Trust & safety
Safety model
Trust beats speed. The agent prepares; a person authorizes. The channel is read-and-prepare only.
Hard boundaries
- No payments. Payment, addresses, and order management happen only on Shopify-hosted pages. The terminal never collects payment.
- No credentials. The agent never asks for or accepts passwords, one-time codes, payment details, customer-account tokens, or raw cart keys.
- Confirmation-gated checkout. The checkout URL stays hidden until the buyer types the exact confirmation phrase.
- No autonomous purchasing. Nothing checks out without an explicit human confirmation.
Data handling
- PII redaction at the boundary — customer names, emails, phone, addresses, and identifiers are redacted before display, logging, or persistence.
- Untrusted product copy — merchant text (descriptions, policies) is treated as data, never as instructions, so injection in a product description is ignored.
- Merchant-scoped, rate-limited, audited — every action is scoped to one shop, rate-limited, and recorded as a redacted audit event.
See the Privacy Policy and Terms for full detail.