Last updated: April 28, 2026
Shadow Integrator ("we," "our," or "us") operates the shadowintg.com website and the Shadow Integrator webhook passthrough platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. By accessing or using the Service, you agree to the terms of this Privacy Policy.
Account Information. When you create an account, we collect your name, email address, and authentication credentials provided through our OAuth integration with Manus. We also store your subscription tier and billing identifiers (Stripe Customer ID, Subscription ID) for payment processing.
Webhook Schema Data. When webhooks pass through our Service, we capture and store only the structural schema of payloads — specifically, the key names present in the JSON structure. We never store, log, or inspect the values associated with those keys. This means no personally identifiable information (PII), customer data, or sensitive content from your webhook payloads is ever persisted in our systems.
Usage Data. We automatically collect information about how you interact with the Service, including pages visited, features used, webhook event counts, and timestamps. This data is used to improve the Service and enforce usage limits.
Email Subscriptions. If you subscribe to updates on our coming soon pages, we collect your email address and the page you subscribed from. This information is used solely to notify you when the relevant feature launches.
We use the information we collect to provide, maintain, and improve the Service; process payments and manage subscriptions; detect schema drift and generate AI-powered playbooks based on your workflow structure; send you operational notifications such as usage threshold alerts; communicate with you about updates, features, and support; and comply with legal obligations.
The core function of Shadow Integrator is to receive webhook payloads and forward them to your configured destination URLs. Payloads are forwarded in their entirety to the destination you specify. We do not modify, inspect, or store the payload content. The forwarding occurs asynchronously after we return a 200 OK response to the sending platform, ensuring near-zero latency impact on your integrations.
We use the following third-party services to operate the platform: Stripe for payment processing (subject to Stripe's Privacy Policy at stripe.com/privacy); Manus for authentication and hosting infrastructure; and OpenAI's GPT-4o for AI playbook generation, where only your workflow schema structure (key names, node types, and platform labels) is sent — never payload values or PII.
Account data is retained for as long as your account is active. Webhook schema logs are retained for 90 days and then automatically purged. Subscription email addresses are retained until you unsubscribe or request deletion. You may request deletion of your account and all associated data at any time by contacting us.
We implement industry-standard security measures to protect your information, including encryption in transit (TLS/HTTPS), secure session management with HTTP-only cookies, role-based access controls, and isolated database storage. However, no method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security.
Depending on your jurisdiction, you may have the right to access the personal information we hold about you; request correction of inaccurate data; request deletion of your data; object to or restrict certain processing activities; and receive a copy of your data in a portable format. To exercise any of these rights, please contact us using the information provided below.
We use a single session cookie (app_session_id) to maintain your authenticated session. This cookie is HTTP-only, secure, and essential for the Service to function. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date. Your continued use of the Service after any changes constitutes your acceptance of the updated policy.
If you have any questions about this Privacy Policy or our data practices, please contact us through the Contact page on our website or via the support channels available in your dashboard.