Will Qubify actually increase my sales?

Yes. Qubify is designed to convert browsers into buyers by answering questions in real-time, recommending products, and creating urgency with unique discounts. Most merchants see a 15–30% lift in conversion rate within the first 30 days.

What if Qubify can't answer a customer question?

Qubify escalates gracefully to your human team with full context. Less than 3% of conversations need human intervention, and Qubify learns from every escalation to improve.

How long does setup take?

Setup takes about 15–20 minutes. You add your store, upload your knowledge base (optional), set your brand voice, and you're live. No coding required.

Does Qubify work with my existing Shopify setup?

Absolutely. Qubify is Shopify-native and integrates seamlessly with your store, inventory, orders, and customer data. No third-party tools needed.

What happens to my customer data?

Your data stays yours. Qubify uses enterprise-grade encryption, SOC 2 compliance, and never shares your data with third parties. Full transparency, always.

Back to Home|Legal Centre

Legal Centre

Everything you need to know about how Qubify operates, protects your data, and complies with applicable law.

Last updated: March 19, 2026

Policies

How we collect, use, and protect your data

The rules governing your use of Qubify

Data & Security

Data Processing Agreement

GDPR-compliant DPA for EU merchants

Security Practices

How we protect your store and customer data

Compliance

GDPR Compliance

Our obligations under EU data protection law

CCPA Compliance

California Consumer Privacy Act disclosures

Acceptable Use Policy

Qubify is designed to help Shopify merchants provide better customer experiences through AI-powered assistance. To protect the integrity of our platform and the safety of all users, the following uses are strictly prohibited:

Illegal Products or Services

Using Qubify to sell, promote, or support products or services that are illegal in your jurisdiction or the jurisdiction of your customers.

Deceptive Practices

Configuring the AI assistant to make false claims, misrepresent products, create fake urgency, or engage in any form of consumer deception.

Harassment and Abuse

Using the Service to harass, threaten, or abuse customers, competitors, or any third parties.

Data Harvesting

Using the Service to collect customer data beyond what is necessary for legitimate commerce and support purposes.

Competitive Intelligence

Using the Service to scrape competitor data, train competing AI systems, or reverse-engineer Qubify's technology.

Circumventing Security

Attempting to bypass authentication, exploit vulnerabilities, or interfere with the Service's infrastructure.

Regulated Advice

Using the AI assistant to provide medical, legal, financial, or other regulated professional advice without appropriate disclaimers and qualified human oversight.

Violations may result in immediate account suspension without refund. We reserve the right to report illegal activity to appropriate authorities.

Data Processing Agreement (DPA)

For merchants operating in the European Economic Area (EEA) or United Kingdom, Qubify acts as a data processor when processing your customers' personal data on your behalf. You, as the merchant, are the data controller.

Our Data Processing Agreement includes:

A description of the processing activities performed by Qubify on your behalf
Technical and organisational security measures (TOMs) we implement
Sub-processor list and notification procedures for changes
Standard Contractual Clauses (SCCs) for international data transfers
Data subject rights assistance obligations
Breach notification timelines (within 72 hours of discovery)
Data deletion and return procedures upon contract termination

To request a signed DPA, please email [email protected] with your business name and registered address.

Security Practices

Protecting your store data and your customers' information is a core responsibility we take seriously. Our security programme includes:

Encryption in Transit

All data transmitted between your store, your customers, and Qubify is encrypted using TLS 1.2 or higher.

Encryption at Rest

All stored data is encrypted using AES-256. Database credentials and secrets are stored in a dedicated secrets manager.

Access Controls

Role-based access control (RBAC) ensures that employees only access data necessary for their role. All access is logged and audited.

Infrastructure Security

Our infrastructure is hosted on enterprise-grade cloud providers with SOC 2 Type II certification. We conduct regular penetration testing.

Incident Response

We maintain a documented incident response plan. In the event of a data breach, we will notify affected merchants within 72 hours.

Shopify API Security

We use Shopify's OAuth 2.0 flow for authentication and request only the minimum API scopes necessary to provide the Service.

CCPA Compliance

For California residents and merchants with California customers, Qubify complies with the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA):

We do not sell personal information. Qubify does not sell, rent, or trade personal information to third parties for monetary or other valuable consideration.
Right to Know: California consumers may request disclosure of the categories and specific pieces of personal information collected about them.
Right to Delete: California consumers may request deletion of their personal information, subject to certain exceptions.
Right to Correct: California consumers may request correction of inaccurate personal information.
Non-Discrimination: We will not discriminate against consumers for exercising their CCPA rights.

To submit a CCPA request, contact us at [email protected]. We will respond within 45 days.

AI Transparency Disclosure

Qubify uses artificial intelligence and machine learning technologies, including large language models (LLMs), to power the AI assistant. In the interest of transparency:

The AI assistant is not a human. Merchants are encouraged to disclose to their customers that they are interacting with an AI assistant.
AI responses are generated probabilistically and may contain errors, inaccuracies, or outdated information. Merchants are responsible for monitoring and correcting AI outputs.
We use third-party LLM providers to generate responses. These providers process conversation data in accordance with their own privacy policies and our data processing agreements with them.
We do not use your store data or customer conversations to train our own AI models without your explicit consent.
The AI assistant's capabilities are limited to the scope configured by the merchant and the knowledge base provided.

Contact Our Legal Team

For legal inquiries, DPA requests, data subject rights requests, or compliance questions:

Qubify Inc.

Legal: [email protected]

Privacy: [email protected]

Security: [email protected]