Privacy Policy
Last updated: July 13, 2026
Cart Spy ("Cart Spy", "we", "us") is a Shopify app that provides cart analytics, session recording and heatmaps to Shopify merchants. Cart Spy is operated by Jola. You can contact us any time at contact@jola.com.au.
This policy explains what data Cart Spy collects, why we collect it, where it is stored, how long we keep it, and the choices and rights available to merchants and their customers. It covers:
- Merchants — Shopify store owners and staff who install and use the Cart Spy app.
- Shoppers — visitors and customers of stores that have Cart Spy installed. For shopper data, the merchant is the data controller and Cart Spy acts as a data processor / service provider on the merchant's behalf.
- Website visitors — people browsing this website (www.cart-spy.com).
1. Data we collect from stores using the app
Store and account information
- Shop domain, store name and store contact email (provided by Shopify when the app is installed).
- Subscription plan, billing status and app configuration.
Cart and order activity
- Cart contents and changes: products, variants, quantities, prices and cart totals, captured through Shopify's cart APIs and webhooks.
- Checkout progress events (e.g. checkout started, contact information, shipping, payment, order completed), captured via a Shopify Web Pixel.
- Order outcomes used to mark carts as converted and to report recovered revenue.
Session recordings and heatmaps
- Anonymised browsing interactions on the merchant's storefront: pages viewed, mouse movement, clicks, scrolling, viewport size, and changes to page structure needed to replay the session.
- Each recording is identified by a random, anonymous session ID. Recordings are not indexed or searchable by a shopper's name, email address or phone number.
What we deliberately do not record: passwords, payment or card details, and the values typed into form fields. The tracking script excludes password and sensitive fields by design and does not capture keystroke contents.
2. How we use this data
- To provide the app's features to the merchant: real-time cart monitoring, abandoned-cart analytics, session replay, heatmaps, checkout funnel reports and abandonment alerts.
- To generate AI-assisted insights (paid plans): privacy-scrubbed session summaries and aggregated metadata are processed via Anthropic's Claude API to produce plain-language findings for the merchant. Anthropic does not use data submitted through its API to train its models.
- To operate, secure, debug and improve the service.
- We do not sell personal data, and we do not use shopper data for advertising or cross-store profiling.
3. Where data is stored and how it is protected
- Cart Spy runs on Hetzner Cloud infrastructure. Session recordings are compressed and stored in object storage; analytics metadata is stored in our database.
- All data is encrypted in transit (TLS/HTTPS). Access to production systems is restricted to authorised personnel.
- Recordings are served to the merchant dashboard through short-lived, signed URLs.
4. How long we keep data
Session recordings are automatically deleted based on the merchant's plan:
| Plan | Session recording retention |
|---|---|
| Free | 7 days |
| Starter | 14 days |
| Growth / Pro | 30 days |
Aggregated cart analytics are retained while the app remains installed so the merchant's dashboards stay accurate. When a merchant uninstalls Cart Spy, all of the store's data — recordings, cart events, analytics and settings — is deleted in line with Shopify's mandatory data-erasure schedule (Shopify issues the erasure request 48 hours after uninstall).
5. GDPR and privacy rights
Cart Spy implements all of Shopify's mandatory privacy webhooks:
- Customer data request (Art. 15/20 GDPR) — because recordings are stored under anonymous session IDs and are not linked to customer identities, there is normally no identifiable customer data to return. We respond to every request and will assist merchants with any lookup that is possible.
- Customer erasure (Art. 17 GDPR) — handled the same way; any data that can be associated with the request is removed.
- Shop erasure — deletes all data belonging to the store, as described above.
Merchants and shoppers can also contact us directly at contact@jola.com.au to exercise access, correction, deletion or objection rights. We respond within 30 days.
Note for merchants: you are responsible for disclosing your use of analytics and session-recording tools (including Cart Spy) in your own store's privacy policy, and for obtaining any consent required by the laws that apply to your customers (e.g. GDPR / ePrivacy).
6. Service providers (subprocessors)
| Provider | Purpose |
|---|---|
| Shopify | App platform, authentication, billing, webhooks |
| Hetzner | Cloud hosting, databases and object storage |
| Anthropic | AI insight generation (privacy-scrubbed summaries only) |
| Resend | Transactional email (merchant notifications and alerts) |
7. Cookies and this website
- This marketing website uses Google Ads conversion tracking (Google tag) to measure ad performance. See Google's advertising policies for details and opt-out options.
- The Cart Spy tracking script on merchant storefronts does not set advertising cookies. It uses browser storage only to maintain the anonymous session identifier that links a shopper's interactions into one recording.
8. Children
Cart Spy is a business tool for Shopify merchants and is not directed at children. We do not knowingly collect personal information from children.
9. Changes to this policy
We may update this policy as the product evolves. Material changes will be reflected on this page with an updated "Last updated" date. Continued use of the app after changes take effect constitutes acceptance of the revised policy.
10. Contact
Questions, concerns or privacy requests: contact@jola.com.au.