Privacy Policy

Last updated: 27 April 2026

OrderClosr AI ("we", "us") provides an AI sales agent that responds to messages on behalf of e-commerce merchants ("you"). This policy explains what we collect, why, and how to control your data.

What we collect

• Account data — your email, name, hashed password, and the workspace name you create.
• Channel credentials — Facebook Page access tokens, WhatsApp Business tokens, and Google Sheets service-account JSON. Stored encrypted at rest using Fernet (AES-128).
• Customer messages — incoming WhatsApp / Messenger / Instagram messages, plus AI replies, stored as conversation history scoped to your workspace only.
• Orders & leads — what your AI extracts from conversations, mirrored to your Google Sheet and our database.
• Courier credentials — Yalidine / ZR / Anderson / Maystro / Noest API keys, encrypted at rest.

How we use it

• To run the AI agent for your workspace (we send conversation context to Anthropic's Claude API to generate replies).
• To create shipments via courier APIs you've configured.
• To sync orders to the Google Sheet you've connected.
• To compute aggregate stats shown on your dashboard (ROI, order counts).

Sub-processors

• Anthropic — message processing (Claude API). No training on your data.
• Meta — Facebook / Instagram / WhatsApp message delivery.
• Google — Sheets API for order logging.
• Chargily Pay — payment processing for paid plans (Algerian provider).
• Sentry — error monitoring (we scrub PII before sending).

Data retention

Conversations, orders, and leads are retained as long as your workspace is active. Backups are kept for 14 days. If you delete your workspace, all data is removed within 30 days from production and backups.

Your rights

• Export — download all your workspace data as JSON from Settings → Workspaces → Export data.
• Delete — permanently delete your workspace and all associated data from Settings → Workspaces → Delete workspace.
• Object / Restrict — pause AI replies anytime via the Controls page.
• Contact privacy@orderclosr.com for any other request.

Security

Secrets (tokens, courier keys, Sheet credentials) are encrypted with Fernet keys held in environment variables, separate from the database. Database connections are TLS-encrypted. We rotate keys when staff with access leaves.

Customer-end-user notice

If you're a customer messaging a merchant who uses OrderClosr AI, you're talking to that merchant's AI agent. The merchant controls your data; reach out to them for export/deletion.

Contact

OrderClosr · Algiers, Algeria · privacy@orderclosr.com