Operational controls for a trustworthy AI buyer.

The Starter plan is handled through Shopify Billing API routes with merchant confirmation, a 14-day trial, and subscription status refresh.

• Subscription flow stays merchant-confirmed.
• No billing changes happen from this page.

The MVP requests read_products, read_inventory, and read_orders. read_all_orders is reserved for legitimate forecasting history when required.

• Access tokens are encrypted at rest.
• Customer PII is avoided in the MVP workflow.

AI explains decisions in plain English while reorder quantities, stockout timing, and inventory cover remain calculated by the deterministic engine.

• No automatic purchase orders.
• No automatic price, ad, or promotion changes.

Embedded API routes require Shopify App Bridge session tokens. Manual sync does not trust a raw shop parameter.

• Session-token validation is required.
• Shop-scoped actions stay server verified.