).

    • Collections: Category structures.

  3. Voice & Interaction Data: Voice recordings, transcripts, and search queries generated when End Users interact with the Sabato AI voice agent.

  4. Usage Data: IP address, device information, browser type, timestamps, and activity logs within the dashboard.

  5. Communication Data: Emails, support requests, and messages exchanged with us.

We do not intentionally collect sensitive personal data (e.g., health, biometric, or political data) unless voluntarily provided in a voice query, which we advise against.

How We Use Your Data

We use your data for the following purposes:

  • To synchronize your product catalog and provide accurate AI search results.

  • To provide, maintain, and support the Sabato AI Voice Agent.

  • To manage your account and process payments.

  • To detect and prevent fraud or abuse.

  • To analyze usage trends to improve search relevance.

  • AI Training: To train and refine our Non-Personal AI models (e.g., improving speech-to-text accuracy for product names). Personal data is anonymized before being used for training where possible.

  • To comply with legal obligations (GDPR, Tax Laws).

Legal Bases for Processing (GDPR)

  • Performance of a Contract: Processing Shopify Data to deliver the Voice Search service.

  • Legitimate Interests: Improving AI accuracy, security, and analytics.

  • Consent: For marketing communications or specific cookies.

  • Legal Obligation: Compliance with Shopify’s Mandatory Webhooks and tax laws.

Shopify Data & GDPR Compliance

Sabato AI acts as a Data Processor for the merchant's data. We strictly adhere to Shopify’s API License and Terms regarding data privacy.

Mandatory Webhooks:
We listen to and process the following Shopify GDPR webhooks within the required timeframes:

  1. customers/data_request: We provide all data associated with a specific customer upon request.

  2. customers/redact: We delete all personal data associated with a specific customer (End Buyer) when they request deletion from the merchant.

  3. shop/redact: If you uninstall the Sabato AI app, we delete your Store Data and Account Data from our active databases within 30 days, retaining only what is legally required for tax/audit purposes.

Data Sharing

We do not sell your personal data. We share data only as follows:

  • Subprocessors: Cloud hosting (AWS), database providers, and AI inference providers (e.g., OpenAI/Anthropic), strictly under Data Processing Agreements (DPAs).

  • Professional Advisors: Legal and accounting firms.

  • Legal Authorities: If required by law.


Data Retention

  • Store Data: Retained as long as the App is installed. Deleted upon uninstallation (via shop/redact).

  • Voice/Interaction Logs: Retained for a limited period to improve query accuracy, then anonymized or deleted.

  • Account Data: Retained as long as you have an active account, plus the period required by Spanish tax law.


International Data Transfers

Data may be processed outside of the EU/EEA (e.g., servers in the US). We ensure appropriate safeguards are in place, such as the European Commission’s Standard Contractual Clauses (SCCs).


Your Rights

Under GDPR, you have the right to:

  • Access, Rectify, or Erase your data.

  • Restrict or Object to processing.

  • Portability: Request a copy of your data.

  • Withdraw Consent: At any time.

To exercise these rights, contact privacy@sabato.ai.


Cookie Policy

Effective Date: 1 February 2026
Last Updated: 11 February 2026

This Cookie Policy explains how Sabato AI uses cookies on our website and embedded Shopify App.

What Are Cookies?
Cookies are small text files stored on your device to help us recognize your browser and remember your preferences.

Types of Cookies We Use

  1. Strictly Necessary: Required for the app to load inside Shopify (e.g., Authentication Tokens, Session IDs). Without these, the app cannot function.

  2. Functional: Stores preferences (e.g., language, dashboard layout).

  3. Analytics: Helps us understand how merchants use the dashboard (e.g., Google Analytics).

Third-Party Cookies
We may use trusted third-party services that set cookies, including:

  • Shopify: To maintain your admin session.

  • Stripe: For billing.

  • Analytics Providers: To track app performance.

Managing Cookies
You can control cookies through your browser settings. However, blocking Strictly Necessary cookies will prevent the Sabato AI app from loading inside the Shopify Admin.

Contact Us
For questions, contact privacy@sabato.ai.