Privacy Policy
Last updated: 2026-07-01
1. Uploaded files are processed in memory, not stored
CSV files you upload for a scan or report are parsed and processed in memory on our servers for the duration of your session. They are not written to disk, not stored in a database, and not retained after your session expires. We cannot recover an uploaded file after processing, because we never keep one.
2. Sensitive columns are rejected before processing
The importer detects columns that look like customer, staff, payment, or accounting data (for example customer_email, cashier_name, card_number) and drops them before any row is processed. Reports are built only from product, inventory, and sales figures.
3. Waitlist email
If you join the founding-member waitlist, we store the email address you provide, the time you joined, and which page you joined from. We use it only to contact you about ShelfReport. It is kept until you unsubscribe or ask us to delete it — one email to us is enough.
4. Payments
Paid checkouts are handled securely by our payment provider — Paddle.com (acting as merchant of record) or Stripe. We never see or store your card details; we receive only a confirmation that a checkout was completed.
5. Cookies
We use no advertising or analytics cookies. The only client-side state used is what is strictly necessary to operate your session (for example, keeping your scan result reachable between the checkout redirect and the report page).
6. Contact
Questions or deletion requests: contact the address on the checkout receipt, and we will respond within a reasonable time.