Kekari Data & Commerce Synergy Platform is an enterprise-grade automation engine. This policy outlines our commitment to protecting your commercial assets—including supply chain data and Shopify store metadata—while maintaining full transparency regarding how our AI-driven features interact with your environment.

Kekari 数据与商业协同平台 是一款企业级自动化引擎。本政策旨在说明我们如何保护您的商业资产（包括供应链数据与 Shopify 店铺元数据），并对我们的 AI 驱动功能如何与您的经营环境进行交互保持完全透明。

To deliver our core commerce orchestration services, Kekari requests specific OAuth scopes:

• Product & Inventory Orchestration: We utilize write_products and write_inventory to execute automated publishing workflows and bulk SKU updates.
• Listing Management: We read store listing metadata (read_products, read_locations) to build the Listing Manager console and provide inventory status synchronization.
• Data Source Processing: Custom CSV/Excel uploads are processed locally for AI header mapping and are only persisted if added to your specific Data Source library.

为了提供核心商业编排服务，Kekari 会请求特定的 OAuth 授权范围：

• 商品与库存编排：我们使用 write_products 和 write_inventory 来执行自动化发布工作流及批量 SKU 更新。
• 刊登管理：我们读取店铺刊登元数据（read_products, read_locations）以构建刊登管理器控制台，并提供库存状态同步。
• 数据源处理：自定义 CSV/Excel 上传文件将用于 AI 表头映射处理。只有当您选择将其加入数据源库时，相关结构化数据才会被持久化存储。

All AI-assisted processing in Kekari—including category matching and image selection—is strictly confined to the following:

• No PII Training: Your business-sensitive data is never used to train public models. Local AI agents operate within isolated tenant environments.
• Mandatory Verification: Structural changes to your Shopify environment are only committed after explicit user confirmation through our "Human-in-the-Loop" preview panels.

Kekari 中所有 AI 辅助处理（包括类目匹配和图片选择）均严格遵循以下准则：

• 禁止 PII 训练：您的商业敏感数据绝不会被用于训练公共模型。本地 AI 代理在隔离的租户环境中运行。
• 强制验证：对 Shopify 环境的结构性改动只有在经过“人在回路”预览面板的明确确认后才会提交。

Kekari ensures that all data flow out of the platform is secure:

• Encrypted Tunnels: All API communication between Shopify, our backend, and Stripe is protected by TLS 1.3 encryption.
• Export Compliance: Asynchronous export tasks generate temporary, secure links for Excel downloads. These artifacts are subject to periodic auto-purging policies.

Kekari 确保所有流出平台的数据都是安全的：

• 加密隧道：Shopify、后端系统与 Stripe 之间的所有 API 通讯均受 TLS 1.3 加密保护。
• 导出合规：异步导出任务为 Excel 下载生成临时的安全链接。这些文件受周期性自动清理政策的约束。

Kekari unconditionally respects Shopify's platform data mandates:

• App Uninstallation: Upon receiving the app/uninstalled webhook, all Access Tokens are immediately revoked and tenant data is marked for permanent deletion.
• GDPR/CCPA Compliance: We fully support customers/redact and shop/redact webhooks to ensure complete data scrubbing upon request.

Kekari 无条件尊重 Shopify 店铺的数据治理规范：

• 应用卸载：一旦收到 app/uninstalled 信号，所有授权令牌将立即失效，租户数据将被标记为永久删除。
• GDPR/CCPA 合规：我们完全支持 customers/redact 和 shop/redact 等合规性 Webhooks，以确保按需执行完全的数据清洗。