Privacy Policy

Last updated: January 1, 2025

1. Introduction

Cabinéo ("we", "our", or "us") operates the Cabinéo virtual try-on application for Shopify merchants. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

2. Information We Collect

2.1 Information from Merchants

When you install our Shopify app, we collect:

  • Shop name and domain
  • Contact email address
  • Product information (images and metadata)
  • Shopify access tokens (encrypted)
  • Billing information (processed by Shopify)

2.2 Information from Store Visitors

When customers use the virtual try-on feature, we process:

  • Uploaded photos (temporarily, for try-on generation only)
  • Product selections
  • Usage statistics (anonymized)

Important: Customer photos are processed in real-time and are not stored permanently. They are deleted immediately after the try-on image is generated.

3. How We Use Your Information

We use the collected information to:

  • Provide and maintain the virtual try-on service
  • Process subscription billing through Shopify
  • Send transactional emails (welcome, quota alerts, support)
  • Improve our service and fix bugs
  • Comply with legal obligations

We do not:

  • Sell your personal data to third parties
  • Use customer photos for AI training
  • Share data with advertisers
  • Create marketing profiles from customer data

4. Third-Party Services

We use carefully selected third-party service providers to operate our service:

  • E-commerce platform: For hosting, authentication, and billing
  • AI processing: For generating virtual try-on images
  • Cloud infrastructure: For secure database and application hosting
  • Email delivery: For sending transactional notifications

All our service providers are bound by data processing agreements and comply with applicable privacy regulations.

5. Data Retention

  • Merchant data: Retained while your subscription is active, deleted within 30 days of uninstallation
  • Customer photos: Deleted immediately after try-on generation (not stored)
  • Generated try-on images: Cached for up to 24 hours, then deleted
  • Usage logs: Anonymized and retained for up to 12 months for analytics

6. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS 1.3)
  • Encryption at rest for sensitive data
  • HMAC signature verification for all API requests
  • Regular security audits
  • Access controls and authentication

7. Your Rights (GDPR/CCPA)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Portability: Receive your data in a portable format
  • Object: Object to certain processing activities
  • Restrict: Limit how we use your data

To exercise these rights, contact us at privacy@cabineo.shop

8. Cookies and Tracking

Our app uses only essential cookies required for authentication and session management. We do not use tracking cookies, analytics cookies, or advertising cookies.

9. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us.

10. International Data Transfers

Your data may be processed in the European Union and the United States. We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where required.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through a notice in the app.

12. Contact Us

If you have questions about this Privacy Policy, contact us at: