EcomSosse

Privacy Policy

Last updated: May 20, 2026

1. Introduction

EcomSosse ("we", "us", or "our") is a profit tracking and analytics platform for e-commerce merchants, operated by Joel Voelkel (sole trader), Hohensteinstr. 43, 44866 Bochum, Germany. This Privacy Policy explains what personal data we collect, how we use it, and what rights you have regarding your data. We are committed to handling your data in accordance with the EU General Data Protection Regulation (GDPR) and applicable German data protection law.

2. Data We Collect

We collect only the data necessary to provide the EcomSosse service:

  • Account data: Your email address and a bcrypt-hashed version of your password when you register. We never store your password in plain text.
  • Shopify store data: Order data, product data, and revenue figures fetched from your connected Shopify store via the Shopify Admin API. This data is used exclusively to calculate profit metrics.
  • Meta Ads data: Ad spend, impressions, clicks, and campaign-level performance data from your authorized Meta Ads accounts via the Meta Marketing API.
  • Google Ads data: Ad spend and campaign performance data from your authorized Google Ads accounts via the Google Ads API.
  • TikTok Ads data: Ad spend, impressions, clicks, and conversions from your authorized TikTok Ad accounts via the TikTok Marketing API.
  • User-defined cost data: Product costs (COGS), shipping rates, transaction fee configurations, and custom costs that you enter manually into EcomSosse.

We do not collect payment card information. We do not use cookies for tracking or advertising. We use a single authentication cookie solely to maintain your login session.

3. How We Use Your Data

All data collected by EcomSosse is used exclusively for the following purposes:

  • To authenticate you and maintain your secure session within the EcomSosse platform.
  • To calculate daily, weekly, and monthly profit metrics — including revenue, ad spend, cost of goods, shipping costs, transaction fees, and net profit — and display them in your private dashboard.
  • To provide campaign-level, product-level, and time-period breakdowns of your profitability data.
  • To synchronize and store the most recent advertising and order data so your dashboard stays up to date.

We do not use your data for advertising, profiling, benchmarking across users, machine learning training, or any purpose beyond displaying your own business metrics back to you.

4. Third-Party Services

EcomSosse integrates with the following third-party services to deliver its core functionality:

  • Shopify Partner API — to read order and product data from your Shopify store. Subject to Shopify's Privacy Policy.
  • Meta Marketing API — to read advertising performance data from your authorized Meta Ads accounts. Subject to Meta's Privacy Policy.
  • Google Ads API — to read advertising performance data from your authorized Google Ads accounts. Subject to Google's Privacy Policy.
  • TikTok Marketing API — to read advertising performance data from your authorized TikTok Ad accounts. Subject to TikTok's Privacy Policy.
  • Turso / libSQL — our database infrastructure, used to securely store your account data, cost configurations, and synchronized advertising and order data.
  • Vercel — our hosting provider. Your data is processed on Vercel infrastructure and subject to Vercel's Privacy Policy.

5. Data Storage and Security

All data is transmitted over encrypted HTTPS connections. Passwords are hashed using bcrypt before storage and are never stored or transmitted in plain text. API access tokens for connected platforms (Shopify, Meta, Google, TikTok) are stored encrypted in our database. Session authentication is handled via short-lived JSON Web Tokens (JWT) stored in HTTP-only cookies. We apply industry-standard security practices to protect your data from unauthorized access, alteration, or disclosure.

6. Your Rights (GDPR)

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access: You may request a copy of the personal data we hold about you.
  • Right to rectification: You may request correction of inaccurate personal data.
  • Right to erasure: You may request deletion of your account and all associated data.
  • Right to data portability: You may request an export of your data in a machine-readable format.
  • Right to object: You may object to the processing of your personal data in certain circumstances.
  • Right to lodge a complaint: You may lodge a complaint with the supervisory authority in your EU member state. In Germany, this is the Landesbeauftragte für Datenschutz of the respective federal state.

To exercise any of these rights, please contact us at info@getshameless.de.

7. Data Retention

We retain your data for as long as your account is active. If you delete your account, all associated personal data, store connections, cost configurations, and synchronized advertising and order data will be permanently deleted from our systems within 30 days. You may request immediate deletion by contacting us at info@getshameless.de.

8. Revocation of Platform Access

You can disconnect any connected platform (Shopify, Meta, Google, TikTok) at any time from the Integrations settings page within EcomSosse. Upon disconnection, no further data will be fetched from that platform. Previously synchronized data associated with the disconnected account will remain in your EcomSosse dashboard until you delete your account or explicitly request its removal.

9. Contact

For privacy-related questions, requests, or complaints, please contact:

Joel Voelkel
Hohensteinstr. 43
44866 Bochum, Germany
info@getshameless.de