Privacy Policy
Last updated: March 11, 2026
1. Overview
This Privacy Policy covers two services operated by WandStore: our marketing website (wand-store.com) and our Shopify app ("WandStore"). Both are hosted on Cloudflare infrastructure.
2. Website — Information We Collect
Email Address: When you join our waitlist, we collect your email address. This is stored securely on Cloudflare Workers KV.
Usage Data: We may collect anonymous usage data through Cloudflare Analytics, including page views, referring URLs, and general geographic information.
Local Storage: We use your browser's localStorage to save your theme preference (light or dark mode). This data stays on your device and is never transmitted to our servers.
3. Shopify App — Data We Process
When a Shopify merchant installs the WandStore app, we process certain data to provide AI-powered storefront personalization. This section describes what data we access, how we store it, and how we protect it.
Data collected from merchants
- Store credentials: Shopify Admin API access token, storefront access token, customer-account client credentials, and shop domain. Used to connect the app to the merchant's Shopify store.
- Store settings: Brand settings, prompts, featured content, A/B test configuration, and billing plan. Configured by the merchant through the app dashboard.
Data collected from customers
- Customer identity and profile data: Shopify customer ID, first name, order count, total spend, customer tags, and related profile attributes used to personalize storefront content for eligible signed-in customers.
- Order history: Recent order details, such as product names, quantities, and dates, when used to personalize recommendations or reorder experiences.
- Authentication tokens: Customer account access and refresh tokens issued during the Customer Account API OAuth flow. Used to support customer-account features.
- Cached personalization: The AI-generated HTML storefront personalized for each customer is cached to improve performance and reduce costs.
- Generation metadata: Timestamps and generation counts for billing and rate limiting purposes.
Data we do NOT collect
- Payment information or credit card details (handled entirely by Shopify)
- Customer phone numbers
- Customer passwords
- Browsing history or tracking cookies
4. How We Use the Data
- Personalization: We use Shopify customer and order data, product catalog data, and merchant-configured brand settings to generate personalized storefront content for eligible signed-in customers.
- Caching: Generated storefronts are cached per customer to reduce latency and API costs. Cache is invalidated when new data is available.
- A/B Testing: When enabled by the merchant, customers are bucketed into treatment or control groups using a deterministic hash of their customer ID. Shopify customer tags (
wand:treatment,wand:control) are applied to enable merchants to measure conversion lift. - Billing: We track the number of AI generations per store per billing period to enforce plan limits.
- Product updates: Waitlist email addresses are used to communicate launch announcements.
5. Data Storage & Infrastructure
All data is stored on Cloudflare's global network using the following services:
- Cloudflare Durable Objects (SQLite): Per-customer data (cached HTML, generation metadata, auth tokens) is stored in isolated Durable Objects. Each customer has their own storage instance. Per-store data (settings, credentials, billing) is stored in a separate Store Durable Object.
- Cloudflare Workers KV: Waitlist emails and configuration data.
Data is transmitted over encrypted connections. Data stored on Cloudflare infrastructure is subject to Cloudflare's platform security controls. See Cloudflare Trust Hub.
We do not store data in any other cloud provider or on-premises infrastructure.
6. Third-Party Services
- Cloudflare: Hosting, storage, and CDN. See Cloudflare's Privacy Policy.
- Shopify: E-commerce platform. We access merchant and customer data via Shopify's APIs with merchant-granted permissions. See Shopify's Privacy Policy.
- AI Model Provider (Moonshot / Kimi): Purchase-related customer context, product data, and merchant-configured brand settings may be processed to generate personalized storefront content. The AI provider processes data according to its privacy policy.
- Google Fonts: We load fonts from Google Fonts on our marketing website. See Google's Privacy Policy.
7. Data Retention
- Customer personalization cache: Retained until explicitly cleared by the merchant, replaced by newer generated content, or deleted as part of customer or store data removal.
- Store credentials: Retained while the app is installed. Deleted when the merchant uninstalls the app (via
APP_UNINSTALLEDwebhook). - Customer data: Deleted upon merchant request, customer request (via Shopify), or app uninstall. We honor all Shopify GDPR webhooks.
- Waitlist emails: Retained until you request removal.
8. Your Rights (GDPR & Global Privacy)
Whether you are a merchant or a customer of a merchant using WandStore, you have the right to:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate data.
- Deletion: Request deletion of your personal data. For customers: your data is deleted when the merchant processes a GDPR deletion request through Shopify. For merchants: uninstalling the app triggers automatic deletion.
- Portability: Request your data in a machine-readable format.
We respond to all GDPR data requests via Shopify's mandatory webhooks (CUSTOMERS_DATA_REQUEST, CUSTOMERS_REDACT, SHOP_REDACT).
9. Security
- All API traffic is encrypted via TLS 1.3
- Shopify webhook signatures are verified using HMAC-SHA256
- Admin API tokens are stored in server-side infrastructure and are not exposed to storefront clients
- Customer authentication uses Shopify's App Proxy HMAC verification
- Rate limiting is enforced per IP and per store to prevent abuse
10. Changes to This Policy
We may update this policy as our services evolve. The "Last updated" date at the top reflects the most recent revision. Continued use of our services constitutes acceptance of the updated policy.
11. Contact
For privacy-related questions, email us at privacy@wand-store.com.