Legal

Security at Recustom

The practical controls used to protect merchant accounts, connected stores, customer orders, production assets, and service communications.

Last updated: July 16, 2026

Recustom processes commerce credentials, customer order details, shipping information, and personalized production assets. We design security controls around those data flows and the responsibilities shared by Recustom, merchants, commerce platforms, and production partners.

This page describes current product controls and security practices. It does not claim a certification, audit report, or absolute protection from every threat.

01Data in transit

Production web and API traffic is protected using HTTPS. Requests between the Shopify application and Recustom core services use signatures so the receiving service can verify origin and integrity. Shopify webhook requests are verified before they are accepted for processing.

02Connected-store credentials

Shopify access and refresh tokens are encrypted at the application layer using AES-256-GCM before storage. Credentials are not returned in public store responses. Recustom uses the permissions granted by the merchant to perform authorized store, product, order, and fulfillment actions.

03Authentication and sessions

Standalone Recustom sessions use HTTP-only cookies that are not available to browser JavaScript. Production cookies are restricted to HTTPS and use SameSite protections. Embedded Shopify access relies on Shopify's authenticated application context and signed server-to-server requests.

04Tenant and database controls

Accounts, stores, products, orders, and transactions are associated with tenant identifiers. Application authorization checks scope access to the relevant account or store. Database row-level security policies provide an additional boundary for authenticated access and block anonymous access to protected business tables.

05Images and production assets

Product images and generated production assets are stored separately from primary account records. Recustom supports time-limited signed upload and download URLs for restricted asset transfers. Some merchant-approved product or listing assets may be published through public URLs when public delivery is part of the requested workflow.

06Payment data

Card entry and payment processing are handled by Shopify Billing or Stripe. Recustom stores transaction references, amounts, currency, status, and customer identifiers needed for billing and reconciliation, but does not receive full payment card numbers through those hosted payment flows.

07Production and service partners

Production and logistics partners receive the order, recipient, asset, and shipping data needed to manufacture and deliver the selected product. Infrastructure and AI providers receive the limited data needed for the feature they perform. Recustom evaluates access by purpose and uses contractual data protection terms where required.

08Merchant responsibilities

  • use unique credentials and protect every administrator and connected-channel account;
  • grant only the permissions needed for the features in use and remove access when it is no longer required;
  • review users, stores, product publication, orders, addresses, and fulfillment settings;
  • do not place passwords, API secrets, payment card data, or unsupported sensitive data in prompts or uploads; and
  • report suspicious access, unexpected store activity, or exposed credentials immediately.

09Report a security issue

If you believe you found a vulnerability or security incident involving Recustom, email hello@recustom.ai with a clear description, affected URL or component, reproduction steps, and your contact information. Do not access other users' data, disrupt production, use social engineering, or publicly disclose an unresolved issue.

We will acknowledge a credible report, investigate it, and coordinate reasonable disclosure timing. Security and privacy incidents involving personal data may also be reported to hello@recustom.ai.

Join the waitlist

Recustom's private beta is coming soon. Join the waitlist and confirm your email. We'll invite you as soon as access becomes available, ahead of public signup.

Submitting your email does not create an account. We'll email you to confirm your address and notify you when beta access is available. You can unsubscribe anytime. Privacy policy