Privacy Policy

App: StitchSEO | Developer: StitchSEO Team | Contact: jerryduan345@gmail.com
Effective Date: 2026-05-07 | Last Updated: 2026-05-07

1. Introduction

This Privacy Policy describes how StitchSEO ("we", "us", "our") collects, uses, stores, and protects information when you ("Merchant", "you") install and use the StitchSEO application (the "App") through the Shopify platform.

By installing the App, you agree to the practices described here. If you do not agree, please do not install or use the App.

2. Who We Are

StitchSEO is the developer of the App. The App is an SEO tool that helps Shopify merchants improve their store's search engine visibility, including meta tag management, structured data generation, sitemap optimization, keyword analysis, and on-page SEO recommendations.

3. Information We Collect

3.1 Information collected through the Shopify API

When you install the App, Shopify grants us access to specific data via OAuth scopes that you approve. We only request the minimum scopes required for SEO functionality:

Data Category	Specific Data	Purpose
Shop information	Shop name, domain, owner email, primary locale, country, currency, plan type	App configuration, billing, support
Product data	Title, description, handle, images, tags, vendor, product type, SEO title, SEO description	Generating and editing SEO meta tags, structured data, content optimization
Collection data	Title, description, handle, SEO fields	Optimizing collection pages
Pages and blog data	Page/article title, body content, SEO fields	Optimizing CMS content for search
Theme data	Theme files, snippets	Injecting structured data and SEO improvements
Storefront analytics	Page views, traffic sources (aggregated)	SEO performance reporting

3.2 Customer personal information

The App may process limited customer personal information only to the extent necessary to provide our services. We do not market to your customers, do not sell customer data, and do not use customer data to build profiles for any purpose unrelated to the App's stated functionality.

3.3 Information you provide directly

Account registration details (name, business email, company name)
Billing information processed via Shopify Billing
Support correspondence (emails, chat messages, attachments)
Survey or feedback responses

3.4 Information collected automatically

Usage logs: pages accessed within the App, features used, timestamps, click events
Technical data: IP address, browser type, operating system, device identifiers, session tokens
Error and performance data: stack traces, crash reports, API response times

4. How We Use Information

Providing the Service – generating SEO recommendations, editing meta tags, producing structured data, building XML sitemaps, and other features as advertised.
Authentication and authorization – verifying API requests via Shopify session tokens.
Customer support – responding to your questions and troubleshooting issues.
Service improvement – diagnosing bugs, analyzing aggregated usage to improve features.
Billing and account management – processing subscription fees through Shopify Billing.
Legal compliance – complying with applicable laws, responding to lawful requests, enforcing our Terms.
Security – detecting fraud, abuse, and unauthorized access.

5. Legal Bases for Processing (GDPR / UK GDPR)

If you or your customers are in the European Economic Area, the United Kingdom, or Switzerland, we rely on the following legal bases:

Contract – to deliver the App's services to you.
Legitimate interests – to maintain security, prevent fraud, and improve the App.
Legal obligation – to comply with statutory duties.
Consent – where required. You may withdraw consent at any time.

6. How We Share Information

We do not sell your personal information. We share data only with subprocessors that help us operate the App, Shopify for billing, legal authorities when required by law, and in connection with business transfers.

7. International Data Transfers

For transfers from the EEA, UK, or Switzerland to countries without an adequacy decision, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission.

8. Data Retention

Active app data – retained for as long as the App is installed on your store.
After uninstallation – all shop and customer data deleted within 30 days of receiving the uninstall webhook.
Customer data deletion requests – erased within 30 days of receiving a customers/redact webhook.
Backups – retained for up to 90 days then automatically purged.

9. Data Security

We implement industry-standard technical and organizational measures, including TLS 1.2+ encryption in transit, AES-256 encryption at rest, strict access controls, regular security audits, and mandatory two-factor authentication for staff with production access.

10. Your Rights

Depending on your location, you may have rights to access, rectify, erase, restrict, port, or object to processing of your data. To exercise any of these rights, email us at jerryduan345@gmail.com. We will respond within 30 days.

11. Children's Privacy

The App is intended for business use by Shopify merchants. We do not knowingly collect personal information from individuals under 16.

12. Changes to This Policy

Material changes will be notified via email or in-app notice at least 14 days before they take effect.

13. Contact Us

Privacy: jerryduan345@gmail.com
Support: jerryduan345@gmail.com