Last updated: 2026-05-26

    Privacy Policy

    At Krove we respect your privacy and your end customers'. This document explains what data we collect, on what legal basis, with whom we share it, and how you can exercise your rights.

    1. Who we are

    Krove is a SaaS platform that helps Tiendanube, Mercado Libre, and Amazon sellers run their stores with an AI copilot. We operate via krove.ai. General contact:hola@getkrove.com.

    2. Data we collect

    From you (the seller)

    • Account: name, email, language, time zone.
    • Store connection: OAuth tokens you explicitly authorize when installing the app.
    • Conversations: messages you send to the copilot and attachments.
    • Product usage: basic events, errors, diagnostics.
    • Billing: processed by Stripe; we never store card numbers.

    From your store

    • Catalog: products, prices, stock, categories, images.
    • Orders: order number, amount, status, date, items.
    • Metrics: visits, conversions, aggregated sales.
    • Minimal end-buyer information included in orders (name, city, shipping status). We do not store buyer payment data.

    3. Legal basis

    We process data based on (i) the service contract you accept on signup; (ii) the explicit consent you grant when installing the app; (iii) legitimate interest to improve the service and prevent fraud; and (iv) applicable legal obligations.

    4. How we use your data

    • Operate the copilot and store-specific dashboards.
    • Generate context and personalized memory (we do not train public models with your data).
    • Support, billing, and legal compliance.
    • Fraud and abuse detection.

    5. Sub-processors

    We share data only with vendors needed to operate Krove:

    • Lovable Cloud / Supabase — database hosting and authentication (EU/US).
    • Stripe — payment processing.
    • OpenAI and Google (Lovable AI Gateway) — AI models. Data sent is not used to train public models.
    • Resend — transactional email.
    • ipapi.co — approximate geolocation by IP for language detection.

    We do not sell or share data with third parties for advertising.

    6. International transfers

    Some vendors process data outside your country (mainly US and EU). We apply standard contractual clauses and reasonable technical measures.

    7. Retention and deletion

    • Your data is kept while the app is installed and your account is active.
    • When you uninstall the Tiendanube app, we receive the store/redact event (after 48 h) and automatically purge connections, tokens, snapshots, and alerts.
    • You may request immediate deletion at privacy@krove.ai.
    • If an end buyer requests deletion via customers/redact, we anonymize any reference in our systems.

    8. Your rights

    You have the right to access, rectify, export, object to, and delete your personal data. Email privacy@krove.ai; we respond within 30 days.

    End buyers may also exercise their rights via the store seller or directly at Krove. When Tiendanube forwards a customers/data_request, we prepare the export within the legal deadline.

    9. Cookies and geolocation

    We use strictly necessary cookies for auth and an anonymous identifier to persist language preference. We detect approximate country via IP (ipapi.co) only to suggest language; we do not persistently store IPs.

    10. Security

    TLS/HTTPS in transit and encryption at rest, secure authentication, row-level security in the database, rotatable secrets, and GDPR/LGPD request auditing.

    11. Minors

    Krove is not directed to users under 18.

    12. Changes

    We will post material changes on this page and notify you by email if they materially affect your data.

    13. Contact