ZIPPY Privacy Policy

1. Who We Are

ZIPPY is a Shopify app operated by Enfin Libre. The app helps merchants scan product media, optimize images, create optimized Shopify Files assets, and replace or roll back product media when needed.

2. What Data We Collect

We collect and process only the merchant data needed to provide the app.

• Shop and installation data, including the merchant's shop domain, store ID, and app installation state.
• Session and authentication data used to securely access the Shopify Admin API, including access tokens and related session metadata stored in our database.
• Merchant account details returned during Shopify authentication, such as the Shopify user ID, name, email, locale, and account flags when provided by Shopify.
• Store image and media data needed for optimization, including Shopify product IDs, Shopify media IDs, resource type, original image URLs, optimized image URLs, backup URLs, sizes, formats, and processing status.
• Operational data such as webhook topic, request timestamps, error logs, and audit information needed to run, secure, and troubleshoot the service.

3. Shopify API Data We Access

ZIPPY uses the Shopify Admin API and related Shopify services only for the app's image optimization workflow.

• Products and media: we read product media to find images that can be optimized.
• Files API: we use staged uploads and file creation to store backup and optimized image assets in Shopify.
• Write operations: we create, replace, or delete product media when the merchant applies an optimization or rolls back to an original image.
• Billing and app access: we use Shopify authentication and billing checks to manage access to the app.
• Webhooks: we receive app uninstall and compliance webhooks, including Shopify data redaction topics.

The app is configured to request the following access scopes: read_files, read_products, write_files, and write_products.

4. How We Use Data

• To scan a merchant's catalog and identify image assets available for optimization.
• To download, process, and upload optimized media back to Shopify.
• To store metadata required for rollback, reporting, and progress tracking.
• To authenticate merchants, manage subscriptions, and keep the app secure.
• To troubleshoot problems, prevent abuse, and maintain auditability of app actions.

We do not use merchant data for advertising, profiling, or unrelated secondary purposes.

5. How Data Is Stored And Protected

• Session records and app data are stored in our PostgreSQL database through Prisma.
• Access to the app is restricted to authenticated Shopify sessions.
• Webhook requests are validated with Shopify signatures before processing.
• Communication with Shopify and external services occurs over HTTPS.
• We use least-privilege access scopes and limit internal access to operational needs.

We do not intentionally retain local copies of merchant image binaries after a workflow completes. The app keeps only the metadata and backup references needed to provide the service and support rollback.

6. Third-Party Sharing

We do not sell merchant data.

• We share data with Shopify as needed to authenticate the app and perform image optimization actions inside the merchant's store.
• We may use infrastructure providers for hosting, database storage, logs, and secure delivery of the app.
• We may disclose data if required by law, legal process, or to protect our rights, merchants, or users.

We do not share merchant data with unrelated third parties for their own marketing or advertising purposes.

7. Data Retention

• We retain merchant store and image metadata while the app is installed and the data is needed to operate the service.
• When an app uninstall webhook is received, we delete the merchant's session and store-scoped operational records that are no longer needed.
• Backups and optimization history are retained only as long as they are needed for rollback or support, and are removed when the associated merchant data is deleted.
• Technical logs are kept only for a limited operational period unless we need them longer for security, compliance, or dispute handling.

8. Merchant Privacy Rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal data, and in some cases to object to or request portability of that data.

Merchants can also uninstall the app at any time in Shopify admin. When required by applicable law or a valid deletion request, we will delete or anonymize merchant data that we control, except where retention is required for legal, accounting, or security reasons.

9. Shopify Compliance Requests

ZIPPY receives Shopify compliance webhooks for customer data requests, customer redaction, and shop redaction. We do not store customer-facing order or customer profile data for the app's core functionality.

For shop redaction or deletion requests, we remove merchant-scoped operational data that we control when the required identifiers are available in the webhook payload or through our merchant records.

10. Contact For Privacy Requests

For privacy questions, access requests, deletion requests, or other merchant data concerns, contact the ZIPPY operator through the Enfin Libre website at www.enfinlibre.com and use the contact options listed there.