Try Free

Privacy

Privacy Policy

Last updated: April 28, 2026

Crowvex is operated by Aevori Holdings Ltd., a corporation organized under the laws of the Province of Ontario, Canada (referred to in this policy as "Crowvex," "we," "us," or "our"). This policy explains what data we collect when you install and use the Crowvex app on your Shopify store, how we use it, and the rights you have over it.

If you have questions about anything in this policy, email us at contact@crowvex.com.

What we collect

Shopify store data

When you install Crowvex, you authorize us — through Shopify's OAuth flow — to read the following from your store: shop profile (name, currency, plan, primary domain), products and variants, orders and order line items, fulfillments, refunds, and transaction records. We never request access to customer payment methods, customer passwords, or your Shopify admin credentials.

Printful and Printify data

If you connect Printful and/or Printify, you provide an API key for each. We use those keys to read product catalog data, production costs, and shipping costs associated with your orders. The API keys themselves are encrypted at rest using AES-256-GCM and decrypted only in memory at the moment they are needed for an API call.

Account and usage data

We log basic usage events — when you open the app, which dashboard views you visit, and what filters you apply — so we can debug issues and improve the product. We do not embed third-party analytics trackers, advertising pixels, or session-replay tools.

How we use your data

Your data is used for one purpose: calculating per-order, per-product, per-day, and per-month profit, and displaying it back to you inside the Crowvex dashboard. We do not sell, rent, or share your data with third parties for marketing purposes. We do not train machine-learning models on your store data.

Where your data lives

Crowvex runs on infrastructure provided by Railway (railway.app), with PostgreSQL databases hosted in their managed environment. All data is transmitted over HTTPS (TLS 1.2+). API keys and other secrets are encrypted at rest.

The third-party services that necessarily process your data are:

  • Shopify — the platform you authorize Crowvex to read from
  • Printful — when you connect a Printful account
  • Printify — when you connect a Printify account
  • Railway — application hosting and database

We do not use any other third-party processors.

Data retention

We retain your data for as long as Crowvex is installed on your store. When you uninstall the app, all data associated with your store — including stored API keys, synced orders, and computed profit records — is permanently deleted within 30 days. You can request immediate deletion at any time by emailing contact@crowvex.com.

Your rights

Regardless of where you are located, you have the right to:

  • Access a copy of the data Crowvex holds about your store
  • Request correction of inaccurate data
  • Request deletion of your data at any time
  • Receive your data in a portable format (CSV)

Exercise any of these rights by emailing contact@crowvex.com. We respond to all requests within 30 days.

Security

We take reasonable, industry-standard steps to protect your data: TLS in transit, AES-256-GCM encryption at rest for sensitive credentials, principle-of-least-privilege access for our team, and audit logging of administrative actions. No system is perfect, but we treat your data as carefully as we'd want our own treated.

Changes to this policy

If we make material changes to this policy, we'll update the "Last updated" date above and — for changes that affect how your data is used — notify you via email or an in-app banner before the changes take effect.

Contact

Questions, requests, or concerns:
contact@crowvex.com
Aevori Holdings Ltd. · Ontario, Canada