Privacy Policy

At TraceSignals, we take the privacy of our merchants and their customers extremely seriously. This Privacy Policy details how we collect, process, secure, and route data signals from your online store to advertising platforms and generative search indexes.

1. Data We Route and Process

TraceSignals is a data routing pipeline. We do not store or sell your customers' personally identifiable information (PII). We process the following categories of event telemetry on behalf of merchants:

• Ecommerce Interaction Signals: Product views, cart additions, checkouts started, and purchase values.
• Device Metadata: User agent strings, IP addresses (hashed prior to routing), and browser language.
• Customer Match Parameters: Customer email, phone, and zip code. To comply with privacy platforms (like Meta and Google), all match parameters are automatically hashed using SHA-256 before leaving your WooCommerce/Shopify server.

2. How We Utilize Cookies

TraceSignals uses lightweight first-party cookies to compile session actions and avoid purchase duplication. We do not use third-party tracking cookies, and we honor browser-level Do Not Track signals.

3. Generative Engine Catalog Indexing

To enable Generative Engine Optimization (GEO), TraceSignals publishes structured catalog feeds (sitemaps and JSON-LD). We only index public store data: product names, prices, description text, reviews, and stock availability. We never share customer transaction histories with public LLMs.

4. Technical Security

All event telemetry routed through the TraceSignals Conversions API (CAPI) is encrypted in transit using SSL/TLS protocols.