Privacy Policy

Our commitment to protecting your privacy and personal data

2025/01/27

Last updated: January 27, 2025

Introduction

This Privacy Policy explains how Shopify Theme Detector ("we," "our," or "us") collects, uses, and protects your personal information when you use our theme detection service. We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other international privacy regulations.

Our service allows users to detect and identify Shopify themes used by online stores by analyzing publicly available information. By using our services, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Information You Provide

  • Store URLs: Shopify store URLs that you submit for theme detection analysis
  • Contact Information: If you contact us through our website, we may collect your name, email address, and message content

Information We Collect Automatically

  • Usage Data: Pages visited, features used, time spent on our website, and interaction patterns
  • Device Information: IP address, browser type, operating system, and device identifiers
  • Log Data: Server logs, error reports, and system activity for security and performance monitoring
  • Analytics Data: Aggregated usage statistics and performance metrics (anonymized)

Third-Party Data We Analyze

  • Publicly Available Store Information: We analyze publicly accessible information from Shopify stores to identify themes
  • Theme Database: We maintain a database of Shopify themes and their characteristics for detection purposes

We process your personal data based on the following legal grounds:

Legitimate Interests:

  • Providing theme detection services
  • Website functionality and performance optimization
  • Security monitoring and fraud prevention
  • Service improvement and analytics
  • Legal compliance and dispute resolution

Consent:

  • Optional analytics cookies (where required by law)
  • Contact form submissions
  • Newsletter subscriptions (if applicable)

Legal Obligation:

  • Compliance with applicable laws and regulations
  • Response to legal requests and law enforcement

How We Use Your Information

Core Service Operations

  • Theme Detection: Analyzing submitted store URLs to identify Shopify themes
  • Service Delivery: Providing theme identification results and related information
  • Customer Support: Responding to inquiries and resolving technical issues
  • Security: Protecting against fraud, abuse, and unauthorized access to our service

Service Improvement

  • Analytics: Understanding usage patterns to improve our detection accuracy and website functionality
  • Performance Monitoring: Ensuring service reliability and optimization
  • Feature Development: Developing new detection capabilities based on user needs
  • Quality Assurance: Testing and maintaining detection accuracy and service quality

Communications

  • Support: Responses to your inquiries and support requests through contact forms

Third-Party Services

We work with trusted third-party service providers to deliver our services:

Web Hosting and Infrastructure

  • Purpose: Website hosting, content delivery, and service infrastructure
  • Data Shared: Website usage data and technical logs as necessary for operations
  • Protection: Enterprise-grade security and encryption standards

Analytics (Optional)

  • Purpose: Understanding website usage patterns and performance metrics
  • Data Shared: Anonymized usage statistics and aggregated data
  • Data Location: Varies by provider, with appropriate safeguards
  • Protection: Privacy-focused analytics without personal identification

Email Services (If Contact Forms Used)

  • Purpose: Handling contact form submissions and support communications
  • Data Shared: Email addresses and message content from contact forms
  • Protection: Secure transmission and storage with data retention limits

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Store URLs: Not permanently stored; processed temporarily for theme detection
  • Detection Results: Not stored on our servers after display to user
  • Support Communications: 2 years after resolution for customer service purposes
  • Analytics Data: Aggregated and anonymized data retained indefinitely for service improvement
  • Log Files: 90 days for security monitoring and troubleshooting purposes
  • Contact Form Data: 3 years after submission for support and legal purposes

International Data Transfers

As a web-based service, we may transfer your personal data to countries outside your residence for hosting and service delivery purposes. We ensure appropriate safeguards for international transfers through:

  • Adequacy Decisions: Transfers to countries with adequate data protection as recognized by relevant authorities
  • Standard Contractual Clauses: EU-approved contract terms with service providers
  • Certification Programs: Working with providers that have recognized privacy certifications
  • Technical and Organizational Measures: Implementing appropriate security measures for data protection

Your Rights and Choices

Data Subject Rights (GDPR/CCPA)

You have the following rights regarding your personal data:

Right to Access: Request a copy of the personal data we hold about you Right to Rectification: Request correction of inaccurate personal data Right to Erasure: Request deletion of your personal data Right to Restrict Processing: Request limitation of data processing Right to Data Portability: Request your data in a portable format Right to Object: Object to processing based on legitimate interests Right to Withdraw Consent: Withdraw consent for consent-based processing

How to Exercise Your Rights

  • Email: [email protected]
  • Contact Form: Submit requests through our website contact form
  • Response Time: We will respond within 30 days (GDPR) or 45 days (CCPA)

California Residents (CCPA)

California residents have additional rights:

  • Right to Know: Categories and specific pieces of personal information collected
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of the sale of personal information
  • Right to Non-Discrimination: Equal service regardless of privacy choices

Note: We do not sell personal information to third parties. Our service is free and does not involve the sale of user data.

Data Security

We implement comprehensive security measures to protect your personal data:

Technical Safeguards

  • Encryption: Data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Role-based access with multi-factor authentication
  • Network Security: Firewalls, intrusion detection, and monitoring
  • Regular Updates: Security patches and system updates
  • Secure Development: Security-focused coding practices and reviews

Organizational Safeguards

  • Staff Training: Regular privacy and security training for employees
  • Access Limitation: Strict need-to-know access policies
  • Incident Response: Procedures for handling security incidents
  • Vendor Management: Security requirements for third-party providers
  • Regular Audits: Internal and external security assessments

Data Breach Response

In the event of a data breach, we will:

  • Immediate Response: Contain and assess the breach within 24 hours
  • Authority Notification: Notify relevant authorities within 72 hours if required
  • User Notification: Inform affected users without undue delay
  • Remediation: Take steps to prevent future incidents

Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that we have collected personal information from a child under 13, we will delete it immediately.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at [email protected].

Cookies and Tracking

We use cookies and similar technologies to enhance your experience. For detailed information about our cookie practices, please see our Cookie Policy.

Essential Cookies

  • Session management and authentication
  • Security and fraud prevention
  • Basic functionality and preferences
  • Analytics and performance monitoring
  • Feature enhancement and personalization
  • Marketing and advertising (if applicable)

You can manage cookie preferences through your browser settings or our cookie consent banner.

Marketing Communications

We currently do not send marketing emails. If we implement email communications in the future:

Email Communications (Future Implementation)

  • Opt-In: We will only send emails with your explicit consent
  • Opt-Out: Unsubscribe links will be provided in all emails
  • Content: Service updates and relevant information about theme detection features

Communication Preferences

Automated Decision Making

Our service uses automated systems for:

  • Theme Detection: Automated analysis of store code to identify Shopify themes
  • Security Monitoring: Automated detection of suspicious activity and abuse prevention
  • Service Optimization: Automated performance monitoring and reliability improvements

You have the right to:

  • Request Human Review: Contact us if you believe our automated theme detection is incorrect
  • Explanation: Understand how our theme detection algorithm works
  • Challenge: Report issues with detection accuracy through our contact form

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make changes:

  • Notification: We will notify you via email or prominent notice on our website
  • Effective Date: Changes take effect 30 days after notification
  • Continued Use: Your continued use constitutes acceptance of the updated policy
  • Version History: Previous versions available upon request

Contact Information

Privacy Inquiries

For all privacy-related inquiries and requests:

  • Email: [email protected]
  • Contact Form: Available on our website
  • Response Time: Within 5 business days for general inquiries, 30 days for formal data subject requests

Regulatory Complaints

If you believe we have not addressed your privacy concerns adequately, you may file a complaint with:

  • EU/EEA: Your local data protection authority
  • UK: Information Commissioner's Office (ICO)
  • California: California Attorney General's Office
  • Other Regions: Relevant privacy regulatory authority

Definitions

Personal Data: Any information relating to an identified or identifiable natural person. Processing: Any operation performed on personal data, including collection, use, storage, and deletion. Data Controller: The entity that determines the purposes and means of processing personal data. Data Processor: The entity that processes personal data on behalf of the data controller. Consent: Freely given, specific, informed, and unambiguous indication of agreement to data processing.

Contact Us

If you have any questions about this Privacy Policy, please contact us at [email protected].