Privacy Policy
Moonsalt builds AI apps for Shopify merchants. This policy explains what we collect, why, how long we keep it, and the choices you and your customers have — with special attention to the photos used for virtual try-on.
1. Overview
This Privacy Policy describes how Moonsalt ("Moonsalt", "we", "us") handles information when a merchant installs one of our apps and when that merchant's customers use features we power — in particular the Bulky Bulk AI Image Editor, which generates and edits product imagery in bulk (plus video and an optional virtual try-on) for Shopify stores.
2. Who this covers
There are two groups of people whose data may flow through our apps:
- Merchants — Shopify store owners and staff who install and use our apps in the Shopify admin.
- End customers — shoppers on a merchant's storefront who use the virtual try-on widget. We process their data on behalf of the merchant.
3. Information we collect
From merchants
- Your Shopify store name/domain and the session/authentication tokens Shopify issues to the app.
- Product information we read or write to deliver the service (the app requests the write_products scope so it can add generated images and videos to your products).
- Plan, billing status, credit usage and app settings.
- Support correspondence you send us.
From end customers (via the merchant's store)
- Photos uploaded for virtual try-on. A shopper voluntarily uploads an image to preview a product on themselves.
- The generated try-on image produced from that photo.
- Session and basic technical data needed to process and return the result.
Automatically
- Standard log data (IP address, browser/device type, pages visited) and product-analytics events used to operate and improve the app.
4. How we use information
- To provide and maintain the core features: bulk AI photos, product video, and virtual try-on.
- To add generated media to your products when you choose to.
- To meter credits, handle billing, and detect or prevent fraud and abuse.
- To provide support and to operate, secure and improve the apps.
- To comply with legal obligations and send important service updates.
We do not sell personal information, and we do not use customer photos to train AI models.
5. AI processing & providers
Generating a try-on or product image requires sending the relevant image to an AI model. In practice:
- The image is uploaded to our object storage (Cloudflare R2) so it can be referenced by a secure URL.
- That URL is passed to an AI provider — primarily Google (Gemini / Veo), and in some configurations an image-to-image try-on model — which returns the generated result.
- The generated output is stored and returned to the storefront or the admin.
We rely on these providers' commitments not to use submitted content to train their models. We send only what is needed to perform the generation you requested.
6. Storage, hosting & retention
- Uploaded photos and generated outputs are stored in Cloudflare R2; media URLs are served from a CDN host.
- Application data is stored in a PostgreSQL database; the app runs on managed hosting (Railway).
- We retain data only for as long as needed to provide the service and meet legal obligations. When you uninstall the app, we delete or anonymise your data within 30 days, except where we are required to retain it for legal or compliance purposes (and subject to the Shopify redaction process below).
- You or your customers can also request earlier deletion — see "Your rights".
7. Sub-processors
We use a small set of trusted providers to run the service:
- Shopify — app platform, authentication, billing and store data.
- Google (Gemini / Veo) — AI image and video generation.
- Cloudflare R2 — storage and CDN delivery of images and video.
- Railway — application hosting and database.
- Resend — transactional email (e.g. install notifications).
- PostHog — privacy-conscious product analytics.
An image-to-image try-on provider may also be used depending on configuration. We'll update this list as our providers change.
8. Sharing & disclosure
We do not sell, rent or trade personal information. We share data only:
- with the sub-processors above, to run the service;
- when required by law or in response to valid requests by public authorities;
- in connection with a merger, acquisition or sale of assets (your information may be transferred);
- with your explicit consent.
9. Your rights & choices
Depending on where you live, you may have the right to:
- Access the personal information we hold about you;
- Correct inaccurate or incomplete information;
- Delete your personal information;
- Object to or restrict certain processing;
- Data portability — receive a copy in a machine-readable format;
- Withdraw consent where processing is based on consent.
For end-customer data, the merchant is the controller — requests are typically made to the merchant, who can ask us to action them. To exercise a right or ask a question, email aatmikpanse001@gmail.com.
10. GDPR (EEA & UK)
If you are in the European Economic Area or the UK, we process personal data under the following legal bases:
- Performance of a contract — to provide the app and its features.
- Legitimate interests — to operate, secure and improve our services and prevent fraud.
- Legal obligation — where the law requires it.
- Consent — where you have given it (you can withdraw at any time).
You also have the right to lodge a complaint with your local data protection authority.
11. California privacy (CCPA)
If you are a California resident, you have the right to:
- know what personal information is collected and how it is used;
- know whether personal information is sold or disclosed (we do not sell it);
- opt out of the sale of personal information (not applicable — we don't sell it);
- request deletion of your personal information;
- not be discriminated against for exercising these rights.
12. Shopify data & compliance webhooks
As a Shopify app, our app implements Shopify's mandatory compliance webhooks and acts on them:
- customers/data_request — we provide the customer data we hold when a merchant relays a request.
- customers/redact — we delete the relevant customer's data.
- shop/redact — we delete a shop's data after the app is uninstalled.
This app is built on the Shopify platform and follows Shopify's data-protection standards. For how Shopify itself handles data, see Shopify's Privacy Policy.
13. Cookies & tracking
We use a minimal set of cookies/local storage needed to run the embedded admin app, and privacy-conscious analytics (PostHog) to understand feature usage and improve the product. You can set your browser to refuse cookies or alert you when one is sent; if you decline, some features may not work.
14. Third-party links
Our app and website may link to third-party sites or services we don't operate. We have no control over, and aren't responsible for, their content or privacy practices — please review their policies.
15. Security
We use industry-standard measures to protect data and respond quickly to any incident, including:
- encryption of data in transit using SSL/TLS;
- scoped access tokens and access controls;
- regular security assessments and updates;
- staff training on data-protection practices.
No method of transmission or storage is 100% secure, but we work hard to protect your information.
16. International transfers
Our providers may process data in countries other than yours. Where required, we rely on appropriate safeguards for those transfers.
17. Children’s privacy
Our apps are built for merchants and are not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.
18. Changes to this policy
We may update this policy as the product evolves. We'll revise the "Last updated" date above and, for material changes, take reasonable steps to let merchants know.
19. Contact
Questions about this policy or your data? Reach us at:
- Email: aatmikpanse001@gmail.com