Privacy Policy
Last updated: July 15, 2026
BeinStore ("we", "us", "our") is an order-operations platform that connects to your Shopify store to help your team manage orders, inventory, and customer records in one place. This policy explains what data we collect through that connection, why, and how it's handled.
What data we collect
When you connect a Shopify store to BeinStore, we request access to: product and inventory data (titles, variants, pricing, stock levels), order data (order details, line items, fulfillment and payment status, and the customer information Shopify includes on each order, such as name, email, phone, and shipping/billing address), and customer profile data (contact details, lifetime order count and spend, and marketing/verification flags Shopify provides). We only request the scopes our features actually use β read_products, read_orders, and read_customers β nothing broader.
How we use this data
Data synced from your store is used exclusively to power BeinStore's features for your own team: displaying and managing orders, tracking inventory levels, and letting your staff flag customers as trusted, watched, or blocked based on your own order history. We do not use your store's data for advertising, do not build cross-merchant profiles, and do not sell or rent data to any third party.
Who we share data with
We share data only with the service providers required to operate BeinStore: Supabase (database hosting and authentication), Vercel (application hosting), and Resend (transactional email, e.g. team invitations and password resets). None of these providers use your data for their own purposes β they process it solely to deliver the service to you. We do not use third-party analytics or advertising trackers on the BeinStore application.
How data is stored and secured
Store data is stored in a PostgreSQL database (via Supabase) and scoped per company β no merchant can see another merchant's data. Shopify access tokens are encrypted at rest (AES-256-GCM) before storage and are never exposed to the browser. All traffic to BeinStore is encrypted in transit (HTTPS).
Data retention and deletion
We retain synced store data for as long as your store stays connected to BeinStore. If you disconnect a store from within BeinStore, its data is deleted from our systems. If you uninstall the BeinStore app from your Shopify admin, Shopify notifies us and we permanently delete all data associated with that store, including orders, products, and customer records.
Your rights and Shopify's mandatory compliance webhooks
BeinStore implements Shopify's three mandatory GDPR webhooks: a request for a customer's data (customers/data_request), a request to erase a customer's personal data (customers/redact), and a request to erase all of a shop's data after uninstall (shop/redact). If a shopper asks a merchant using BeinStore for their data or its deletion, these requests are handled automatically through this mechanism. Merchants and their customers can also contact us directly using the details below.
Cookies
BeinStore uses only functional cookies required for authentication (keeping you signed in) and for remembering your language and store selection preferences. We do not use advertising or cross-site tracking cookies.
Changes to this policy
If we make material changes to how we collect or use data, we'll update the date at the top of this page and, where appropriate, notify connected merchants directly.
Contact us
For any privacy questions, data requests, or concerns, contact us at support@beinstore.app.