Ghostify Privacy Policy

1. Overview

Ghostify is a Shopify app that helps merchants protect storefront content from copy actions, known spy-extension overlays, and suspicious storefront interactions. This policy explains what information Ghostify collects, how it is used, and how it is protected.

2. Information We Collect

To operate Ghostify, we collect and process the following:

• Shopify shop domain — used to identify your store and associate your settings with your installation.
• App installation and session data — OAuth tokens and session records required to authenticate your store and maintain a working connection with Shopify.
• Merchant-selected protection settings — the protection rules you configure in the Ghostify dashboard (for example, which copy-prevention behaviors are enabled).
• Theme app embed activation status — whether the Ghostify embed block has been enabled in your Shopify theme.
• Protection event logs — records of triggered protection rules, including the rule type, timestamp, and shop domain. These logs power the activity dashboard.
• Billing subscription status — if Shopify Managed Pricing or Shopify Billing is used, we receive and store your current subscription plan status.
• Support communications — if you contact us for help, we retain the information you provide (such as your name and email address) to respond and resolve your request.

3. Information We Do Not Intentionally Collect

Ghostify does not intentionally collect:

• Customer payment card data.
• Customer passwords or login credentials.
• Sensitive customer account credentials of any kind.

We do not sell merchant data or customer data to any third party.

4. How We Use Information

Information collected by Ghostify is used to:

• Provide and operate storefront content protection.
• Display protection status and recent protection activity in the Ghostify dashboard.
• Maintain your app installation and protection settings.
• Verify whether the Ghostify theme app embed block is active in your storefront.
• Process and display billing subscription status when applicable.
• Provide merchant support and assist with security troubleshooting.

We do not use your data for advertising, analytics profiling, or any purpose beyond operating and improving Ghostify.

5. Sharing and Service Providers

Ghostify relies on third-party infrastructure providers — including hosting, database, monitoring, and related services — that are necessary to operate the app. These providers may process data on our behalf as part of delivering the service. We require that such providers handle data appropriately and only for the purpose of operating Ghostify.

We do not sell your data or your customers' data.

6. Data Retention and Deletion

When Ghostify is uninstalled from your store, we delete the app session records, protection settings, and protection event logs associated with your shop.

Billing records may be retained beyond uninstall only to the extent required for accounting, legal compliance, or dispute resolution purposes.

If you would like to request deletion of any data associated with your shop outside of the normal uninstall flow, please contact us at support@ghostifyshield.com.

7. Security

We apply reasonable technical safeguards to protect the data we store and process. Access to merchant data is limited to what is necessary to operate and support Ghostify.

No method of transmission over the internet or electronic storage is fully secure. We cannot guarantee absolute security, and we encourage merchants to contact us promptly if they have concerns about their data.

8. Merchant Rights and Contact

Depending on your jurisdiction, you may have the right to access, correct, restrict processing of, or request erasure of personal data associated with your store. To exercise any of these rights, or if you have any questions about this policy, please contact us:

Email: support@ghostifyshield.com

We will respond to requests within a reasonable timeframe.

9. Updates to This Policy

This privacy policy may be updated as Ghostify evolves or as legal requirements change. When we make material changes, we will update the date at the top of this page. Continued use of the app after an update constitutes acceptance of the revised policy.