Data Protection & GDPR

We are committed to protecting your data and complying with the General Data Protection Regulation (GDPR). This page outlines our principles and your rights.

Our Data Principles

  • Data Minimization: We only collect the data that is essential to provide our service. For your website's visitors, we collect only anonymized data (like page views and device type) and never any Personally Identifiable Information (PII).
  • Purpose Limitation: The analytics data we collect from your site is used solely to populate your dashboard and power our AI recommendation engines for your benefit. We will never sell or share your site's data with third parties.
  • Security: All sensitive data, such as account credentials and API keys, are encrypted at rest in our database using industry-standard AES-256-GCM encryption.

Your Rights Under GDPR

As a user of CortexCart, you have several rights regarding your personal data:

  • The Right to Access: You can request a copy of the personal data we hold about you at any time.
  • The Right to Rectification: You can update your personal information, such as your name and site details, directly from the Settings page.
  • The Right to Erasure (Right to be Forgotten): You can permanently delete your account and all associated data from the "Danger Zone" in your Settings. This action is irreversible.

Contact Us

If you have any questions about our data protection practices or wish to exercise any of your rights, please contact our Data Protection Officer at privacy@cortexcart.com.