Page Forge — Privacy Policy

Last updated: 2026-06-28

Page Forge ("the App", "we", "us") is a Shopify app that generates programmatic

landing pages grounded in a merchant's own product catalog. This policy explains

what data the App accesses, how it is used, how long it is kept, and your rights.

1. Who we are

Page Forge is operated by the developer of record listed on the Shopify App Store

listing. Contact: support@pageforge.syncerp.work.

2. Protected Customer Data level

Page Forge is Protected Customer Data (PCD) Level 0. It does not request,

read, store, or process orders, customers, checkouts, or any personally

identifiable customer information. It is structurally unable to — it does not hold

the read_orders, read_customers, or related scopes.

3. What we access (and why)

The App requests the following Shopify Admin API access scopes, and nothing more:

| Scope | Why |

|---|---|

| read_products | Read your product titles, types, vendors, tags and prices to build the variable matrix that grounds every generated page. |

| read_content / write_content | Read existing store content and write the landing pages you approve. |

| write_online_store_pages | Create the generated landing pages and their internal links on your storefront. |

| read_publications | Determine whether a page is published so only live pages are treated as published. |

4. What we store

On our servers we store only:

Your shop domain and basic install metadata (install date, plan, billing status).
An encrypted (AES-256-GCM) Shopify offline access token.
Catalog-derived metadata: the variable matrix (product types/vendors/tags/price

tiers), generated page specs, the member product IDs that ground each page,

uniqueness verdicts, internal-link audits, and generated page bodies (HTML).

Token-usage counts for AI generation (numbers only — never prompt or response

text).

A webhook idempotency log (shop domain + Shopify webhook IDs).

We do not store product data beyond what is needed to build and audit your

pages, and we never store customer or order data.

5. AI generation and sub-processors

On the Pro plan, page copy is written by a large language model.

Anthropic (model provider) processes the prompt, which contains only your

catalog text (page title, the facets that define the page, and your real product

titles). Calls run under a zero-data-retention posture: prompts and responses

are not retained by us, and only coarse metadata (model id, token counts, latency)

is logged. No customer or order data is ever sent.

Hosting / infrastructure: the App runs on a dedicated server

(pageforge.syncerp.work) with PostgreSQL and Redis. Your data is processed and

stored there.

These are our only sub-processors.

6. Retention and deletion

Data is retained while the App is installed.
On uninstall, your shop is marked inactive and the encrypted access token is

deleted immediately.

On Shopify's shop/redact request (typically ~48 hours after uninstall), all

of your data — catalog snapshots, page batches, generated pages, link audits,

job logs, generation-usage counts, billing rows, and webhook logs — is deleted.

The mandatory customers/data_request and customers/redact webhooks are

answered truthfully: Page Forge holds no customer data, so there is nothing to

return or redact.

7. Security

Access tokens are encrypted at rest (AES-256-GCM). All traffic is served over

HTTPS. Webhooks are verified by HMAC. Database access is restricted to the App.

8. Your GDPR / privacy rights

Because Page Forge holds no customer personal data, GDPR data-subject requests

from your shoppers do not apply to us. As the merchant, you may request access to,

correction of, or deletion of your shop's data at any time by uninstalling the App

or emailing support@pageforge.syncerp.work.

9. Children

Page Forge is a business tool not directed at children and does not knowingly

process any child's personal data.

10. Changes

We may update this policy; material changes will be reflected here with a new

"last updated" date.

11. Contact

support@pageforge.syncerp.work