Privacy & Data Protection Policy

Effective date: July 3, 2026 · Last updated: July 3, 2026

What changed in this update: We merged our website policy and our Shopify app policy into one document, so there is now a single privacy policy covering both products. We added coverage for our Shopify app, "Customer Moments," and its handling of Shopify customer data, and we reconciled the list of third-party providers to match the services we actually use today.

1. Who we are

Significant Figures ("Significant Figures," "we," "our," or "us") is a small, two-person studio. We turn data into short, well-made videos. Two products share this policy:

  • The website and video platform at sigfigsstudio.com and app.sigfigsstudio.com, where you can create and manage videos from data you provide.
  • The Shopify app, "Customer Moments," which turns a merchant's own Shopify store data into personalized video previews the merchant can review.

We are the two people who build and run both. You can reach us any time at awilliams@sigfigsstudio.com. This policy explains, in plain language, what we collect, what we do with it, what we will never do with it, how long we keep it, how we protect it, and the rights you have.

2. The short version

  • We collect only what we need to do the job in front of us.
  • Customer data from a Shopify store is used to make review-only video previews for the merchant. Nothing is sent to a customer without the merchant's explicit approval — and during the current private pilot, sending to customers is disabled entirely.
  • We do not sell personal data, we do not use it for advertising or cross-site tracking, and we do not share it with anyone beyond the infrastructure providers that host our service.
  • You can ask us to delete data at any time, and uninstalling the Shopify app triggers deletion automatically.

3. Definitions

  • Merchant. A Shopify store owner who installs Customer Moments.
  • Customer. A shopper whose information lives in a merchant's Shopify store.
  • Protected customer data. Shopify's term for shopper personal information (names, email, order history, and similar) that apps may access only under Shopify's protected customer data requirements. We handle Shopify customer data under that framework.

4. Website & platform: information we collect

When you use the website or video platform directly, we collect:

  • Account information — your email address and name, to create and manage your account.
  • Payment information — handled by our payment processor. We do not store full card details.
  • Content you provide — the data and files you upload to create videos.
  • Usage data — basic information about how you use the platform, to keep it working and improve it.

5. How we use website & platform information

  • To provide and maintain the service.
  • To process payments and manage subscriptions.
  • To send you important service updates.
  • To improve the platform based on how it is used.
  • To answer your questions and support requests.

6. Website & platform: storage, security, and third-party processors

We store your data using standard, reputable infrastructure. Data is encrypted in transit and at rest. We use third-party processors only to run the service. We do not sell your data to them or to anyone else. The processors we use today are:

  • Vercel: hosting and deployment, product/traffic analytics, and Vercel Blob storage for video and image assets.
  • Neon: managed PostgreSQL database, accessed over encrypted connections.
  • Clerk: authentication and user account management.
  • Stripe: payment processing (PCI DSS compliant). We do not store card details.
  • PostHog: product analytics.
  • Cloudflare (R2): content delivery for previously stored video assets, served through signed URLs.

7. Website & platform: your rights and retention

You have the right to access your personal data, correct inaccurate data, delete your account and its associated data, export your data, and opt out of marketing messages. We retain your data for as long as your account is active or as needed to provide the service. You can request deletion at any time by emailing awilliams@sigfigsstudio.com or deleting your account from the dashboard.

8. Shopify app ("Customer Moments"): what we collect from your store

When a merchant installs Customer Moments and grants access, we read a limited set of fields from the Shopify store, under Shopify's protected customer data framework, for one reason: to personalize video previews the merchant reviews. We request read access to products, customers, and orders. From those, the fields we use are:

  • Customer first and last name.
  • Customer email and marketing-consent status.
  • Customer creation date.
  • Order history — order dates, order counts, and order line items.
  • Product references — product names, handles, images, variants, and collections.
  • Store profile — store name, domain, and brand/product imagery.
  • Audit records for sync, render, and send-approval activity.

What we do not collect. We do not collect customer phone numbers or postal/shipping addresses for building previews. We request only the fields needed to create and review a personalized preview.

9. Shopify app: what we do — and do not do — with store data

What we do. We use the fields above to generate personalized "Customer Moment" video previews (for example, an anniversary or welcome moment). These previews exist so the merchant can review them. They are review-only.

Nothing sends without merchant approval. No customer receives anything unless the merchant explicitly approves it. In the current private pilot, customer sending is disabled entirely — previews can be created and reviewed, but the app cannot send messages to customers, and no live Shopify billing charges are created.

What we do not do.

  • We do not sell personal data.
  • We do not use store or customer data for advertising or cross-site tracking.
  • We do not share it with third parties other than the infrastructure providers that host and run the app (see Section 11).

Data minimization in our dashboards and analytics. Customer personal information never appears in our internal analytics or in the app's aggregate dashboard views. Those surfaces are built to be aggregate-only: our system actively screens these payloads for personal-information fields (names, email, consent, addresses, phone, order line items, and raw store records) and blocks them from analytics and dashboard aggregates. Where the app needs to show a merchant real customer names for review, that appears only inside the merchant's own signed, in-Admin review screen — never in analytics or shared dashboards.

10. Shopify app: retention and deletion

We keep a store's customer data only while the app is installed and needed to provide previews. Deletion happens in three ways:

  1. Uninstall. When a merchant uninstalls the app, we stop future syncs, the access token is revoked, and we delete the synced Customer Moments data and redact Shopify-derived render and delivery records for that store.
  2. Shopify data-deletion requests (GDPR). We implement Shopify's mandatory privacy webhooks — customers/redact, shop/redact, and customers/data_request. When Shopify sends one of these, we run the same deletion: synced datasets are deleted and Shopify-derived render/delivery records are redacted, and the store is marked as having its protected customer data redacted.
  3. On request. A merchant can request deletion at any time — from the app's "Privacy and data" screen (a "Delete synced data" control shown inside a signed Shopify Admin session) or by emailing awilliams@sigfigsstudio.com.

After deletion, sync and send actions stay paused until the app is reconnected.

11. Shopify app: security and infrastructure

  • In transit: all data moves over encrypted connections (TLS/HTTPS).
  • At rest: stored data is encrypted at rest by our infrastructure providers. The app runs on Vercel hosting, with a managed Neon PostgreSQL database and Vercel Blob for stored video and image assets. Provider backups are encrypted.
  • Webhook integrity: every incoming Shopify webhook must pass raw-body HMAC signature verification before it can change any store, customer, order, or deletion state. Invalid webhooks are rejected.
  • Access control: access to production systems is limited to the two named operators of Significant Figures (Ezra Ferraz and Aaron Williams), protected by two-factor authentication, with access logging.

No infrastructure is perfectly secure, but we hold customer data to the minimum-necessary standard and design the app so personal data cannot leak into analytics, dashboards, or automatic customer sends.

12. Your rights under GDPR, CCPA, and similar laws

Depending on where you live, you (or, for shopper data, the merchant on the shopper's behalf) may have rights to access, correct, delete, or export personal data, and to object to or restrict certain processing.

  • Shoppers: please contact the merchant whose store you shopped with — they control that store's data. The merchant can also relay a request to us.
  • Merchants and any individual: email awilliams@sigfigsstudio.com and we will respond. Shopify's protected-data deletion webhooks also route shopper deletion requests to us automatically.

We do not sell personal data, so there is no "sale" to opt out of.

13. Reporting security issues

If you believe you have found a security or privacy issue affecting the platform or the Customer Moments app, please tell us right away at awilliams@sigfigsstudio.com. We take reports seriously, investigate promptly, and will keep you informed. If an incident affects your data, we notify affected merchants and, where required, Shopify and the relevant authorities.

14. Changes to this policy

We may update this policy from time to time. When we do, we will post the updated version and change the "Last updated" date at the top. Material changes affecting how we handle Shopify customer data will be reflected here and in the app.

15. Contact

Significant Figures. For privacy-related questions or requests, contact us at: awilliams@sigfigsstudio.com