Introduction
Simple Order Printer ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Shopify application.
Information We Collect
Store Information
When you install Simple Order Printer, we collect:
- Shop domain - Your Shopify store URL (e.g., yourstore.myshopify.com)
- Access tokens - Encrypted tokens to communicate with your Shopify store
- App settings - Your preferences for invoice templates, branding, and content
- Usage statistics - Number of orders printed/emailed per month for billing
Order Data (Temporary Access Only)
When you print or email invoices, we temporarily access order data from your Shopify store to generate PDFs. We do not permanently store order data or customer personal information.
Order data is:
- Fetched directly from Shopify's API when you request a print/email
- Used only to generate the PDF document
- Not stored in our database
- Not shared with any third parties
How We Use Your Information
We use the collected information to:
- Provide the order printing and invoicing functionality
- Save your template preferences and settings
- Track usage for billing purposes
- Improve our application and user experience
- Provide customer support
Data Storage and Security
Your store settings and preferences are stored securely in our database hosted on Fly.io. All data is encrypted in transit using HTTPS/TLS.
What we store:
- Shop domain and Shopify access token (encrypted)
- Your invoice template settings (template choice, colors, fonts)
- Your company information (name, address, logo URL)
- Your email template preferences
- Monthly usage count for billing
What we do NOT store:
- Customer names, addresses, or contact information
- Order details, line items, or financial data
- Payment information (handled entirely by Shopify)
Third-Party Services
We use the following third-party services:
- Shopify - To access your store data and process billing
- Fly.io - For hosting our application and database
- Resend - For sending invoice emails (only receives recipient email and PDF attachment)
These services have their own privacy policies and we encourage you to review them.
Data Retention
We retain your store settings for as long as the app is installed on your store. When you uninstall the app:
- Your store settings are deleted within 48 hours
- Access tokens are immediately revoked
- No customer data is retained (as we don't store it)
GDPR Compliance
We comply with the General Data Protection Regulation (GDPR) by:
- Not storing personal customer data
- Responding to customer data requests within 30 days
- Responding to data deletion (redaction) requests promptly
- Implementing shop data deletion when stores are closed
We have implemented the required Shopify GDPR webhooks:
- Customer Data Request - We report that no customer data is stored
- Customer Redaction - We confirm deletion (no data to delete)
- Shop Redaction - We delete all shop settings and data
Your Rights
You have the right to:
- Access - Request a copy of your stored settings
- Correction - Update your settings at any time in the app
- Deletion - Uninstall the app to delete all your data
- Data Portability - Request your settings in a portable format
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.