Privacy Policy
Last updated: 2026-05-31
This privacy policy describes how the SecureBite API Proxy app ("SecureBite", "we", "us", "our") handles data when you install and use the app on your Shopify store. We collect the minimum data required to operate the app and do not sell, share, or use it for marketing.
One-line summary: we store your shop's access token, the proxy routes you configure, your selected billing plan, and (optionally) one email address for usage notifications. We never store customer data, order data, or theme code. All theme scan findings are computed live and discarded after each scan.
1. Who we are
SecureBite API Proxy is operated by Webite d.o.o., located in Ljubljana, Slovenia. For any privacy questions, email support@webite.rocks.
2. What data we collect
2.1 Data from your Shopify store
- Shop domain (e.g.
your-store.myshopify.com) - used as the identifier for all stored data.
- Shopify offline access token - granted by you during installation so the app can call the Shopify Admin API on your behalf. Used only to scan your published theme for leaked API keys.
- Store email - optionally fetched from your Shopify account (via the
shop.email field) as a fallback contact address for usage notifications.
2.2 Data you provide
- Proxy route configuration - the target URLs, HTTP methods, secret headers, body templates, and validation rules you set up in the admin UI.
- Notification email (optional) - one email address you can supply to receive usage alerts. Used only for transactional notifications, never for marketing.
- Cleanup request details (Pro / Scale plans only) - if you submit a cleanup service request: your collaborator request code, any note you add, and the findings summary from the most recent theme scan.
- Support messages - if you contact us via the in-app support form or chat, the message contents and the context (shop, plan, route count) that the form attaches.
2.3 Data generated by the app
- Proxy request counts - aggregate count of storefront proxy requests per month, used to enforce your plan limit. We do not store request bodies, response bodies, IPs, or any per-request metadata.
- Theme scan results cache - the most recent scan summary (file paths, pattern names, line numbers, redacted previews of detected secrets) so you can revisit findings without re-running the scan. Raw secret strings are never stored.
- Selected billing plan - the plan handle Shopify reported on the last subscription callback.
3. What data we do NOT collect
- We do not collect or store any of your customers' personal data, names, emails, addresses, or order details.
- We do not store the actual contents of your theme files - only the redacted summary of any secrets found during a scan.
- We do not store the secret credentials (API keys, tokens) configured in your proxy routes any longer than necessary to handle live requests. They live in Cloudflare KV for the lifetime of the route configuration so the Worker can inject them on each storefront call.
- We do not use cookies, tracking pixels, fingerprinting, or third-party analytics inside the embedded admin UI.
- We do not sell, rent, or share any data with third parties for marketing.
4. Where data is stored
- Cloudflare Workers + Cloudflare KV (US / EU edge), with per-shop isolation.
- Cloudflare Durable Objects for monthly request counters.
- Resend (for delivering transactional emails like usage alerts and cleanup notifications).
- Tawk.to (only for paid-plan merchants who use the live chat widget; loaded client-side).
5. Sub-processors
We use the following third-party services to operate the app:
- Cloudflare - hosting (Workers, KV, Durable Objects). privacy policy
- Resend - transactional email delivery. privacy policy
- Tawk.to - live chat widget (paid plans only, loaded only when the merchant opens the chat). privacy policy
- Shopify - billing and authentication. privacy policy
6. How long we keep data
- All shop-specific data (access token, routes, plan, notification email, scan cache, cleanup requests) is deleted when you uninstall the app, via Shopify's
app/uninstalled webhook.
- Final cleanup is also performed when Shopify sends a
shop/redact webhook (typically 48 hours after uninstall, as part of Shopify's GDPR pipeline).
- Usage counter records are scoped per calendar month and rotate naturally; they're deleted alongside the shop record on uninstall.
- One-shot KV markers (rate-limit, notification dedup) expire automatically within 60 seconds to 35 days, depending on purpose.
7. GDPR / data subject rights
Although we do not store any customer personal data, the app responds to Shopify's mandatory GDPR webhooks:
customers/data_request - no-op (we hold no customer data to return).
customers/redact - no-op (we hold no customer data to delete).
shop/redact - all shop-specific data we hold is deleted.
If you have concerns or want confirmation that your data has been purged, email support@webite.rocks.
8. Security
- All traffic to and from the app is HTTPS only.
- Shopify App Proxy requests are verified by HMAC signature on every call.
- Secret headers and API keys you configure are stored in Cloudflare KV and injected by the Worker server-side - they never appear in storefront page source.
- Cloudflare environment secrets (Shopify API secret, Resend API key) are stored in Cloudflare's encrypted secret store, accessible only to the Worker.
9. Changes to this policy
If we materially change how we handle data, we'll update the date at the top of this page and notify active merchants by email before the change takes effect.
10. Contact
For any privacy questions, data access requests, or concerns, email support@webite.rocks.