top of page

Avia Privacy Policy

Last updated: Aug 8, 2025

Who we are

Avia is provided by Retailogists Inc. ("we", "us"). Avia integrates with Shopify POS and an in-store vision AI device with edge computing to provide retail analytics while maintaining the highest standards of privacy protection.

Our Privacy-First Technology Commitment

Vision AI ≠ Traditional Cameras

Our vision AI devices are fundamentally different from traditional security cameras:

  • Edge AI Processing: All visual processing and AI analysis are completed locally on the device. No photos, videos, or identifiable images ever leave the device.

  • Real-time Anonymization: Visual information is instantly converted into anonymous spatial coordinate data (x/y coordinates, behavioral signals) rather than identifiable personal images.

  • Zero Biometric Collection: Our devices do not collect, store, or process any biometric features that could identify individuals (no facial recognition, fingerprints, iris scans, etc.).

  • Physical Privacy Security: Privacy protection is built into the hardware architecture - there is no video stream export interface, eliminating the risk of image data breaches.

Scope

This policy explains what we collect, how we use/share it, how long we keep it, and your rights in Canada and the United States.

Roles

For data from a merchant's systems (Shopify POS/Admin and the device), the merchant is the controller/business and Retailogists is the processor/service provider. For our website, accounts, billing, and support, we are the controller/business.

1) Information We Collect

From Shopify POS/Admin (as configured by the merchant)

  • Order information (order IDs, timestamps, products purchased, amounts, taxes, payment methods)

From the In-Store Vision AI Device

All computer vision runs entirely on the device using edge AI - no video or images ever leave the device.

The device only transmits anonymous, processed metrics:

  • Total traffic (number of visitors)

  • Daily unique visitors (recognizes same visitors within a single day only; no cross-day tracking)

    • Uses anonymous dynamic contour profiles (body shape/movement patterns), not facial images or biometric features

    • Feature vectors are generated from movement patterns and cleared immediately after processing

    • All matching happens locally on-device during off-hours

    • Cannot identify who a person is, only that they've visited before that day

    • All visitor data automatically resets at day's end

  • Average time spent in store (how long visitors stay)

  • Age bracket distribution (processed on-device, no images transmitted)

  • Gender distribution (statistical data only)

Technical Privacy Safeguards:

  • Localized Computing: All AI algorithms for age recognition, gender recognition, and traffic analysis are processed inside the device

  • No Biometric Identification: Daily unique visitor detection uses temporary dynamic contour profiles (body shape and movement patterns) - the device lacks biometric feature extraction capabilities and does not collect facial images

  • Automatic Data Clearing: When a person leaves the monitored area, their path data is automatically cleared. A new anonymous trajectory is generated if they re-enter. All daily visitor patterns are completely erased at day's end

  • No Identity Association: The device cannot identify who a person is, only detect if an anonymous pattern has appeared before within the same day

  • Encrypted Transmission: All uploaded anonymous data is transmitted through encrypted channels

From Admins/Users and Our Sites

  • Account and login details

  • Usage logs

  • Support tickets

  • Billing info (via Shopify Billing or our payment processor)

  • Technical data (IP, device/browser, cookies for session/login)

2) How We Use Information

  • Provide, secure, and troubleshoot Avia

  • Generate analytics and reports (total traffic, daily unique visitors, average time spent in store, age bracket and gender distributions, and sales performance)

  • Communicate about the service and improve features

  • Comply with law and prevent fraud/abuse

We do not sell personal information or use it for third-party targeted advertising.

3) Data Sharing

We share information only with:

  • Service providers (hosting, logging, analytics, email, billing) under contracts that limit use

  • Shopify/connected platforms you enable

  • Business-transfer parties (with protections)

  • Law enforcement/regulators if legally required

4) Security

We employ multiple layers of security:

  • Hardware-level anonymization through edge AI architecture

  • Administrative safeguards (least-privilege access, regular audits)

  • Tenant Isolation (client level isolation for all resources)

  • Physical security (no video export from devices to central servers)

  • Continuous monitoring and audit logging

While no system is perfectly secure, our edge AI architecture eliminates many traditional privacy risks by design.

5) Data Retention

We keep information only as long as needed to provide the service and meet legal duties:

  • After service termination, merchant data is scheduled for deletion within 90 days

  • Limited backups/logs may persist up to 12 months for legal compliance

  • Vision device data: Anonymous metrics only, with automatic clearing of trajectory data when individuals leave the monitored area

6) Your Rights

Canada (PIPEDA & provincial laws)

  • Request access to your information

  • Request correction of inaccurate data

  • Withdraw consent where applicable

United States (state laws)

Depending on your state, you may have rights to:

  • Access your personal information

  • Correct inaccurate data

  • Delete your information

  • Obtain a copy of your data

  • Opt out of targeted advertising/sale/profiling (as defined by law)

Note: Avia does not sell or "share" personal information for cross-context behavioral advertising.

How to Exercise Your Rights

Email support@retailogists.com or use our web form. We will verify your identity and respond as required by law. You may designate an authorized agent where permitted.

7) Children

Avia is not directed to children under 13 and we do not knowingly collect children's personal information.

8) Compliance Standards

Our technology is designed to comply with major global data privacy regulations:

  • EU GDPR (General Data Protection Regulation)

  • US CCPA (California Consumer Privacy Act)

  • Canadian PIPEDA and provincial privacy laws

  • Other applicable data protection laws

The edge AI architecture avoids compliance risks by eliminating image collection at the technical level.

9) In-Store Notice (Recommended for Merchants)

Store Analytics in Use

This location uses Avia by Retailogists for privacy-preserving retail analytics.

  • What we measure: Total traffic, daily unique visitors, average time spent in store, and age bracket & gender distributions

  • How it works: All analytics run entirely on the device using edge AI

  • Your privacy: No video or images ever leave the device

  • Data output: Anonymous, aggregate metrics only

  • No identification: The system cannot identify individuals or track returning customers

(Merchants: If you analyze staff performance, provide employees with required internal notice under local law.)

10) Our Privacy Guarantee

We guarantee that our vision AI technology:

  • Never records or stores video or images in the cloud

  • Never collects facial images or biometric features for identification

  • Never identifies who you are - only detects anonymous patterns for same-day deduplication

  • Processes all visual data locally on the device

  • Transmits only anonymous statistics

  • Cannot track individuals across days - all patterns reset daily

  • Automatically clears trajectory data when people leave the monitored area

How Daily Unique Visitors Works (Privacy-Preserved)

Our same-day visitor detection uses anonymous movement patterns without collecting facial images or biometric data:

  • Captures dynamic contour profiles (general body shape and movement)

  • Creates temporary feature vectors that exist only for that business day

  • All processing happens locally on the device during off-hours

  • Cannot determine who a person is, only if a similar pattern appeared earlier that day

  • All feature data is permanently deleted at day's end

This "data availability but not visibility" approach ensures you get valuable business insights while maintaining complete customer privacy.

11) Changes

We may update this policy. We will update the "Last updated" date and provide additional notice if required by law.

12) Contact

Retailogists Inc.
Privacy Officer: Vincent Younan, COO
Email: vincent.younan@retailogists.com

For privacy questions or concerns, please contact us at the above email address. We are committed to addressing all privacy inquiries promptly and thoroughly.

bottom of page