Welcome to StylePass AI (“StylePass AI,” “we,” “our,” or “us”). We are committed to protecting personal data and respecting your privacy. This Privacy Policy explains how we collect, use, store, and share information when merchants install StylePass AI via the Shopify App Store, and when shoppers use the virtual try-on widget on merchant storefronts.
By installing or using StylePass AI, you agree to this Policy.
Scope & Roles
This Policy applies to two audiences:
Merchants (Store Owners)
Shopify merchants who install StylePass AI via the Shopify App Store. When you install the app, you act as the Data Controller for your customers' personal data. StylePass AI acts as the Data Processor, handling that data only on your instruction and in accordance with this Policy and our Data Processing Agreement.
Shoppers (End Users)
Customers of merchant stores who interact with the virtual try-on widget on a product page. As a merchant, you are responsible for ensuring your store's privacy policy informs your customers about the StylePass AI try-on feature. See Section 8 for suggested language.
Information We Collect
From Merchants (via Shopify API)
Upon installation, we receive from Shopify's APIs:
- Store domain, owner name, and email address
- Shopify shop ID and contact details
- App configuration data and preferences
- Billing status — managed via Shopify's Billing API
- Automated usage logs related to your use of the app
From Shoppers
When a shopper uses the virtual try-on widget:
- Photos uploaded for try-on generation
- Generated try-on output images
- Session and device identifiers
- Basic device and browser metadata
Merchants do not have access to view individual shopper-uploaded photos or generated try-on images. These are processed by StylePass AI solely to deliver the experience.
What We Do NOT Collect
We do not collect phone numbers, government IDs, payment card details, passwords, or other sensitive personal identifiers from shoppers. We do not require shoppers to create accounts.
How We Use This Information
- To generate virtual try-on previews for shoppers on merchant product pages
- To provide merchants with conversion and funnel analytics
- To process billing and manage merchant subscriptions via Shopify
- To communicate with merchants about updates, support, and billing
- To monitor app performance and fix errors
- To comply with applicable laws and Shopify mandatory requirements
Absolute commitment: We do NOT use shopper photos, generated try-on images, or any merchant or shopper data to train, fine-tune, or improve our AI models. Ever.
Data Retention
| Data Type | Retention Period |
|---|---|
| Shopper uploaded photos | Auto-deleted within 30 days |
| Generated try-on images | Auto-deleted within 30 days |
| Merchant account data | Deleted within 30 days of uninstall |
| Analytics & session data | Up to 12 months, then anonymized |
When a merchant uninstalls the app, we process the shop/redact webhook within 30 days and permanently delete all data.
Compliance Webhooks
StylePass AI implements and responds to all three mandatory Shopify compliance webhooks:
We provide relevant resource IDs to the store owner within 30 days of request.
We permanently erase specific shopper data from our systems within 30 days.
We permanently erase all data associated with a store within 30 days of uninstall.
All webhooks are verified using Shopify's HMAC signature validation. Unverified requests are rejected.
Data Sharing & Subprocessors
We share limited data only with the following trusted subprocessors solely to operate the Service:
| Provider | Purpose | Region |
|---|---|---|
| Shopify | Integration and billing | Global |
| Google Cloud | AI inference (Vertex AI) | USA / EU |
| AWS | Storage and hosting | USA / EU |
| Mixpanel | Product analytics | USA |
| Sentry | Error monitoring | USA |
Your Rights
Legal bases include performance of a contract, legitimate interests, and consent. You may lodge a complaint with your local DPA.
You have the right to know what personal info we collect and to request deletion. StylePass does not sell personal information.
To exercise any rights, contact privacy@stylepass.ai.
Merchant Responsibilities
Merchants are responsible for informing their customers about the try-on feature. You may use the following suggested text:
“This store uses StylePass AI, a virtual try-on tool powered by generative AI. When you use the try-on feature, you upload a photo that is processed to create a preview. Your photo and generated image are automatically deleted within 30 days and are never used to train AI models.”
Security
We apply industry-standard security measures including HTTPS/TLS encryption in transit, encrypted storage at rest, strict role-based access controls, and secure deletion procedures. While no system is completely secure, we follow best practices to protect all data.
Children
The Service is not intended for individuals under 13. If we become aware that we have collected personal data from a minor without verifiable parental consent, we will promptly delete it.
Policy Changes
We may update this Policy. Material changes will be communicated via in-app notice or email. Continued use after an update constitutes acceptance of the revised Policy.
Contact
For privacy-related questions or data requests:
privacy@stylepass.ai