Privacy Policy
Last Updated: December 18, 2025
TL;DR: StoreSafe is built on a "Zero Data" principle. Your store data goes directly from Shopify to YOUR Google Drive. We never store, access, or process your customer data on our servers.
1. Introduction
StoreSafe ("we," "our," or "us") operates the StoreSafe application (the "Service"), a Shopify backup solution that stores backups in your personal Google Drive account. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.
By using StoreSafe, you agree to the collection and use of information in accordance with this policy.
2. Our Zero-Data Architecture
StoreSafe is fundamentally different from other backup applications:
- Direct Transfer: Your Shopify store data (products, orders, customers, etc.) is transferred directly from Shopify's API to your Google Drive account.
- No Storage: We do not store, cache, or retain any of your store's business data on our servers.
- No Access: We cannot access, view, or retrieve your backed-up data once it's in your Google Drive.
- Your Control: You maintain complete ownership and control of your data at all times.
3. Information We Collect
3.1 Account Information
When you install StoreSafe, we collect:
- Your Shopify store name and domain
- Your email address (for account communication)
- Billing information (processed securely by Shopify's billing system)
3.2 Google Drive Authorization
To enable backups to your Google Drive, we request limited OAuth scopes:
- drive.file: Permission to create and manage files that StoreSafe creates (your backup files only)
- We do NOT request access to your existing Google Drive files
- We do NOT request access to your Gmail, Calendar, or other Google services
3.3 Usage Data
We collect anonymous usage data to improve our Service:
- Backup frequency and success rates
- Feature usage patterns
- Error logs (without personal data)
4. How We Use Your Information
We use the information we collect to:
- Provide and maintain the Service
- Process your subscription and billing
- Send you important service notifications
- Provide customer support
- Improve and optimize the Service
- Comply with legal obligations
5. Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share information only in these limited circumstances:
- Service Providers: We use Shopify for billing and authentication. Their privacy policy applies to data they process.
- Legal Requirements: We may disclose information if required by law, court order, or governmental authority.
- Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred.
6. Data Security
We implement industry-standard security measures:
- All data transfers use TLS 1.3 encryption
- OAuth tokens are encrypted at rest
- We follow secure development practices
- Regular security audits and updates
However, no method of transmission over the Internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
7. GDPR Compliance (For EU Users)
StoreSafe's architecture is inherently GDPR-friendly:
- Data Minimization: We collect only what's necessary to provide the Service.
- Data Portability: Your data is stored in your Google Drive in accessible formats.
- Right to Erasure: You can delete your backups at any time from your Google Drive.
- Data Sovereignty: Your data stays in your chosen Google Drive region.
For GDPR-related requests, contact us at privacy@storesafe.app.
8. CCPA Compliance (For California Residents)
California residents have additional rights under the CCPA:
- Right to know what personal information we collect
- Right to delete personal information
- Right to opt-out of the sale of personal information (we do not sell personal information)
- Right to non-discrimination for exercising your rights
9. Children's Privacy
StoreSafe is not intended for use by children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.
10. Data Retention
- Account Data: Retained while your account is active and for 30 days after cancellation.
- Backup Data: Stored in YOUR Google Drive indefinitely—you control when to delete it.
- Usage Logs: Retained for 90 days for service improvement.
11. Third-Party Services
StoreSafe integrates with:
- Shopify: For store access and billing. Shopify Privacy Policy
- Google: For Google Drive storage. Google Privacy Policy
12. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Continued use of the Service after changes constitutes acceptance of the revised policy.
13. Contact Us
If you have questions about this Privacy Policy or our privacy practices, please contact us:
- Email: privacy@storesafe.app
- Website: https://storesafe.app
Remember: With StoreSafe, your data is YOUR data. We built this app specifically so we never have to handle your sensitive business information. Your backups go directly to your Google Drive, and that's where they stay.