EditEngine Logo
EditEngine

Privacy Policy

Last updated: May 1, 2026

This policy explains what data EditEngine collects when you install it on a Shopify store, what we do with it, and what your rights are. EditEngine is operated by Profitonium Apps ("we", "us"), based in Pune, India.

Plain-English summary. We read your product and variant data so we can edit it for you. We don't sell that data to anyone. We store it only as long as needed to run the app and let you undo edits. You can delete your data at any time by uninstalling the app.

1. Who this policy applies to

This policy covers:

  • Merchants who install EditEngine on their Shopify store.
  • Customers of those stores, whose data may pass through Shopify and reach EditEngine indirectly via product, variant, or order objects.

It does not cover the Profitonium Apps website or other Profitonium products. Those have their own policies.

2. What data we collect

From merchants (you)

When you install EditEngine, we receive from Shopify:

  • Store identification: shop domain (e.g. your-store.myshopify.com), shop ID, plan, country, primary locale.
  • Authentication tokens issued by Shopify to let EditEngine make API calls on your behalf.
  • Contact email associated with your Shopify account, used for support and important product notices.

When you contact support, we also receive whatever information you choose to send us (typically: a description of your issue, screenshots, your store URL).

From your Shopify store

To do its job, EditEngine reads and writes the following Shopify resources:

  • Products: title, handle, description, vendor, type, tags, status, SEO metadata, theme template, options.
  • Variants: price, compare-at price, SKU, barcode, cost, weight, inventory policy, tax settings, country of origin, HS codes.
  • Collections, to let you filter products by collection.
  • Metafields, when you opt to edit or delete metafields.
  • Inventory items and locations, when editing inventory-related fields.
  • Files and images, only when you opt to bulk-edit images (read-only metadata).

We request only the Shopify access scopes the app actually needs. The full list is shown by Shopify on the install screen before you accept.

What we don't collect

  • We do not read or store customer personal data (names, addresses, payment info).
  • We do not read order details beyond what's needed for product-side filters.
  • We do not track customer browsing behavior on your storefront.
  • We do not use third-party advertising or marketing trackers inside the embedded app.

3. How we use the data

We use the data to:

  1. Execute bulk edits you've configured and previewed.
  2. Show the Edit Preview by reading current values and computing the proposed new values.
  3. Support undo and revert by storing a copy of the previous values for each edited field.
  4. Operate the app: authentication, scheduled jobs, queued runs, error reporting.
  5. Provide customer support when you contact us.
  6. Comply with legal obligations (tax invoices, audit logs).

We do not use your data to train AI models, build aggregate datasets, or sell to third parties.

4. Where data is stored

EditEngine runs on infrastructure provided by:

  • Google Cloud Platform for application servers, queued bulk-edit execution, and file exports (Google Cloud Storage).
  • MongoDB Atlas as our primary database for store configuration, edit history, and undo snapshots.

Data is processed in regions we select for performance and reliability. Both providers are GDPR- and SOC 2-compliant and act as our data sub-processors.

5. How long we keep data

DataRetention
Edit history and undo snapshots90 days from the run, then deleted
Authentication tokensUntil you uninstall the app
Store configurationUntil you uninstall the app
Support email correspondence2 years for warranty and dispute purposes
Anonymized usage metricsIndefinitely (no personal data)

When you uninstall EditEngine, Shopify revokes our access and we delete merchant-identifying data within 30 days, except where retention is required for legal or tax reasons.

6. Data sharing

We share data only with:

  • Shopify, by definition, since EditEngine runs as a Shopify app.
  • Sub-processors listed in §4 (Google Cloud, MongoDB Atlas).
  • Legal authorities if compelled by valid legal process.

We do not sell, rent, or trade merchant or customer data.

7. Your rights

Depending on your jurisdiction (GDPR, CCPA, India DPDP Act), you have the right to:

  • Access the data we hold about you.
  • Correct inaccurate data.
  • Delete your data. Uninstalling the app triggers this; see §5.
  • Export your data in a portable format.
  • Object to specific processing.
  • Withdraw consent where processing is consent-based.

Email hello@profitoniumapps.com to exercise any of these. We respond within 30 days.

8. Shopify's mandatory webhooks

Per Shopify's app requirements, EditEngine implements three GDPR webhooks:

  • customers/data_request: on receipt, we confirm we hold no customer personal data, since EditEngine does not read customer information.
  • customers/redact: same response as above.
  • shop/redact: within 30 days of uninstall, all merchant-identifying data tied to that shop is deleted.

9. Security

  • All data in transit is encrypted with TLS 1.2+.
  • Data at rest is encrypted by our cloud providers (AES-256).
  • Access to production systems is limited to authorized engineers and protected by strong authentication.
  • We do not store payment information. Shopify handles billing for our app.

If you discover a security vulnerability, please email hello@profitoniumapps.com with the subject line "Security". We acknowledge reports within two working days.

10. Cookies and tracking

The marketing site you're reading does not use third-party advertising cookies. The embedded app inside Shopify uses only the session cookies necessary for authentication.

11. Children's privacy

EditEngine is a B2B tool sold to Shopify merchants. It is not directed at children under 16, and we do not knowingly collect data from them.

12. Changes to this policy

We update this policy when our data practices change. The "Last updated" date at the top reflects the most recent change. Material changes are announced via email to active merchants at least 14 days before they take effect.

13. Contact

Questions, requests, or complaints:

Profitonium Apps hello@profitoniumapps.com SR.N 6/3/2/2 Urban Forest, Opp Masulkar Farm BL 201 Kiwale Haveli, Pune, Maharashtra, 412101, India

If you're not satisfied with our response, you may contact your local data protection authority.