Privacy Policy

1. Who we are

This Privacy Policy is issued by Stack Craft Digital ("we", "our", "us"), the developer of Account Blocks: Customize My Account (the "App"), a Shopify embedded application. Stack Craft Digital is established in the United Kingdom and is the data controller for merchant personal data processed in connection with the App. For customer personal data accessed from a merchant's Shopify store, the merchant is the controller and Stack Craft Digital acts as a processor.

Contact: contact@stackcraftdigital.co.uk

2. Scope

This policy describes how we collect, use, disclose and safeguard information when (a) a Shopify merchant installs and uses the App and (b) the App processes data about a merchant's end-customers in order to render personalised account-page content. It applies to the App and to the public website pages we host (including this page).

3. Information we collect

3.1 Merchant and shop information

When you install the App we receive the following from Shopify and store it in our database:

• Shop domain (myshopify.com URL) and installation timestamps.
• Selected subscription plan and plan-selection timestamp.
• Merchant user profile from Shopify OAuth: first name, last name, email address, locale, Shopify user ID, account-owner flag, collaborator flag and email-verified flag.
• OAuth access tokens and refresh tokens issued by Shopify, used solely to make authenticated calls to the Shopify Admin API on your behalf.

3.2 Block configuration data

Content, styling and visibility conditions you configure in the App (block definitions and published snapshots). This data is stored per-shop and is required to render your blocks on your storefront.

3.3 Aggregated usage events

We record non-identifying counts of block impressions, clicks and modal opens (block ID, target placement, type and timestamp) so you can see how your blocks perform. These records do not contain customer identifiers, IP addresses or device fingerprints.

3.4 Customer data accessed via Shopify

To evaluate the visibility conditions you configure (for example "show this block to customers tagged VIP with more than 3 orders"), the App requests the following Shopify access scopes:

• read_customers
• read_orders
• read_content
• write_products

When a logged-in customer loads your account page, the App reads the following customer fields from Shopify on demand: customer ID, tags, number of orders, total amount spent and customer metafields it needs to evaluate your conditions. This data is processed in memory only, used to decide which blocks to return to the storefront, and is not written to our database. We do not collect customer names, addresses, payment details, browsing history or marketing preferences.

4. Legal basis for processing (UK / EU GDPR)

• Performance of a contract (Art. 6(1)(b) UK/EU GDPR) for processing merchant data necessary to provide the App you have subscribed to.
• Legitimate interests (Art. 6(1)(f)) for aggregated usage analytics used to operate, secure and improve the App, balanced against your rights and freedoms.
• Processor under merchant instruction (Art. 28) for read-only customer data accessed from the merchant's Shopify store. The merchant remains the controller of that data.
• Legal obligation (Art. 6(1)(c)) where we are required to retain or disclose data to comply with applicable law.

5. How we use information

• To install, authenticate and run the App on your store.
• To render the blocks you have configured on your customer account pages and evaluate visibility conditions.
• To provide aggregated impression and click metrics in your dashboard.
• To process subscription billing through Shopify's billing API.
• To respond to support requests and legal obligations.
• To detect, prevent and address technical issues, abuse and security incidents.

We do not sell personal information, share it for cross-context behavioural advertising, or use it to train machine learning models.

6. Sub-processors and disclosures

We rely on a small number of vetted sub-processors to operate the App:

• Shopify Inc. — platform, OAuth, Admin API, billing, GDPR webhook delivery.
• Railway Corp. — application hosting and managed PostgreSQL database (United States).

We do not otherwise sell, rent, trade, or disclose your data to third parties, except where required by law, to enforce our Terms of Service, or to protect our or others' rights, property or safety.

7. International data transfers

Our hosting and database provider (Railway) is located in the United States. Where personal data is transferred outside the United Kingdom or European Economic Area, we rely on appropriate safeguards including the UK International Data Transfer Agreement (IDTA), the UK Addendum to the EU Standard Contractual Clauses, and the EU Standard Contractual Clauses, supplemented where necessary by additional technical measures such as encryption in transit and at rest.

8. Data retention and deletion

• Merchant and configuration data is retained while the App remains installed on your store.
• On uninstall, Shopify sends us a shop/redact webhook and we delete all data associated with your shop — sessions, block definitions, snapshots and event records — within 48 hours, in line with Shopify's requirements.
• We honour Shopify's mandatory compliance webhooks customers/data_request, customers/redact and shop/redact automatically. Because the App does not store customer personal data, customer data requests and redaction requests are acknowledged accordingly.
• Backups are rotated regularly and deleted data is purged from backups within the standard backup-retention window.

9. Security

We apply industry-standard technical and organisational measures to protect personal data, including TLS encryption in transit, encryption at rest for the managed PostgreSQL database, scoped OAuth tokens, principle-of-least-privilege access, and isolated per-environment credentials. No method of transmission or storage is 100% secure; we cannot guarantee absolute security but we work to maintain a level of security appropriate to the risk.

10. Cookies and tracking

The App does not set its own marketing or analytics cookies and does not use third-party trackers (no Google Analytics, no advertising pixels, no third-party error reporters). Authentication relies on Shopify's embedded session tokens, which are managed by Shopify. Your browser may receive standard session cookies from the Shopify platform when using the embedded admin.

11. Your rights

Depending on where you live, you may have the following rights in relation to your personal data:

• Access a copy of the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request erasure of your personal data.
• Request restriction of, or object to, our processing.
• Request portability of data you have provided to us.
• Withdraw consent, where processing is based on consent.
• Lodge a complaint with the UK Information Commissioner's Office (ico.org.uk) or your local supervisory authority in the EEA.

California residents: the CCPA / CPRA gives you the right to know what personal information we collect, to request deletion, to correct inaccurate information, and to opt out of any sale or sharing of personal information. We do not sell or share personal information as defined by the CCPA.

To exercise any of these rights, email contact@stackcraftdigital.co.uk. If you are an end-customer of a merchant using the App, please submit your request through the merchant; we will assist the merchant in responding.

12. Children

The App is offered to Shopify merchants and is not directed at children under 16. We do not knowingly collect personal data from children.

13. Changes to this policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page indicates when the policy was last revised. Material changes will be communicated through the App or by email to the registered merchant contact.

14. Contact

For privacy questions or to exercise your rights, contact us at contact@stackcraftdigital.co.uk.