Data Collection and Usage

AccessiRank does not collect, process or store any personal or sensitive customer data. The only data stored consists of public store customization settings, such as widget position, color theme and enabled accessibility features. These settings are saved securely using a SQLite database via Prisma ORM and are linked to each unique Shopify store installation.

All communication between the app and Shopify stores is encrypted via HTTPS and accessed only through secure API endpoints to ensure full data integrity and security.

No Protected Customer Data

AccessiRank qualifies as Level 0 under Shopify's Protected Customer Data classification. We do not collect or store names, emails, phone numbers, addresses or any other personal identifiers. The app is designed solely to support frontend accessibility features without accessing or handling customer data.

Compliance Webhooks

AccessiRank is fully configured to receive and process Shopify's mandatory compliance webhooks:

• customers/data_request
• customers/redact
• shop/redact

These endpoints ensure that any requests for access or deletion of store-related data are handled automatically and in accordance with legal and platform requirements.

Data Security

We follow industry-standard best practices to ensure all stored settings are secure, encrypted and accessible only by the merchant who owns the Shopify store. No data is shared with third parties under any circumstances.

GDPR and Other Privacy Regulations

Even though AccessiRank does not collect personal data, we maintain full compliance with privacy laws including:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA/CPRA)
• Other applicable privacy frameworks

Merchants can be confident that no personal data is ever stored or transmitted via AccessiRank.