Privacy Policy of Shopaeo LLC

Last Updated: May 2026

This Privacy Policy (the “Policy”) explains how Shopaeo LLC (“Shopaeo,” “we,” “us,” or “our”) collects, uses, discloses, retains, and protects information relating to individuals, and describes the privacy choices and rights available to you.

Shopaeo LLC is a limited liability company organized in the State of Delaware, United States. We provide products and services through https://gt6trade.com and related products, applications, artificial intelligence features, enterprise software services, communication features, APIs, integrations, customer support channels, and other online services (collectively, the “Services”).

Questions about this Policy or our privacy practices may be directed to info@gt6trade.com.

1. Scope

This Policy applies to personal data processed by Shopaeo when:

  • you visit, browse, or use our website or Services;
  • you register an account, purchase Services, subscribe to updates, or contact us;
  • you use our AI, automation, messaging, enterprise management, API, or integration features;
  • you use the Services on behalf of a business or organization; or
  • we otherwise determine the purposes and means of processing personal data.

This Policy does not apply to websites, applications, or services operated independently by third parties, even where they are accessible through or integrated with our Services. Third parties process personal data according to their own privacy policies.

2. Our Roles When Processing Data

2.1 Shopaeo as a Controller

We act as a controller when we determine the purposes and means of processing personal data. For example, we act as a controller when you visit our website, create an account, contact us, purchase Services, or when we process information for security, billing, service operation, or product improvement purposes.

2.2 Shopaeo as a Processor or Service Provider

Business customers may use our Services to process information relating to their customers, prospects, employees, contractors, suppliers, contacts, or other individuals, including messages, files, tasks, business records, or content processed by AI features. To the extent we process such information only on the instructions of a business customer, that customer generally acts as the controller and Shopaeo acts as its processor or service provider.

If your request concerns data controlled by one of our business customers, you should first submit the request to that customer. We will assist the relevant customer with appropriate requests as required by applicable law and our contractual obligations.

3. Personal Data We Collect

Depending on how you interact with the Services, we may process the following categories of personal data.

3.1 Identity and Account Information

  • name, username, and profile image;
  • email address and telephone number;
  • login credentials, authentication information, and account security information;
  • affiliated company, organization, department, position, role, and permissions;
  • account preferences and language settings.

3.2 Business and Operational Information

  • business name, website, industry, and business contact information;
  • information relating to products, services, projects, orders, suppliers, or customers;
  • team, permission, approval, task, workflow, and audit information;
  • business content uploaded, imported, created, or managed by you or your organization.

3.3 AI Inputs, Outputs, and Automation Content

When you use AI or automation features, we may process:

  • prompts, questions, instructions, and conversation content;
  • uploaded documents, images, data, attachments, or links;
  • AI-generated content, reports, analyses, summaries, or recommendations;
  • information involved in tools, data sources, workflows, or third-party services that the AI is authorized to access;
  • AI task records, tool invocation records, approval records, and troubleshooting information.

Unless separately disclosed to or authorized by a customer, we do not use non-public customer content submitted by business customers to train general-purpose artificial intelligence models made available to the public.

3.4 Communications and Support Information

  • email correspondence, support requests, and feedback provided to us;
  • messages and attachments sent or received through the Services;
  • delivery, receipt, read, channel, participant, and action records associated with messages;
  • demonstration requests, sales communications, and customer service records.

3.5 Transaction and Billing Information

  • purchases, subscriptions, plans, invoices, and payment status;
  • billing contact details, billing address, and tax-related information;
  • limited payment information provided by payment processors, such as payment method type, card brand, and last four digits.

We generally do not directly store complete payment card numbers or security codes. Payment data may be processed on our behalf by payment processing service providers.

3.6 Device, Log, and Usage Data

  • IP address, browser type, device type, operating system, and device identifiers;
  • access times, viewed pages, referral pages, clicks, and feature interactions;
  • login activity, session data, API requests, system logs, and error records;
  • security, fraud prevention, and suspicious activity monitoring information;
  • information collected using cookies, local storage, and similar technologies.

3.7 Data From Integrated Services

If you or your organization connects third-party systems, such as email, social media, cloud storage, payment platforms, customer relationship management systems, collaboration tools, or other APIs, we may process, according to your authorization or the instructions of a business customer:

  • third-party account identifiers and connection status;
  • access tokens or authorization information;
  • contacts, messages, files, business objects, or information required to perform requested tasks;
  • results and logs returned from integrated services.

3.8 Sensitive Personal Data

Our Services are not principally designed to collect sensitive personal data. You should not provide sensitive data that is unnecessary for use of the Services.

Under applicable law, sensitive personal data may include precise geolocation, racial or ethnic origin, religious beliefs, health information, biometric data, sexual orientation, citizenship or immigration status, personal data of children, and other information recognized as sensitive by law.

When we act as a controller and process sensitive personal data for which consent is required, we will obtain consent as required by law and, where required, provide a method to withdraw consent.

4. Sources of Personal Data

We may collect personal data from:

  • information you provide directly;
  • the business or organization with which you are affiliated or that you represent;
  • information generated automatically when you use the Services;
  • third-party services connected by you or a business customer;
  • vendors supporting service delivery, security, payments, or technical support; and
  • lawful public sources, such as publicly accessible websites or business information pages.

5. How We Use Personal Data

We may use personal data for the following purposes.

5.1 Providing, Administering, and Supporting the Services

  • creating, authenticating, and administering accounts;
  • providing our website, platform, AI, messaging, API, integration, and enterprise features;
  • performing workflows and tasks requested by you or a business customer;
  • processing subscriptions, payments, invoices, and account administration;
  • providing customer support, training, demonstrations, and technical assistance.

5.2 Providing AI and Automation Features

  • processing instructions, input content, and authorized data sources;
  • producing outputs and performing authorized tasks;
  • recording tool invocations, results, approvals, and audit trails;
  • preventing unauthorized operations, misuse, or actions outside permission boundaries;
  • evaluating and improving the reliability, safety, and quality of AI features.

5.3 Maintaining Security and Complying With Law

  • verifying identity and protecting accounts;
  • identifying, investigating, and preventing fraud, abuse, attacks, or unlawful activity;
  • maintaining system security, logs, backups, and business continuity;
  • enforcing our terms, protecting lawful interests, or resolving disputes;
  • complying with legal obligations, court orders, or lawful government requests.

5.4 Analyzing, Maintaining, and Improving the Services

  • monitoring service operation, performance, and usage;
  • troubleshooting, maintaining systems, and improving user experience;
  • developing new features or improving existing Services;
  • creating aggregated, statistical, or de-identified information.

5.5 Communications and Marketing

  • responding to your inquiries and service requests;
  • sending account, security, billing, or service-change notices;
  • sending product information, event invitations, or marketing messages where permitted by law.

You may opt out of marketing communications by using the unsubscribe link in a marketing email or by contacting info@gt6trade.com. Opting out of marketing communications does not prevent us from sending necessary notices regarding accounts, security, transactions, or Services you request.

6. How We Disclose Personal Data

We may disclose personal data in the following circumstances.

6.1 Service Providers and Processors

We may share necessary information with vendors that help us operate the Services, such as providers of cloud hosting, data storage, content delivery, AI infrastructure, payment processing, authentication, security, email, customer support, monitoring, and analytics services. Such providers may process personal data only for authorized purposes, subject to contractual obligations and applicable law.

6.2 Business Customers and Authorized Administrators

If you use the Services through a business or organizational account, authorized administrators of that organization may access or administer personal data, content, permissions, tasks, and usage records associated with the organizational account.

6.3 Integrations or Recipients Authorized by You

When you connect a third-party service or direct the Services or an AI feature to perform an action involving a third party, we may transmit information necessary to complete that request to the third party.

6.4 Professional Advisors, Regulators, and Legal Process

We may disclose data, where necessary, to auditors, attorneys, insurers, regulators, law enforcement agencies, courts, or other relevant parties to comply with law, address security incidents, protect rights, or respond to lawful demands.

6.5 Business Transactions

In connection with a merger, acquisition, financing, reorganization, asset sale, bankruptcy, or similar transaction, personal data may be disclosed to transaction parties and their advisors and may be transferred to a successor entity, subject to applicable law.

7. Sale of Personal Data, Targeted Advertising, and Automated Analysis

7.1 Sale of Personal Data

We do not sell personal data for monetary consideration or otherwise sell personal data as defined under applicable privacy laws.

7.2 Targeted Advertising

We do not process personal data to display targeted advertising to you based on your activities over time and across non-affiliated websites or online services.

7.3 Automated Decisions Producing Legal or Similarly Significant Effects

Our AI features may generate content, analyze information, and assist in completing tasks. We do not, in our capacity as a controller, rely solely on automated processing to make decisions producing legal or similarly significant effects concerning consumers, unless we separately provide appropriate notice and applicable choices and comply with applicable law.

If these data practices change, we will update this Policy and provide opt-out mechanisms where required by applicable law, including recognition of applicable universal opt-out mechanisms or privacy preference signals.

8. Cookies and Similar Technologies

We may use cookies, local storage, pixels, server logs, and similar technologies to:

  • maintain login sessions;
  • authenticate users and protect the security of the Services;
  • remember settings and preferences;
  • analyze website and product usage;
  • improve performance and user experience.

Categories of cookies we may use include:

Category Purpose
Strictly Necessary Cookies Login, authentication, security, and core Service functions
Functional Cookies Remembering language, interface, and account preferences
Analytics Cookies Understanding visits to and use of the Services
Advertising Cookies Used only if we enable related functionality in the future and provide legally required notice and choices

You can control cookies through your browser settings. Disabling certain strictly necessary cookies may prevent the Services from functioning properly.

9. Data Retention

We retain personal data only for as long as reasonably necessary to provide the Services, perform our contracts, maintain security, address disputes, exercise legal rights, and satisfy legal obligations.

Retention periods depend on the type of data, processing purpose, customer settings, account status, applicable agreements, security requirements, and legal obligations. For example:

Data Category Retention Principle
Account and identity data Maintained during the account relationship and for a reasonable compliance period thereafter
Customer content and business data Handled according to customer instructions, contracts, account settings, and applicable law
Billing and transaction records Retained as required for accounting, tax, and legal obligations
Security, audit, and system logs Retained for a reasonable period for security, fraud prevention, audit, and dispute resolution
Marketing records Retained until you opt out or the related purpose is no longer necessary
Privacy request records Retained as necessary to complete requests and demonstrate compliance

When personal data is no longer necessary, we will take reasonable measures to delete, anonymize, or securely isolate it.

10. Data Security

We use reasonable administrative, technical, and physical safeguards appropriate to the nature and risks of personal data, which may include:

  • access controls, roles, and permission management;
  • authentication and account protection measures;
  • encryption of data in transit;
  • logging, security monitoring, and anomaly detection;
  • backup and recovery procedures;
  • permission limitations, approval controls, and audit records for AI tool invocations;
  • reasonable vendor review and contractual safeguards;
  • security incident response measures.

Although we work to protect personal data, no internet transmission, system, or electronic storage method is guaranteed to be absolutely secure. You are responsible for protecting your login credentials, access tokens, and account devices and should promptly report suspected unauthorized access or security incidents to us.

11. Privacy Rights of Delaware Residents

Where the Delaware Personal Data Privacy Act (“DPDPA”) applies to our processing of your personal data, Delaware consumers may request the following rights as provided by law:

  1. Confirmation and Access: To confirm whether we are processing your personal data and to access such data.
  2. Correction: To correct inaccuracies in your personal data.
  3. Deletion: To delete personal data provided by you or obtained about you, subject to lawful exceptions.
  4. Portable Copy: To obtain a copy of your personal data in a portable and readily usable format.
  5. Third-Party Disclosure Information: To obtain a list of specific third parties to which we disclosed your personal data, or, where permitted by law, a list of third parties to which personal data of consumers was disclosed.
  6. Opt Out: To opt out of processing personal data for:
    • the sale of personal data;
    • targeted advertising; or
    • profiling in furtherance of solely automated decisions that produce legal or similarly significant effects.
  7. Non-Discrimination: To not receive unlawful discriminatory treatment for exercising applicable privacy rights.

DPDPA rights generally apply to Delaware residents acting in an individual or household context; certain employment or commercial contact contexts may fall outside the law’s definition of a consumer.

12. Submitting a Privacy Request

You may submit a privacy rights request by contacting us as follows:

Please identify:

  • the right you wish to exercise;
  • the email address associated with your account or interaction with us; and
  • information reasonably necessary to help us locate relevant data.

To protect personal data, we may use commercially reasonable methods to verify your identity. For opt-out requests, applicable law may not require authentication, although we may deny an opt-out request if we have a good faith, reasonable, and documented belief that it is fraudulent.

Where the DPDPA applies, we will generally respond within 45 days after receipt of a request. When reasonably necessary due to the complexity or number of requests, we may extend the response period once by up to an additional 45 days as permitted by law, and will notify you of the extension and reason within the initial response period.

Where permitted by applicable law, an authorized agent may submit an applicable request on your behalf. We may require evidence of the agent’s authority.

13. Appeals

If we deny an applicable privacy rights request, you may appeal our decision by contacting us:

Please identify the original request you seek to appeal and the basis for your appeal. We will review and respond to appeals as required by applicable law. If you are a Delaware consumer and remain dissatisfied with an appeal decision, you may submit a complaint to the Delaware Department of Justice.

14. Children’s Privacy

Our Services are designed for businesses and individuals legally able to use the applicable Services and are not designed for or directed to children under the age of 13.

We do not knowingly collect personal information online from children under 13. If we learn that we collected personal information online from a child under 13 without required verifiable parental consent, we will take reasonable measures to delete the information or otherwise handle it as required by applicable law.

If we have actual knowledge that a consumer is between 13 and under 18 years of age, we will not sell that consumer’s personal data or use that consumer’s personal data for targeted advertising without consent required under applicable law.

15. International Data Transfers

Shopaeo LLC is located in the United States. If you use the Services from outside the United States, your personal data may be transferred to, processed in, or stored in the United States or other countries where our service providers operate.

Where applicable law requires additional safeguards for cross-border data transfers, we will implement applicable protections. Individuals protected by privacy laws of other countries or regions may also have additional rights under those laws.

16. Responsibilities of Business Customers

Where a business customer or its authorized users upload, connect, import, or provide data relating to other individuals through the Services, the business customer is responsible for ensuring that it has a lawful basis to process and provide such data to us and has provided necessary notices or obtained necessary authorizations.

Business customers are also responsible for reasonably configuring organizational permissions, AI tool access, integration permissions, messaging access, and data sharing settings, and for ensuring their use of the Services complies with applicable law.

17. Updates to This Policy

We may update this Policy from time to time to reflect changes in the Services, data practices, or applicable law. The updated Policy will be posted on this page and will state a revised “Last Updated” date at the top.

If a change materially affects your privacy rights or how we process personal data, we will provide notice through the website, email, in-Service notice, or another appropriate method to the extent required by law.

18. Contact Us

For questions about this Privacy Policy, our processing of personal data, or your rights, or to submit a privacy request or appeal, please contact us:

Shopaeo LLC
Delaware, United States
Website: https://gt6trade.com
Email: info@gt6trade.com