Privacy Policy
Gang Sheet Builder & More · Effective 2026-06-18
This Privacy Policy explains how the Gang Sheet Builder & More Shopify app (the “App”, operated by Custom DTF, “we”, “us”) collects, uses, stores, and protects information when a merchant installs the App on their Shopify store and when that store’s customers use the gang-sheet building, transfer-by-size, and image-upload tools the App provides.
1. Information we collect
From the merchant’s store, via the Shopify API and the permissions you grant on install:
- Store identity: the
.myshopify.comdomain and the OAuth access token used to call Shopify on your behalf. - Product, order, customer, draft-order, and publication data needed to create gang-sheet products, price line items, render artwork, and fulfil orders.
- App configuration you set (pricing, printer width, margins, image library, cross-sell products, builder customization).
From the store’s customers, when they use the storefront widgets:
- Images they upload or generate to build a gang sheet, plus the layout (positions, sizes, quantities) of those images.
- An opaque Shopify customer identifier (when the customer is logged in) so previously purchased designs can be reordered. We do not collect customer names, emails, addresses, or payment details through the widget — that information stays inside Shopify’s checkout.
If you contact us through the in-app contact form, we receive the name, email, and message you submit so we can reply.
We do not collect or store payment card numbers. All payments are processed by Shopify’s checkout, which is outside the App’s scope.
2. How we use information
- To provide the App’s core functions: building, pricing, rendering, and fulfilling gang-sheet orders.
- To store and re-render artwork so customers can view, re-edit, download, and reorder their designs.
- To operate, secure, debug, and improve the App.
- To respond to support requests.
We do not sell personal information, and we do not use customer images for any purpose other than fulfilling that store’s orders.
3. Where data is stored and who processes it
We use the following sub-processors strictly to run the App:
- Railway — application hosting and the PostgreSQL database that holds app configuration and order/render metadata.
- Cloudflare R2 — object storage for uploaded images and rendered gang-sheet files.
- Shopify — the platform the App runs on and the source/destination of store data.
- Resend — delivery of contact-form emails (only when you use the contact form).
- removal.ai — optional background-removal processing, used only when a customer explicitly removes an image background.
Data may be processed in the United States and other countries where these providers operate.
4. Data retention
- Rendered gang-sheet output files are automatically deleted from storage approximately 15 days after creation to reclaim space; the original source images and the saved layout are retained so any later access re-renders on demand.
- App configuration and order/render metadata are retained for as long as the App is installed.
- When a store uninstalls the App, its data is purged following Shopify’s shop-redaction request (typically about 48 hours after uninstall) — see Section 5.
5. Your data-protection rights (GDPR/CCPA)
The App honours Shopify’s mandatory privacy webhooks:
- Customer data request — we log and fulfil requests for a copy of the data we hold about a customer.
- Customer redaction — we delete that customer’s uploaded image library and un-link their identifier from our records.
- Shop redaction — we delete all of a store’s data after it uninstalls the App.
Merchants and customers may also email us to access, correct, or delete personal information. Depending on your jurisdiction you may have additional rights (access, portability, erasure, objection); contact us to exercise them.
6. Security
Data is transmitted over HTTPS/TLS. Access tokens and API credentials are stored server-side and never exposed to the storefront. Access to production data is limited to operating the App.
7. Children’s privacy
The App is a business tool for merchants and is not directed to children under 13.
8. Changes to this policy
We may update this policy as the App evolves. Material changes will be reflected here with a new effective date.
9. Contact
Questions or requests about this policy or your data: support@customdtf.com — Custom DTF, 11725 Cloverland Ct Suite A, Baton Rouge, Louisiana 70817, United States.