Last updated: 17 June 2026 This Privacy Policy explains how Restora (“Restora”, “we”, “us”, or “our”), operated by FiftyPoint6 Ltd, collects, uses, shares, and protects personal information when a merchant installs and uses the Restora app for Shopify. Restora creates point-in-time backups of a Shopify store’s data and lets the merchant browse, compare, and selectively restore that data. For most personal information of a store’s shoppers (“buyers”), the merchant is the data controller and Restora acts as a data processor / service provider that processes that data only to provide the backup and restore service. For information we collect about the merchant directly, we act as a controller. Do Not Sell or Share My Personal Information Information collected through Shopify’s APIs With the merchant’s authorization, and using the access scopes the merchant grants, we access and store backups of store data, which may include: Store content: products, collections, themes, pages, blog posts, files, metafields, metaobjects, navigation menus, URL redirects, locations, inventory levels, shipping zones, and shop policies. Customer personal information (Shopify Protected Customer Data): customer names, email addresses, phone numbers, addresses, tags, notes, and marketing/consent state. Order information used for read-only backup and comparison: order contact details, shipping and billing addresses, and line items. Orders are backed up for reference only and are not restored through the app. Information collected directly from the merchant Account and store identifiers such as the store domain, plan, timezone, and store contact details made available during install. Support communications you send to us (for example, the contents of emails to our support address). A Shopify access token, which is encrypted and stored so the app can call Shopify on your behalf to run backups and restores. Information collected from buyers We do not market to, set advertising cookies on, or independently collect data directly from a store’s buyers. Buyer personal information reaches Restora only as part of the merchant’s store data described above, and only to provide the backup and restore service to the merchant. Information collected automatically Operational and diagnostic logs, backup run history, and error reports generated when you use the app. We aim to keep raw personal information and secrets out of logs and error telemetry. We use the information we collect to: Provide the core service: create, store, index, compare, and restore backups of your store data. Authenticate the app to Shopify and operate scheduled and manual backup jobs. Maintain, secure, debug, and improve the service. Provide customer support and respond to your requests. Comply with legal obligations and Shopify’s requirements, including mandatory data-request and deletion (redaction) webhooks. We do not use store data, customer data, or order data for advertising, and we do not sell it. See Do Not Sell or Share My Personal Information. Where the GDPR or UK GDPR applies, we rely on the following legal bases: Contract — to provide the service the merchant has signed up for. Legitimate interests — to secure, maintain, and improve the service, where not overridden by your rights. Legal obligation — to comply with applicable laws and Shopify’s data-protection requirements. When we process buyer personal information on a merchant’s behalf, we do so as a processor under the merchant’s instructions and our data processing terms. We do not sell personal information. We share it only with the service providers (subprocessors) that help us run the service, each under contractual confidentiality and data-protection obligations: Shopify — the platform we integrate with and the source of store data. Amazon Web Services (Amazon S3) — encrypted object storage for backup snapshots and assets. MongoDB Atlas — the application database for shop records, encrypted tokens, and backup indexes. [Redis hosting provider] — managed queue/cache for background jobs. [Application hosting provider] — hosts the application servers and workers. Sentry — error monitoring (scrubbed of personal information and secrets). We may also disclose information where required by law, to protect our rights and the security of the service, or in connection with a merger, acquisition, or sale of assets (with continued protection of your data). A current subprocessor list is available on request at privacy@getrestora.app. We and our subprocessors may store and process information in the United States and other countries. Where personal information is transferred out of the EEA, UK, or Switzerland, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses (and the UK Addendum) to protect it. Backups are kept on a rolling 30-day window by default. A daily cleanup process deletes expired backups, their stored snapshots and assets, and related records. Customer deletion (GDPR customers/redact): when Shopify or a merchant requests deletion of a specific customer, we remove that customer’s records and scrub their personal information from related order backups and archives. Store deletion (GDPR shop/redact) and uninstall: when the app is uninstalled or a shop deletion is requested, we purge all backup data, stored objects, queue state, sessions, and shop records for that store. We may retain limited records for as long as needed to meet legal, tax, accounting, or security obligations. Encryption in transit (TLS/HTTPS) for all connections. Encryption at rest for object storage and the application database. Application-level encryption (AES-256-GCM) of Shopify access tokens before storage. Least-privilege access controls, multi-factor authentication on administrative accounts, and segregation of each store’s data. Logging, monitoring, and a documented data loss prevention strategy and security incident response policy. No method of transmission or storage is completely secure, but we work to protect your information and to respond promptly to any incident. Depending on where you live, you may have rights to access, correct, delete, or obtain a copy of your personal information, to object to or restrict certain processing, and to withdraw consent. Under US state laws such as the California Consumer Privacy Act (as amended by the CPRA), you may have the right to know, delete, correct, opt out of sale/sharing, and limit the use of sensitive personal information, and not to be discriminated against for exercising these rights. Because we typically process buyer personal information on behalf of a merchant, we will direct buyer requests to the relevant merchant (the controller) and assist them as their processor. Merchants and other individuals can exercise rights by contacting us using the details below. We may need to verify your identity before acting on a request. We do not sell your personal information, and we do not share it for cross-context behavioral (targeted) advertising. We only use personal information to provide the backup and restore service, as described in this policy. If you would still like to formally submit a “Do Not Sell or Share My Personal Information” request, you can do so below or by emailing privacy@getrestora.app. Submit Do Not Sell or Share request The service is intended for use by merchants and is not directed to children. We do not knowingly collect personal information directly from children. Any buyer personal information we process is provided by, and handled on behalf of, the merchant. We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify merchants. Your continued use of the service after an update means you accept the revised policy. If you have questions about this policy or wish to exercise your privacy rights, contact us at: Email: privacy@getrestora.app Company: FiftyPoint6 Ltd Postal address: 84 Eccleston Square, London, SW1V 1PX, United Kingdom If you are in the EEA or UK and believe we have not addressed your concern, you may lodge a complaint with your local data protection authority.