Who this covers
This policy describes how Groviglobal handles personal data for two groups of people: tenant operators (you sign up for Groviglobal and run a store/website) and storefront visitors (you visit or buy from a store hosted on Groviglobal). The two are handled differently because tenants are our direct customers and visitors are customers of tenants.
What we collect — tenant operators
When you sign up at groviglobal.com/signup we store your full name, email address, password (hashed), preferred language, organization name, the subdomain slug you chose, the countries you selected to operate in, and which modules you enabled. We also record when you sign up and from which IP address.
As you use the dashboard we store the operational data you create: products, orders, customers, settings, feature toggles, etc. This is your data — see the Terms for the "you own it" part.
What we collect — storefront visitors
When you visit a store hosted on Groviglobal we set a few cookies:
gg_country— your selected country, so the store shows the right currency and shipping rate.gg_cart_<tenant>— what's in your cart for that tenant. Stored locally as JSON; never linked to a personal account unless you check out.- A session cookie if you log into the tenant's admin dashboard (operators only).
When you complete a purchase, the tenant collects the contact details you enter at checkout (name, email, phone, shipping address). Groviglobal stores this on the tenant's behalf so the tenant can fulfill your order. We don't use it to market to you.
How we use it
We use the data to operate the platform: render your dashboard, process orders, send transactional notifications, prevent abuse, and answer support questions. We don't sell personal data and we don't use it to train AI models.
Third parties we share data with
To run the service we send minimum-necessary data to:
- Vercel — application hosting and edge network. They see HTTP requests including IP addresses for routing.
- Neon — managed Postgres. They store the data we write but don't access it.
- Stripe — when a buyer pays by card we forward the payment details directly to Stripe's checkout (we never see the card number). Stripe's privacy policy applies to that flow.
Tenants may enable additional gateways (Mada, Tabby) in the future; we'll update this list when they go live.
Data location and retention
Production data lives in the EU (Neon's eu-central region). We keep it for the lifetime of your organization. If you close your organization we keep an archival copy for 30 days in case you want to reactivate, then delete it.
Storefront visitor data (orders, customer records) is owned by the tenant and follows the tenant's retention practices.
Your rights
You can:
- Access the personal data we hold about you
- Correct inaccuracies
- Request deletion (subject to legal record-keeping requirements)
- Object to processing where we rely on legitimate interest
- Receive a portable export
To exercise any of these, email us at support@groviglobal.com from the address on the account. We respond within seven days.
Cookies and tracking
We don't use third-party advertising or analytics trackers on Groviglobal-hosted pages. The cookies listed above are the only ones we set. Tenants' storefronts inherit this default — if a tenant chooses to add their own analytics in the future, that will be disclosed on their site, not here.
Changes to this policy
We'll move the "Last updated" date forward whenever we change this policy and announce material changes in-app. If a change affects you negatively (e.g. expanding what we collect), we'll flag it explicitly so you can decide whether to keep using the service.
Contact
Questions, requests, complaints — email support@groviglobal.com.