Privacy Policy

Last updated: November 2025

Thank you for using WishMate – Wishlist Pro (“the App”).
This Privacy Policy explains how we collect, use, and protect information when merchants install or use the App in connection with their Shopify store.

Information We Collect

When you install WishMate, we automatically gain access to certain types of data from your Shopify store as permitted by Shopify’s API policies.

From Merchants (Store Owners)

• Store name, store address, store URL, store owner name, and contact email

• Shopify store ID and access token (to securely communicate with your store)

• Store preferences and configuration data related to the app

• Subscription and billing information provided by Shopify

From Storefront Visitors (Your Customers)

When a shopper interacts with your store’s wishlist feature:

• Customer ID (if logged in)

• Wishlist product IDs

We do not collect any payment details, passwords, or personal customer data unless explicitly shared through Shopify’s API in accordance with your store permissions.

How We Use This Information

We use the information collected to:

• Provide and maintain the wishlist functionality on your store

• Sync and display wishlists across devices for logged-in customers

• Improve app performance and resolve technical issues

• Send service-related notifications (e.g., app updates or support responses)

• Analyze anonymized usage data to enhance product features

We never sell, rent, or share your data with third parties for advertising or unrelated purposes.

Data Retention

We retain merchant and customer data only as long as necessary to:

• Maintain active app functionality, or

• Comply with Shopify’s data retention and GDPR policies.

When a merchant uninstalls the app, all associated store data (including customer wishlists) is automatically deleted within 30 days.

Data Sharing and Storage

To deliver a secure and reliable experience, WishMate uses trusted third-party infrastructure and tools for data processing and hosting:

• Shopify – for app integration, authentication, and billing

• Railway – our cloud hosting and database provider, where app data is securely stored and processed in accordance with GDPR and industry security standards

• Email – for merchant communication and issue resolution

All service providers are vetted for compliance with modern data protection regulations (GDPR, CCPA, and Shopify App Store terms).

Your Rights

Merchants and customers can:

• Request access to their stored data

• Request correction or deletion of any inaccurate information

• Request data export or portability

To make a request, please contact us at support@starcomtech.in

Security

We implement industry-standard security measures including:

• Encrypted data transmission (HTTPS and TLS)

• Secure credential storage and access control

• Hosting on Railway’s secure cloud infrastructure with restricted access

While we take strong precautions, no online system is 100% secure. By using our app, you acknowledge and accept these inherent risks.

Changes to This Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on this page with a revised date. We recommend reviewing this policy periodically.

Contact Us

If you have questions or concerns about this policy or our data practices, please contact us: 📧 support@starcomtech.in