Privacy Policy
Last updated:
Apr 8, 2026
Protecting your privacy is important to us. This Privacy Policy outlines how Vioflow ("we", "us", or "our") collects, uses, shares, and protects your personal information when you use our services. By using any Vioflow application (collectively, the "Applications" or "Services"), you consent to the practices described in this Privacy Policy.
This Privacy Policy applies to all applications developed and published by Vioflow, including but not limited to our Shopify applications and any related products or services.
1. Information We Collect
a. Store Information
When you install any of our Applications on your Shopify store, we access certain information provided by the Shopify API, including:
Store name, domain, and email address
Product and inventory data
Order data (where required by the Application's functionality)
b. Customer Information
Certain Applications may collect information from your store's customers, such as:
Email addresses submitted via subscription forms (e.g., back-in-stock notifications)
Product and variant preferences
Subscription timestamps
c. Usage Data
We may collect information about your usage of the Applications, such as:
Pages viewed within the admin panel
Feature configurations and settings
Actions taken while using the Applications
d. Cookies and Tracking
Our Applications operate within the Shopify admin iframe and do not use independent cookies or tracking scripts on merchant storefronts beyond those necessary for theme extension functionality.
2. How We Use Your Information
We use the collected information for the following purposes:
a. To provide and maintain our Services.
b. To send notifications and communications on your behalf as configured by you.
c. To apply tags, labels, and other data as configured by you within your Shopify store.
d. To monitor and review accounts to ensure compliance with our terms and conditions.
e. To communicate with you, including sending important updates and notifications about the Services.
f. To improve and enhance the functionality of our Applications.
g. To provide customer support.
h. To comply with legal obligations.
3. How We Share Your Information
We may share your information in the following circumstances:
a. Service Providers: With third-party service providers who assist us in delivering our Services, including hosting providers, email delivery services, analytics tools, and billing platforms.
b. With your consent.
c. Legal requirements: When required by law or to protect our rights or the rights of others.
d. Business transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets.
We do not sell, rent, or trade your personal information or your customers' personal information to third parties for marketing purposes.
4. Data Security
We implement and maintain appropriate technical and organizational security measures to protect personal information, including:
Encryption of data in transit (HTTPS/TLS)
Secure authentication via Shopify OAuth
Access controls limiting data access to authorized personnel only
Regular security reviews of our infrastructure
5. Data Retention
Store settings and configuration: Retained for the duration of your use of the Application. Deleted upon app uninstallation.
Customer data (e.g., subscriber emails): Retained until the customer unsubscribes or until you request deletion, whichever comes first. Deleted upon app uninstallation.
Data applied to your Shopify store (e.g., tags, metafields) is managed directly via the Shopify API. We do not independently store copies of this data.
6. Your Rights
You and your customers have the right to:
a. Access — Request a copy of the personal information we hold.
b. Correction — Request correction of inaccurate personal information.
c. Deletion — Request deletion of personal information. You may delete all data by uninstalling the Application.
d. Objection — Object to the processing of personal information.
e. Withdrawal of consent — Withdraw consent at any time, where applicable.
f. Data portability — Where available, export your data via the Application's export features.
To exercise these rights, please contact us at support@vioflow.io.
7. GDPR Compliance
For users in the European Economic Area (EEA):
We process personal information as a Data Processor on your behalf. You, as the store owner, are the Data Controller.
Where applicable, all customer-facing emails include an unsubscribe mechanism.
We do not transfer personal data outside the EEA without appropriate safeguards.
You may request a Data Processing Agreement (DPA) by contacting us.
8. CCPA Compliance
For users in California:
We do not sell personal information.
We do not share personal information for cross-context behavioral advertising.
California residents may exercise their rights by contacting us at support@vioflow.io.
9. Links to Other Websites and Applications
Our Applications may link to other websites or services (e.g., Shopify). We are not responsible for the privacy practices or content of these third-party entities. Please review their privacy policies before using their services.
10. Children's Privacy
Our Services are not directed at individuals under the age of 18. We do not knowingly collect personal information from children.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any significant changes via email or by posting an updated Privacy Policy. The updated version will be indicated by an updated "Effective Date."
12. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
Vioflow Email: support@vioflow.io
