Privacy Policy

Last updated: April 11, 2026

StorePin ("we", "our", "the app") is a Shopify application that helps merchants display their retail store locations on an interactive map.

Information We Collect

From Merchants (App Users)

• Shopify store information: Store name, domain, email (provided by Shopify during OAuth installation)
• Location data: Store names, addresses, phone numbers, hours, and coordinates that you enter or import
• Account settings: Widget appearance preferences, plan selection

From Store Visitors (End Users)

• Search queries: City names or postal codes entered in the store locator widget (anonymized, no personal data)
• Browser geolocation: Only if the visitor explicitly grants permission via the browser prompt

Information We Do NOT Collect

• We do NOT collect personal information from store visitors
• We do NOT use cookies on the widget
• We do NOT track visitors across websites
• We do NOT sell any data to third parties
• We do NOT access customer data, orders, or products from your Shopify store

How We Use Information

• Location data: Displayed on the interactive map for store visitors
• Search queries: Used to calculate distances and provide analytics to merchants
• Store information: Used for account management and billing

Data Storage & Security

• All data is stored on secure servers hosted by Hostinger (EU-based)
• Database connections use encrypted protocols
• Shopify access tokens are stored securely and only used for theme integration
• We use prepared statements for all database queries to prevent SQL injection

Third-Party Services

• Shopify: For app installation, authentication, and billing
• OpenStreetMap / Leaflet: For map display (no data sent to these services)
• Nominatim: For geocoding addresses to coordinates (addresses are sent for geocoding only, not stored by Nominatim)

Data Retention

We retain your location data and account information for as long as the app is installed. When you uninstall the app, your data is retained for 30 days in case of accidental uninstallation, then permanently deleted.

GDPR Compliance

We comply with the General Data Protection Regulation (GDPR). You have the right to:

• Access your data
• Correct your data
• Delete your data
• Export your data (CSV export available)
• Restrict processing

To exercise these rights, contact us at support@storepin.io.

Shopify Mandatory Webhooks

We handle the following Shopify mandatory webhooks:

• customers/data_request: We do not store customer data, so no data is returned
• customers/redact: We do not store customer data, so no action is needed
• shop/redact: All merchant data is deleted within 30 days of receiving this webhook

Children's Privacy

StorePin is not intended for children under 13. We do not knowingly collect data from children.

Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated date.

Contact

For any questions about this privacy policy:
support@storepin.io

← Back to StorePin