Flow Size Chart & Recommender – Privacy Policy

Effective date: 24 February 2026

This Privacy Policy explains how Flow Size Chart & Recommender ("App", "we", "us", or "our") collects, uses, and shares information when:

• You install or use the App in your Shopify store ("Merchant"), and
• Shoppers interact with our size chart and recommendation widgets on that store ("Shoppers").

By installing or using the App, you agree to the practices described in this policy.

1. Who we are

Flow Size Chart & Recommender is a third‑party app for Shopify merchants that provides size charts and size recommendations based on shopper‑provided information and the merchant’s product data.

If you have any questions about this policy, you can contact us at:

• Email: info@houseofveins.com

2. Information we collect

2.1 From Merchants (store owners)

When you install the App, we receive and/or store information from Shopify via their APIs, including:

• Store identifier and domains (for example, store.myshopify.com)
• Store name and contact details (such as admin email)
• App configuration data you set in our admin UI (e.g., size charts, style settings, category mappings)
• Product and collection information that you choose to connect to size charts (IDs, titles, handles, basic metadata)
• App usage information (e.g., which charts are created or edited, last access time, basic logs and errors)

If our app uses Shopify Billing, we may also process:

• Billing‑related information (plans, charges, status) via the Shopify Billing API
• We do not receive or store full payment card numbers; payments are processed by Shopify or its payment providers.

2.2 From Shoppers (end customers)

When a Shopper uses a size chart or recommendation widget on a merchant’s store, we may collect information such as:

• Inputs the shopper provides, such as height, weight, gender, age (optional), and optional direct body measurements (for example, chest, waist, hips, inseam, thigh)
• The product / variant and size chart used
• The size recommendation we generate
• Basic technical data sent by the browser, such as IP address and approximate location (inferred from IP), browser and device information, referrer URL, timestamps, and cookies or similar identifiers used for session management and analytics

We collect this data on behalf of the Merchant to provide the recommendation service and analytics. We do not use shopper data to contact shoppers directly for marketing.

2.3 Automatically collected data

For both merchants and shoppers, our infrastructure and analytics tools may automatically collect:

• Server logs (requests, response codes, performance metrics)
• Error and debug information
• Aggregated usage statistics (for example, number of recommendations, size distribution)

3. How we use the information

We use the information described above for the following purposes:

1. Provide and operate the App
   • Generate size recommendations and display size charts
   • Store and manage your size charts and configurations
   • Integrate with Shopify Admin and the storefront
2. Improve and monitor performance
   • Diagnose and fix technical issues
   • Monitor uptime and performance
   • Analyze aggregate usage to improve accuracy and user experience
3. Support and communication with Merchants
   • Respond to support requests
   • Send important service‑related notices (for example, changes, incidents, billing updates)
4. Analytics and reporting to Merchants
   • Provide merchants with anonymized or aggregated insights (for example, how often a size is recommended)
   • Help merchants understand how shoppers use the size helper

We do not sell personal data or use shopper data for unrelated advertising.

4. How we share information

We may share information in the following ways:

1. With Shopify
   • We use Shopify APIs to read and write data in your store as necessary for the App to function.
   • Your use of Shopify is also governed by Shopify’s own privacy and terms.
2. With service providers (data processors)

   We use third‑party providers to run the App, for example:

   • Cloud hosting and infrastructure (for example, app hosting, databases, caching)
   • Logging, monitoring, and error tracking
   • Email and support tools

   These providers only access data as needed to perform services for us and are bound by confidentiality and data protection obligations.

3. For legal and safety reasons
   • To comply with applicable law, regulation, or legal process
   • To respond to lawful requests by public authorities
   • To protect our rights, security, or property, or that of our users, merchants, or others
4. Business transfers

   If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction, subject to this policy.

We do not share customer data with third parties for independent marketing purposes.

5. Data retention

• For merchants, we retain app data (store records, charts, configuration, usage logs) for as long as the App is installed and for a reasonable period after uninstall (for backup, audit, and legal purposes), unless you request earlier deletion where legally permitted.
• For shoppers, we retain measurement and recommendation data for as long as needed to support the merchant’s use of the App and provide aggregated analytics, then either delete or anonymize it.

You may request deletion of merchant data by contacting us (subject to any legal obligations to retain certain records).

6. International transfers

Our servers and service providers may be located in different countries. By using the App, you consent to the transfer and processing of your information outside of your country, including to jurisdictions that may have different data protection laws than your own. We take steps to ensure that such transfers comply with applicable laws and that your data remains protected.

7. Security

We use reasonable technical and organizational measures to protect personal data, including:

• HTTPS/TLS encryption in transit
• Access controls and authentication on our systems
• Regular updates and monitoring of our infrastructure

However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. Your rights

Depending on your location and applicable law (for example, GDPR in the EU/EEA, UK GDPR, CCPA/CPRA in California), you may have some or all of the following rights regarding your personal data:

• Access: request a copy of the data we hold about you
• Rectification: ask us to correct inaccurate or incomplete data
• Deletion: ask us to delete your data in certain circumstances
• Restriction: ask us to limit processing of your data in certain cases
• Portability: request a copy of your data in a structured, commonly used format
• Objection: object to certain forms of processing (for example, profiling)
• Withdraw consent: where processing is based on consent

For shoppers, most personal data we process is on behalf of the Merchant. In that case, we may redirect your request to the relevant Merchant, who is the primary controller of your data in their store.

To exercise your rights, contact us at info@houseofveins.com. We may need to verify your identity and may be unable to fully comply if we are legally required to keep certain data.

9. Children’s privacy

The App is intended for use by merchants and adult shoppers. We do not knowingly collect personal data from children under 13 (or other age as defined by local law). If you believe we have collected such data, please contact us and we will delete it.

10. Cookies and similar technologies

Our App and hosting providers may use cookies or similar technologies to:

• Maintain session state and security
• Measure usage and performance
• Improve the App’s functionality

You can control cookies through your browser settings. Disabling cookies may affect some features of the App.

11. Resources & support

To help merchants self‑serve and understand how the App works, we provide:

• Support email: info@houseofveins.com

We recommend including these links, and any updated docs, in your Shopify app listing under Resources.

12. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the "Effective date" at the top, and, where appropriate, notify merchants via the App UI or email.

Your continued use of the App after any changes means you accept the updated policy.

13. Contact

If you have any questions, concerns, or requests about this Privacy Policy or our data practices, you can contact us at:

Email: info@houseofveins.com