Privacy Policy
Last updated: April 3, 2026
1. Who We Are
Sync360 is operated by Navas Medisafe S.L.U., based in Spain. Contact: hello@sync360.app.
2. What Data We Collect
When you install Sync360, we collect and store:
- Store information: your Shopify shop domain and shop name
- Product data: inventory item IDs, product IDs, and SKUs necessary to perform synchronization
- Sync logs: timestamps, quantity changes, and sync status for audit and debugging purposes
- Channel credentials: OAuth tokens for connected channels (e.g., TikTok Shop), stored encrypted at rest
We do not collect personal information about your customers.
3. How We Use Your Data
We use the data collected solely to:
- Synchronize inventory levels between your connected sales channels in real time
- Detect and resolve inventory conflicts
- Provide sync history and audit logs in your dashboard
- Send alerts when sync failures or oversell risks are detected
4. Data Sharing
We do not sell, rent, or share your data with third parties for marketing purposes. Data is shared only with:
- Supabase: our database provider (data stored in EU region)
- Railway: our hosting provider
- TikTok Shop API: only the inventory updates you authorize
5. Data Retention
Sync logs are retained for 90 days. Upon uninstalling the App, your data is deleted within 30 days.
6. Your Rights (GDPR)
If you are located in the European Economic Area, you have the right to access, correct, or delete your data. To exercise these rights, contact us at hello@sync360.app.
7. Security
We use industry-standard encryption for data in transit (TLS) and at rest. OAuth tokens are stored encrypted. We follow Shopify's security best practices for app development.
8. Cookies
Sync360 does not use tracking cookies. We use only session cookies required for Shopify authentication.
9. Changes to This Policy
We may update this policy periodically. We will notify you of significant changes via email or through the Shopify admin.
10. Contact
For privacy questions: hello@sync360.app