Privacy Policy

PeekMyStore is a service operated by AQUIVO LABS SRL (the “Company”, “we”, “us”).

• Country of incorporation: Romania
• Unique registration code (CUI): 54583078
• Privacy contact: support@peekmystore.com

We collect only what is necessary to operate the service.

• Audit input: the store URL you submit. This is used to fetch and analyze publicly available pages.
• Audit output: the conversion score, detected leaks, recommended fixes, and detected tech stack derived from public pages. We store this so the report remains accessible via the magic link.
• Payment metadata: when you pay, our payment processor (Stripe, Inc.) handles your payment details. We receive only the payment status, last four digits of the card, billing email, and country. We do not store full card numbers.
• Email address: used to send the report and the magic link. Never used for marketing without explicit opt-in.
• Technical data: IP address, user agent, request timestamps, and basic event logs. Used for security, abuse prevention, and performance monitoring.

• We do not install code on your store, request Shopify admin permissions, or access non-public data.
• We do not collect data about your shoppers, your products, or your orders.
• We do not sell, rent, or share personal data with advertisers.

Where the GDPR applies, we rely on the following legal bases:

• Contract performance — running the audit, processing payment, and delivering the report you purchased.
• Legitimate interests — preventing abuse, securing the service, maintaining logs, and improving the product.
• Legal obligation — keeping invoices and accounting records as required by law.
• Consent — only where you opt in (e.g. marketing email, if introduced).

• Audit URL, results, and magic link: kept indefinitely so your report stays accessible. You can request deletion at any time.
• Payment records and invoices: kept for the period required by tax and accounting law (typically 10 years).
• Server logs: typically 30–90 days.

We use the following service providers to operate PeekMyStore:

• Stripe, Inc. — payment processing.
• Resend (or equivalent transactional email provider) — sending magic links and report delivery emails.
• Hosting / database provider (e.g. Vercel, Supabase, or equivalent) — application hosting and data storage.
• Google PageSpeed Insights — mobile speed measurements (request data is sent to Google).

Each sub-processor processes data only to perform its function. Where data is transferred outside the EU/EEA, we rely on standard contractual clauses or equivalent safeguards.

If GDPR applies to you, you have the right to:

• access the personal data we hold about you;
• request correction of inaccurate data;
• request deletion of your data (subject to legal retention rules);
• request restriction of processing;
• request portability of data you provided to us;
• object to processing based on legitimate interests;
• lodge a complaint with the Romanian supervisory authority — Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal (ANSPDCP, dataprotection.ro) — or with the data protection authority of your country of residence.

To exercise any of these rights, email support@peekmystore.com. We respond within 30 days.

We use a small number of strictly necessary cookies to operate the service (e.g. session state, CSRF protection). We do not use advertising or third-party tracking cookies on peekmystore.com. If we add analytics, we will update this policy and request consent where required.

Data is transmitted over HTTPS and stored on managed infrastructure with access controls and encryption at rest. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you and the relevant authority where required by law.

The service is not directed to anyone under 16 and we do not knowingly collect their data.

We will update this policy when our practices change. Material changes will be flagged on the site. The date at the top reflects the last revision.