Privacy Policy
Last updated: June 26, 2026
Dynamic Catalog Creative Factory ("we", "our", "the App") is operated by Peerware Ltd. This Privacy Policy explains how we collect, use, and protect information when you install and use our Shopify application.
1. Information We Collect
When you install the App, we access the following data from your Shopify store:
- Store information: Your Shopify store domain name.
- Product data: Product titles, descriptions, images, prices, and handles — used solely to generate ad creatives.
- Session tokens: OAuth access tokens required to communicate with the Shopify Admin API on your behalf.
We do not collect, access, or store any customer personal data, payment information, order data, or browsing behavior from your store's customers.
2. How We Use Your Information
Your product data is used exclusively to:
- Generate AI-powered marketing copy using Google Gemini.
- Produce dynamic ad images with overlaid text and pricing information.
- Generate XML product catalog feeds compatible with Meta and TikTok advertising platforms.
We do not sell, rent, or share your data with any third party for marketing or advertising purposes.
3. Third-Party Services
The App uses the following third-party services to process your data:
- Google Gemini API: Product titles and descriptions are sent to generate marketing copy. Google's privacy policy applies to this processing.
- Vercel Blob Storage: Generated ad images are stored on Vercel's edge CDN to serve them publicly in your XML catalog feed.
- Neon (PostgreSQL): Product metadata and session data are stored in a serverless PostgreSQL database.
4. Data Retention
We retain your product data and generated ad images for as long as the App is installed on your store. When you uninstall the App, all associated data (products, templates, sessions, and generated images) is automatically deleted within 48 hours.
5. Data Security
We protect your data using:
- Encrypted database connections (SSL/TLS).
- Shopify's OAuth 2.0 Token Exchange authentication strategy.
- Expiring access tokens that are automatically rotated.
- Environment-variable-based secret management (secrets are never committed to source code).
6. Your Rights (GDPR)
If you are located in the European Economic Area, you have the right to:
- Request access to the data we hold about your store.
- Request correction or deletion of your data.
- Object to or restrict processing of your data.
To exercise any of these rights, contact us at admin@peerware.site.
7. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by updating the "Last updated" date at the top of this page.
8. Contact Us
If you have any questions about this Privacy Policy, please contact us at admin@peerware.site.