Privacy Policy - Gen Manager

            In Short: Gen Manager is a developer tool that helps you obtain and manage your Shopify Admin API access tokens. We are committed to protecting your privacy and being transparent about our data practices.
        

1. Introduction

Welcome to Gen Manager ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the application.

2. Information We Collect

2.1 Information You Provide

When you install and use Gen Manager, we collect:

Store Domain: Your Shopify store URL (e.g., your-store.myshopify.com)
OAuth Authorization: Temporary authorization codes during the OAuth flow

2.2 Information Automatically Collected

Through Shopify's OAuth process, we receive:

Access Token: The Admin API access token for your store
Shop Information: Basic store metadata provided by Shopify

2.3 API Permissions Requested

Gen Manager requests the following Shopify API scopes:

read_products - Read product information
write_products - Create and update products
read_orders - Read order information

3. How We Use Your Information

We use the collected information to:

Provide Core Functionality: Generate and display your Admin API access token
Authenticate Your Store: Verify your identity through Shopify's OAuth 2.0 protocol
Display API Examples: Show you code examples customized with your store domain and token
Maintain Service: Ensure the app functions correctly and securely

            Important: Gen Manager does NOT use your access token to access your store data. The token is displayed to you for your own use in API development and testing.
        

4. Data Storage and Security

4.1 Storage

Current Development Version: Access tokens are stored temporarily in server memory (Map data structure). This means tokens are lost when the server restarts.

Production Version: For production deployment, we recommend using encrypted database storage with proper security measures.

4.2 Security Measures

HTTPS Encryption: All data transmission uses industry-standard HTTPS/TLS encryption
OAuth 2.0: We use Shopify's secure OAuth 2.0 authentication protocol
No Third-Party Sharing: We never share your tokens with third parties
Limited Access: Only you can see your access token through the dashboard

5. Data Sharing and Disclosure

We do NOT sell, trade, or share your personal information with third parties, except:

With Shopify: As required for OAuth authentication and API functionality
Legal Requirements: If required by law or to protect our rights
With Your Consent: When you explicitly authorize sharing

6. Data Retention

We retain your access token only as long as:

The app is installed on your store
You continue to use Gen Manager
Required by law or legitimate business purposes

When you uninstall Gen Manager, we delete all associated data from our systems.

7. Your Rights and Choices

You have the right to:

Access Your Data: View your stored access token at any time through the dashboard
Delete Your Data: Uninstall the app to remove all stored information
Revoke Access: Uninstall Gen Manager from your Shopify admin panel
Request Information: Contact us to inquire about your data

8. Third-Party Services

Gen Manager integrates with:

Shopify Platform: For authentication and API access (see Shopify Privacy Policy)

We are not responsible for the privacy practices of third-party services.

9. Cookies and Tracking

Gen Manager does not use cookies or tracking technologies. We do not track your browsing behavior or collect analytics data.

10. Children's Privacy

Gen Manager is designed for business and developer use. We do not knowingly collect personal information from individuals under 13 years of age. If you believe we have collected information from a child, please contact us immediately.

11. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in compliance with applicable data protection laws.

12. GDPR Compliance (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

Right to access your personal data
Right to rectification of inaccurate data
Right to erasure ("right to be forgotten")
Right to restrict processing
Right to data portability
Right to object to processing

To exercise these rights, please contact us using the information below.

13. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

Right to know what personal information is collected
Right to delete personal information
Right to opt-out of sale of personal information (we do not sell your data)
Right to non-discrimination for exercising your rights

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

Updating the "Last Updated" date at the top of this policy
Posting the new Privacy Policy on this page
Sending notification through the app (for material changes)

Your continued use of Gen Manager after changes constitute acceptance of the updated policy.

15. Contact Us

Questions About This Privacy Policy?

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: merrick@mainfunc.ai

We will respond to your inquiry within 30 days.

16. Definitions

"Access Token": A secure credential used to authenticate API requests to your Shopify store
"OAuth": An open standard for access delegation, commonly used for secure authorization
"Personal Information": Information that can be used to identify you or your store
"We/Us/Our": Refers to Gen Manager and its developers
"You/Your": Refers to the user or store owner using Gen Manager