Privacy Policy

ToroSachi Subscription App

Effective: September 9, 2025 Updated: September 9, 2025

1. Introduction

Welcome to Torosachi Subscription ("we," "us," "our," or the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our subscription management application available through the Shopify App Store and integrated with Shopify stores.

By installing or using the Torosachi Subscription app, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not install or use our App.

2. Information We Collect

2.1 Information Collected from Merchants

When you install and use our App, we collect the following information:

Store Information:

  • Store domain and Shopify store ID
  • Store email address and contact information
  • Store timezone and currency settings
  • Shopify admin API access tokens

Business Data:

  • Product information (names, prices, SKUs, variants)
  • Customer information (names, email addresses, shipping addresses)
  • Order and transaction data
  • Subscription contract details
  • Payment method information (tokenized only - we do not store credit card numbers)
  • Inventory levels and product availability

Usage Data:

  • App feature usage and interaction data
  • Performance metrics and error logs
  • Configuration settings and preferences
  • API request logs

2.2 Information Collected from Customers (End Users)

For customers who interact with subscriptions through your store:

For customers who interact with subscriptions through your store:

Personal Information:

  • Name and email address
  • Billing and shipping addresses
  • Phone number
  • Order history and subscription preferences
  • Customer portal activity (pauses, skips, swaps)

Transaction Data:

  • Subscription plan selections
  • Payment status and history
  • Delivery schedules and modifications

2.3 Automatically Collected Information

Technical Data:

  • IP addresses
  • Browser type and version
  • Device information
  • Access times and dates
  • Referring URLs

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 To Provide Core App Functionality

  • Process and manage subscription contracts
  • Handle recurring billing and payment processing
  • Manage product swaps and inventory updates
  • Provide customer self-service portal functionality
  • Generate subscription analytics and reports

3.2 To Improve Our Services

  • Analyze usage patterns to enhance features
  • Troubleshoot technical issues
  • Develop new features and functionality
  • Optimize app performance

3.3 To Communicate with You

  • Send important app updates and notifications
  • Provide customer support
  • Send billing and subscription-related communications
  • Alert you to security issues or policy changes

3.4 For Business Operations

  • Comply with legal obligations
  • Enforce our Terms of Service
  • Protect against fraudulent or illegal activity
  • Maintain data accuracy and integrity

4. Data Sharing and Disclosure

We share your information only in the following circumstances:

4.1 With Service Providers

We may share data with third-party service providers who assist us in operating our App:

  • Shopify: For core platform integration and checkout processing
  • Impact.com: For affiliate tracking and attribution (when enabled)
  • Cloud hosting providers: For data storage and processing
  • Analytics providers: For app performance monitoring
  • Customer support tools: For providing assistance

4.2 For Legal Requirements

We may disclose information if required to do so by law or in response to:

  • Court orders or legal process
  • Requests from government authorities
  • To protect our rights, privacy, safety, or property
  • To enforce our Terms of Service

4.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.

4.4 With Consent

We may share your information for any other purpose with your explicit consent.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information:

  • Encryption: All data transmissions are encrypted using industry-standard SSL/TLS protocols
  • Access Controls: Strict authentication and authorization mechanisms
  • Regular Security Audits: Periodic reviews of our security practices
  • Secure Infrastructure: Cloud-based hosting with enterprise-grade security
  • Data Minimization: We only collect and retain data necessary for app functionality

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy:

  • Subscription & Store Data: Retained while you're using the service. After store closure or account termination, data is kept for 2 years before deletion or anonymization (unless legally required to retain longer)
  • Transaction/Financial Records: Retained as necessary to comply with accounting and legal obligations (typically several years to satisfy audits and tax laws)
  • Technical Logs: Retained only as long as necessary based on the amount, nature, and sensitivity of the data
  • Inactive Store Data: Deleted 48 hours after app uninstallation
  • Data Deletion Requests: Deletion begins 90 days after request, except when legally required to retain

You may request deletion of your data at any time, subject to legal retention requirements.

7. Your Rights and Choices

7.1 Access and Portability

You have the right to request access to the personal information we hold about you and receive it in a portable format.

7.2 Correction

You can update or correct inaccurate information through the app interface or by contacting us.

7.3 Deletion

You may request deletion of your personal information, subject to certain exceptions required by law or for legitimate business purposes.

7.4 Opt-Out

You can opt-out of:

  • Marketing communications (while retaining transactional emails)
  • Analytics tracking
  • Certain data processing activities

7.5 Data Processing Objection

You have the right to object to certain types of data processing, including processing for direct marketing purposes.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard contractual clauses
  • Adequacy decisions
  • Privacy Shield frameworks (where applicable)

9. Children's Privacy

Our App is not intended for use by anyone under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that we have collected information from a child under 13, we will promptly delete it.

10. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to say no to the sale of personal information
  • Right to equal service and price

We do not sell personal information to third parties.

11. Third-Party Services

Our App integrates with third-party services that have their own privacy policies:

We encourage you to review their privacy policies.

12. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to:

  • Maintain session state
  • Remember user preferences
  • Analyze app usage
  • Improve performance

You can control cookies through your browser settings, though some app features may not function properly without them.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy in the app
  • Updating the "Last Updated" date
  • Sending email notification for material changes

Your continued use of the App after changes constitutes acceptance of the updated Privacy Policy.

14. Contact Information

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Torosachi Subscription
Email: support@torosachi.com
Website: https://www.torosachi.com

Acknowledgment

By installing and using the Torosachi Subscription app, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

Version: 1.0
Document ID: TORO-PP-2025-001