Privacy Policy

Apelles is a content strategy platform for consumer product brands, operated at apelles.app. This Privacy Policy describes what data we collect, how we use it, and the choices you have.

For questions about this policy or your data, contact us at privacy@apelles.app.

Account data

When you sign up for Apelles, we store your email address, name (if provided), and the organizations + brands you create or are invited to. Authentication runs through Supabase Auth and uses industry-standard session tokens.

Connected store data

When you connect a Shopify store to a brand, we import the store’s product catalogue: product titles, descriptions, tags, prices, variants, and product image URLs. We do not import customer data, orders, payment details, reviews, blog posts, pages, or metafields. The imported data is scoped to the brand the store is connected to and is only accessible to members of that brand’s organization.

Content you produce in Apelles

Strategy documents, campaign briefs, generated imagery, generated copy, and any uploads are stored against your brand and visible only to members of that organization.

Telemetry

We log basic usage events (API call counts, latency, errors) to operate and improve the service. We do not sell or share telemetry with advertisers.

A core part of Apelles is generation of marketing imagery and copy by AI models — currently Google Gemini, Anthropic Claude, and Nano Banana. Your imported product data (titles, descriptions, images) and any briefs you provide are passed as input to these models so they can generate output for your campaigns.

The output is stored in your Apelles workspace for your review. Apelles does not automatically publish AI-generated content to any platform, write back to your Shopify store, or share output with third parties without your explicit action.

The AI providers we use process your prompts under their own enterprise terms, which prohibit using your data to train their models. See Google Gemini, Anthropic, and Nano Banana documentation for their specifics.

We share data only with the service providers we need to operate Apelles:

• Supabase — hosting our database, authentication, and file storage in the EU.
• Vercel — hosting the web application.
• Inngest — running background jobs (e.g. product ingest, scheduled tasks).
• Google Gemini, Anthropic, Nano Banana — AI generation. Your prompts are sent over TLS; the providers do not retain prompts for model training under our agreements.
• Shopify, Canva, Metricool — only when you explicitly connect those integrations, and only the data the integration requires.
• Stripe — for billing if you upgrade beyond the free tier. Payment details never reach Apelles servers.

We never sell personal data. We do not use it for advertising. We disclose data only when legally required (court order, lawful subpoena) and notify the affected account where the law allows.

Primary data — accounts, brands, imported product catalogues, generated content, encrypted integration tokens — is stored in Supabase data centres in the European Union. Access tokens for third-party integrations (Shopify, Canva, Metricool) are kept in Supabase Vault using transit and at-rest encryption.

We retain your data while your account is active. You can delete a brand at any time from the dashboard — that hard- deletes the brand’s campaigns, deliverables, generated content, and integration credentials.

If you uninstall the Apelles Shopify app from your store, Shopify notifies us via the shop/redact webhook 48 hours later; we then hard-delete every record imported from that store: products, variants, image references, voice- extraction sources, the integration credential, and the encrypted access token in Vault. You do not need to ask.

To delete your entire Apelles account, email privacy@apelles.app from the address on the account. We will confirm and complete the deletion within 30 days, retaining only the minimum records required for legal/financial compliance.

If you are in the EEA, UK, or another jurisdiction with equivalent rights, you may request access to, correction of, or deletion of your personal data; restriction of processing; data portability; and to object to processing. Contact privacy@apelles.app.

If we materially change this policy we will update the effective date at the top and notify account owners by email at least 14 days before the change takes effect.