Privacy Policy
We, Needle AI, Inc. (“Needle”, “we”, “us” and/or “our”) collect and use your personal information to provide you with the use of our platform and its services, and to help you better manage your business and your relationship with your customers.
What information do we collect & how do we use it?
We collect personal information when you sign up for our services or the use of our platform, when you use our platform, and other times when you choose to provide us with other information.
What we collect & how we use it
What we collect
How we use it
Information you provide us about you and your business, like your name, the name of your staff or other individuals associated with your business, company name, address, email address, and phone number.
- To provide you with the use of our platform and other related services (e.g., to confirm your identity, to contact you about issues with the platform, to invoice you).
- To process within Needle and produce recommendations on how to grow your business.
- To advertise and market products or features to you.
- To comply with legal requirements.
- To prevent fraudulent use of our services.
Payment information you provide us, such as your credit or debit card number or your bank account number.
- To provide you with the use of our platform and other related services.
- To charge for our services.
Information about how you access Needle websites, your account, and our platform, including information about the device and browser you use, your network connection, your IP address, and details about how you browse our websites and platform. We collect some of this information by using “cookies” or other similar technologies directly from your device. For more information about how we use these technologies, see our Cookie Policy.
- To provide you use of, and to improve, our platform and other related services (e.g., identifying ways to make our platform easier to use or navigate).
- To personalise the platform for you (e.g., by showing you apps in our app store that we believe may be useful to you).
- To advertise and market products or features to you.
- To prevent fraudulent use of our services.
Data from the tools you connect to Needle such as Shopify, Google Analytics, Facebook/Google Ads, Xero and more. We do NOT collect any personal data of your end users e.g your customer's names and contact information.
- To process within Needle and provide recommendations on how to grow your business.
Business data, campaign performance metrics, strategic information, creative briefs, and analytics that you provide or that we generate through the Services.
- To deliver AI-powered recommendations and campaign optimization through third-party large language model (LLM) providers. This data is transmitted securely via encrypted connections and processed according to each provider's enterprise data handling policies. We anonymize data where possible, but may include business-identifiable information necessary for contextualized AI recommendations. We do NOT pass any of your end-customers' personal data (names, emails, addresses, payment information) to LLM providers... only your business analytics, campaign performance data, and strategic information.
We will not share any of the information we collect under the table above (“Personal Information”) with anyone without your consent except to comply with legal requirements, or to respond to court orders, or other similar government demands.
AI and Platform Intelligence
- Third-Party AI Processing: To deliver our AI-powered Services, we process your business data through third-party artificial intelligence providers including (but not limited to) Anthropic (Claude) and OpenAI (ChatGPT). You consent to this processing by using our Services. These providers operate under strict enterprise data protection agreements and do not use your information to train public AI models.
- Anonymized Learning: We use anonymized campaign data, performance metrics, and strategic insights across all clients to improve our AI models and platform recommendations. This means:
- Your specific strategic approaches, proprietary methodologies, and confidential business information are never shared with other clients- Performance learnings are abstracted into general intelligence (e.g., "Audiences in the beauty vertical respond 34% better to user-generated content format") rather than specific implementations (e.g., "Here is Brand X's exact winning campaign")
- The platform becomes smarter for all users through accumulated, anonymized intelligence (not through copying individual client strategies) - No Customer Personal Data in AI Training: We do not collect or pass your end-customers' personal information (names, contact details, addresses, payment information) to AI providers or use it for AI training purposes. Only aggregated business analytics and campaign performance data is processed.
Data security, Retention and Deletion
- Security Measures: We implement industry-standard security measures to protect your Personal Information and business data from unauthorized access, disclosure, alteration, or destruction.
- Breach Notification: In the event of a data breach that affects your information, we will notify you via email within seventy-two (72) hours of becoming aware of the breach, along with details about the nature of the breach and steps being taken to address it.
- Data Retention and Deletion: Upon termination or removal of all tool connections of your Account:
- Your end-customer personal data will be deleted or anonymized within thirty (30) days
- Your access credentials will be revoked immediately- Your business information, strategic documents, and account details will be retained for up to twenty-four (24) months as stated in our standard retention policy
- Anonymized performance data, campaign learnings, and aggregated metrics will be retained indefinitely for platform improvement and AI training - Survival of Confidentiality: Our confidentiality obligations under these terms survive termination of your Account for a period of two (2) years.
Opting out
If you choose to provide us with your Personal Information, you have the following rights:
- To review the Personal Information that you have supplied to us;
- To request that we correct any errors, outdated information, or omissions in Personal Information that you have supplied to us;
- To request that your Personal Information not be used to contact you;
- To request that your Personal Information be removed from any solicitation list that we use; and
- To request that your Personal Information be deleted from our records (subject to our retention policies outlined above).
Your rights as the owners of your personal information
You will have complete access and control over your Personal Information. You can access, edit or delete it on Needle. More specifically, you have the following rights over your Personal information.
- To review the Personal Information that you have supplied to us;
- To have any errors, outdated information, or omissions in the Personal Information your provide us corrected;
- To request that your Personal Information not be used to contact you;
- To request that your Personal Information be removed from any solicitation list that we use; and
- To request that your Personal Information be deleted from our records.
For any information that you are unable to access, you can send a request to our Data Protection Officer to be able to view, edit or delete it.
How we protect your personal information
We consider the security of your data as a top priority. However, no method of transmission over the Internet or method of electronic storage is 100% secure. As such, please note that as we try to use all commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
How we use your customers' information
Through Needle, you will provide us with the information regarding your customers so that we can collect them, extract data from them, read, review and interpret them all for the purpose of providing you with insight to empower your business. We will never use your customers’ information to independently market or advertise to your customers unless they are also using one of our applications or services directly. Because you decide how the personal information of your customers will be used, you need to make sure your customers understand how you (and how we on your behalf) collect and process their personal information. You should do this by, at a minimum, posting a privacy policy on your store that describes the information you collect, how you use it, and who you share it with.
Payment information
We may use third-party services for payment processing. We will not store or collect your payment and card details. When you pay, you provide this information directly to our third-party payment processors whose use of your personal information is governed by their own Privacy Policy.
We use Stripe as our payment processor.
Changes to this privacy policy
As a company that is continuously developing, we may update this Privacy Policy from time to time by posting a new version online. Please check this page occasionally to review any changes. Doing so will help you to always be aware of what information we collect, how we use it and your rights in relation to it. Changes to this Privacy Policy will take effect from the moment they are posted here.
How to contact us
If you have questions about this Privacy Policy or would like to submit a complaint, please contact us by email at hello@askneedle.com or by mail at
Needle AI, Inc.
1209 Orange Street,
Wilmington, DE 19801
United States of America
