Privacy Policy

Last updated: 12/4/2025

Introduction

Fragment ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application and related services.

Information We Collect

Store Information

When you install Fragment, we collect basic store information including your store domain, store name, and contact email to provide our services.

Content Data

We store the announcements and hero banners you create using Fragment, including text content, images, and configuration settings. This content is accessible via our secure API for integration with the fragment-headless-sdk.

API Keys and Authentication

We generate and store secure API keys to enable access to your published content through the fragment-headless-sdk. These keys are encrypted and can be regenerated at any time through the app.

Usage Analytics

We collect anonymized usage data to improve our services, including feature usage patterns and performance metrics. No personal or customer data is included in analytics.

How We Use Your Information

  • Provide and maintain the Fragment application
  • Store and manage your announcements and hero banners
  • Generate secure API keys for SDK access to your content
  • Serve your published content via our headless API
  • Communicate with you about service updates
  • Improve our services and develop new features
  • Ensure compliance with Shopify's terms and policies

Data Security

We implement industry-standard security measures to protect your data:

  • All data is encrypted in transit and at rest
  • API keys are securely generated with expiration dates
  • Row-level security policies in our database
  • Rate limiting and authentication for all API endpoints
  • Regular security audits and updates
  • GDPR-compliant data handling procedures

Data Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties except:

  • With your explicit consent
  • To comply with legal obligations
  • To protect our rights and safety
  • With trusted service providers who assist in our operations

Your Rights

Under GDPR and other privacy laws, you have the right to:

  • Access your personal data
  • Correct inaccurate information
  • Delete your data (right to be forgotten)
  • Port your data to another service
  • Object to processing of your data

📦 SDK and API Data Handling

The fragment-headless-sdk accesses your published content through our secure API endpoints:

  • API Requests: Only published content is accessible via the API - draft content remains private
  • Authentication: All API requests require valid API keys that you control
  • Rate Limiting: API usage is monitored to prevent abuse and ensure service availability
  • No Tracking: The SDK does not collect or transmit any user behavior data from your storefront
  • Client-Side Only: The SDK operates entirely on the client side - no data is sent to Fragment servers

Shopify Integration

Fragment integrates with Shopify's platform and follows Shopify's data protection standards. When you uninstall Fragment, we automatically delete your store data within 48 hours, in compliance with Shopify's requirements.

Cookies and Tracking

Fragment uses minimal cookies necessary for authentication and session management. We do not use tracking cookies for advertising purposes.

The fragment-headless-sdk does not set any cookies or tracking mechanisms on your storefront. It only fetches and displays your published content.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

SevenbrandLLC
Email: privacy@sevenbrand.com
Subject: Fragment Privacy Inquiry

← Back to Home