Privacy Policy

Last Updated: January 15, 2026

1. Introduction

Custom Product Designer ("we", "our", or "the App") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application.

2. Information We Collect

2.1 Store Information

When you install our app, we collect:

• Store name and domain (myshopify.com URL)
• Store owner email address
• Store timezone and currency settings
• Shopify access tokens (encrypted and securely stored)

2.2 Product Information

We access and store:

• Product titles, descriptions, and images
• Product variants (sizes, colors, prices)
• Product IDs for mapping to customizable templates

2.3 Order Information

When orders contain customized products, we collect:

• Order number and line item details
• Customer name and shipping address (for fulfillment purposes only)
• Design specifications and customization data

2.4 Design Data

When customers create designs, we store:

• Design JSON data (text, colors, positions)
• Uploaded images (temporarily, for design rendering)
• Design preview images

3. How We Use Your Information

We use the collected information to:

• Provide the product customization functionality
• Process and fulfill orders containing customized products
• Generate print-ready files for production
• Communicate with you about your account or orders
• Improve our services and develop new features
• Comply with legal obligations

4. Information Sharing

We do NOT sell, trade, or rent your personal information. We may share data with:

• Fulfillment Partners: Order and shipping details necessary to produce and deliver customized products
• Service Providers: Third-party services that help us operate (cloud hosting, payment processing)
• Legal Requirements: When required by law or to protect our rights

5. Data Storage and Security

We implement industry-standard security measures:

• All data is encrypted in transit (TLS/SSL) and at rest
• Access tokens are encrypted using AES-256-GCM
• Regular security audits and updates
• Access controls and authentication for all systems

6. Data Retention

• Store Data: Retained while the app is installed, deleted within 30 days of uninstallation
• Order Data: Retained for 2 years for fulfillment records and disputes
• Design Data: Customer designs linked to orders are retained with order data; orphaned designs are deleted after 90 days

7. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data ("right to be forgotten")
• Portability: Receive your data in a portable format
• Objection: Object to processing of your data
• Restriction: Request restricted processing

To exercise these rights, contact us at the address below.

8. California Privacy Rights (CCPA)

California residents have additional rights including:

• The right to know what personal information is collected
• The right to know if personal information is sold or disclosed
• The right to say no to the sale of personal information
• The right to equal service and price

We do not sell personal information to third parties.

9. Cookies and Tracking

Our app uses essential session cookies to maintain your login state within the Shopify admin. We do not use tracking cookies or third-party analytics within the embedded app experience.

10. Children's Privacy

Our app is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

12. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.