FeedMechanicFeedMechanic

Privacy Policy

Last updated: 22 January 2026

This Privacy Policy explains how FeedMechanic ("we", "us", "our") collects, uses and shares information when you use our website and app (the "Service").

1. Who we are

FeedMechanic is operated by [Legal entity name] ("FeedMechanic").
Registered address: [Address]
Contact email: support@feedmechanic.com

For data protection purposes, we are the data controller of personal data processed in connection with the Service.

2. What this policy covers

This policy covers information we process when you:

  • visit our website,
  • create an account,
  • connect Google Merchant Center and/or Shopify,
  • run a scan / generate a report,
  • join a waitlist, purchase a plan, or use Autopilot,
  • contact support.

3. Data Use (Google OAuth)

FeedMechanic uses Google OAuth only to let you connect your Google Merchant Center and generate your catalogue health report (and, if you choose, to run automated recovery actions). We access and process only the minimum Google Merchant Center data required to show item statuses and issue diagnostics, and we do not sell your data or use it for advertising. Your data is stored securely, retained only as long as needed to provide the Service, and you can revoke access at any time from your Google Account or by disconnecting Google inside FeedMechanic.

4. Information we collect

A. Information you provide

Account details: name, email address, authentication identifiers.

Support communications: messages you send us (and any attachments).

Billing details: we do not store full card details; payments are handled by our payment provider (e.g. Stripe). We may store billing status, plan, invoices/IDs, and the last 4 digits/expiry where provided by the payment provider.

B. Information we collect from connected services (with your permission)

When you connect third-party accounts, we access data via their APIs as required to provide the Service:

Google Merchant Center (via Google OAuth)
Merchant Center account identifiers, diagnostic / product status signals, item-level issues, and related metadata needed to generate your report and (if enabled) run Autopilot.

Shopify (if connected)
Store identifiers, product catalogue data, variant data, images/URLs and other product attributes needed to generate previews and (if enabled) apply changes.

We only request the minimum permissions we need for the features you enable. If you enable additional features (e.g. Autopilot), you may be prompted to grant additional permissions.

C. Automatic data (website/app usage)

Usage data: pages viewed, actions taken, timestamps, device/browser info, approximate location (derived from IP), and referral URLs.

Cookies / similar technologies: used for authentication, security, analytics, and to remember preferences. See "Cookies" below.

5. How we use your information

We use your information to:

  • provide the Service (run scans, generate reports, display issues, and provide fix previews),
  • operate Autopilot if you enable it,
  • authenticate you and secure accounts,
  • process payments and manage subscriptions,
  • communicate with you about service messages (e.g. important changes, security notices),
  • respond to support requests,
  • monitor, prevent and investigate fraud/abuse,
  • improve and develop the Service (e.g. performance, reliability, UX).

6. Legal bases for processing (UK GDPR / EU GDPR)

We process personal data under these bases:

  • Contract: to provide the Service you request (e.g. running reports, operating your account).
  • Legitimate interests: to secure and improve the Service, prevent abuse, and understand usage (balanced against your rights).
  • Consent: where required (e.g. certain cookies; optional marketing).
  • Legal obligation: where we must comply with laws (e.g. accounting/tax, lawful requests).

7. Sharing and disclosures

We may share information with:

  • Service providers that help us run the Service (hosting, databases, analytics, email delivery, error monitoring, payments). These providers process data on our instructions and under contractual safeguards.
  • Third-party platforms you connect (e.g. Google, Shopify) as required for authentication and API operations you authorise.
  • Professional advisors (legal/accounting) when necessary.
  • Authorities if required by law, or to protect rights, safety, and security.
  • Business transfers if we are involved in a merger, acquisition, or asset sale (with appropriate protections).

We do not sell your personal data.

8. Google user data & permissions

If you connect Google services, our use and transfer of information received from Google APIs will follow:

  • the permissions you grant, and
  • Google's requirements for limited use of Google user data.

You can revoke our access at any time by:

  • disconnecting Google inside the FeedMechanic app (if available), and/or
  • removing FeedMechanic's access from your Google Account security settings.

9. International transfers

Our providers may process data outside the UK/EEA. Where that happens, we use appropriate safeguards such as contractual protections (e.g. standard contractual clauses) and/or rely on adequacy decisions where applicable.

10. Data retention

We keep personal data only as long as needed for:

  • providing the Service and maintaining your account,
  • complying with legal obligations,
  • resolving disputes and enforcing agreements.

If you delete your account, we will delete or anonymise personal data within a reasonable period, except where we must retain certain information (e.g. billing records) for legal reasons.

11. Security

We use reasonable technical and organisational measures to protect your data, including access controls and encryption in transit. No method of transmission or storage is 100% secure, so we cannot guarantee absolute security.

12. Your rights

Depending on your location, you may have rights to:

  • access your data,
  • correct inaccurate data,
  • delete data,
  • restrict or object to processing,
  • receive a portable copy of certain data,
  • withdraw consent (where processing is based on consent).

To exercise these rights, contact support@feedmechanic.com. You also have the right to complain to your data protection regulator (in the UK, the Information Commissioner's Office).

13. Cookies

We use cookies and similar technologies for:

  • essential functionality (login/session/security),
  • preferences (remembering settings),
  • analytics (understanding how the Service is used).

Where required, we will ask for consent for non-essential cookies. You can control cookies via your browser settings.

14. Children

The Service is not intended for children under 16, and we do not knowingly collect data from children.

15. Changes to this policy

We may update this Privacy Policy from time to time. We'll update the "Last updated" date and may notify you of material changes.

16. Contact

Questions? Email support@feedmechanic.com.