Privacy Policy

Last updated: January 1, 2026

1. Introduction

APIfy - API Gateway ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Shopify application.

2. Information We Collect

When you install and use APIfy, we may collect the following information:

• Store Information: Your Shopify store domain, store name, and email address.
• API Configuration: Endpoint URLs, headers, and request templates you configure.
• Request Logs: HTTP request and response data for debugging and analytics purposes.
• Usage Data: Information about how you use the app, including request counts and feature usage.

3. How We Use Your Information

We use the collected information to:

• Provide and maintain the APIfy service
• Process your API requests and route them to configured endpoints
• Monitor usage for billing purposes
• Improve our service and develop new features
• Provide customer support
• Comply with legal obligations

4. Data Storage and Security

Your data is stored securely using industry-standard encryption. We use PostgreSQL databases with encrypted connections. Sensitive data such as API keys and authentication headers are encrypted at rest.

We retain request logs for a limited period (typically 30 days) for debugging purposes. You can request deletion of your logs at any time.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share data with:

• Service Providers: Third-party services that help us operate our application (hosting, analytics).
• Legal Requirements: When required by law or to protect our rights.
• Your Configured Endpoints: Data you choose to send through APIfy to your external APIs.

6. Your Rights

Under GDPR and other privacy regulations, you have the right to:

• Access: Request a copy of the data we hold about you.
• Rectification: Request correction of inaccurate data.
• Erasure: Request deletion of your data ("right to be forgotten").
• Portability: Request your data in a machine-readable format.
• Objection: Object to certain processing of your data.

7. Data Retention

We retain your data for as long as your app is installed. Upon uninstallation, we delete all your data within 48 hours as required by Shopify's guidelines.

8. Cookies

APIfy uses essential cookies required for authentication and session management within the Shopify admin. We do not use tracking or advertising cookies.

9. Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Last updated" date at the top of this policy.

11. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: info@brainsontech.com