Recustom processes commerce credentials, customer order details, shipping information, and personalized production assets. We design security controls around those data flows and the responsibilities shared by Recustom, merchants, commerce platforms, and production partners.
This page describes current product controls and security practices. It does not claim a certification, audit report, or absolute protection from every threat.
01Data in transit
Production web and API traffic is protected using HTTPS. Requests between the Shopify application and Recustom core services use signatures so the receiving service can verify origin and integrity. Shopify webhook requests are verified before they are accepted for processing.
02Connected-store credentials
Shopify access and refresh tokens are encrypted at the application layer using AES-256-GCM before storage. Credentials are not returned in public store responses. Recustom uses the permissions granted by the merchant to perform authorized store, product, order, and fulfillment actions.
03Authentication and sessions
Standalone Recustom sessions use HTTP-only cookies that are not available to browser JavaScript. Production cookies are restricted to HTTPS and use SameSite protections. Embedded Shopify access relies on Shopify's authenticated application context and signed server-to-server requests.
04Tenant and database controls
Accounts, stores, products, orders, and transactions are associated with tenant identifiers. Application authorization checks scope access to the relevant account or store. Database row-level security policies provide an additional boundary for authenticated access and block anonymous access to protected business tables.
05Images and production assets
Product images and generated production assets are stored separately from primary account records. Recustom supports time-limited signed upload and download URLs for restricted asset transfers. Some merchant-approved product or listing assets may be published through public URLs when public delivery is part of the requested workflow.
06Payment data
Card entry and payment processing are handled by Shopify Billing or Stripe. Recustom stores transaction references, amounts, currency, status, and customer identifiers needed for billing and reconciliation, but does not receive full payment card numbers through those hosted payment flows.
07Production and service partners
Production and logistics partners receive the order, recipient, asset, and shipping data needed to manufacture and deliver the selected product. Infrastructure and AI providers receive the limited data needed for the feature they perform. Recustom evaluates access by purpose and uses contractual data protection terms where required.
08Merchant responsibilities
- use unique credentials and protect every administrator and connected-channel account;
- grant only the permissions needed for the features in use and remove access when it is no longer required;
- review users, stores, product publication, orders, addresses, and fulfillment settings;
- do not place passwords, API secrets, payment card data, or unsupported sensitive data in prompts or uploads; and
- report suspicious access, unexpected store activity, or exposed credentials immediately.
09Report a security issue
If you believe you found a vulnerability or security incident involving Recustom, email hello@recustom.ai with a clear description, affected URL or component, reproduction steps, and your contact information. Do not access other users' data, disrupt production, use social engineering, or publicly disclose an unresolved issue.
We will acknowledge a credible report, investigate it, and coordinate reasonable disclosure timing. Security and privacy incidents involving personal data may also be reported to hello@recustom.ai.