Privacy Policy for StudioOne

Effective Date: December 2, 2025

Last Updated: December 2, 2025

Introduction

Welcome to StudioOne ("we," "our," or "us"), operated by Hivemind Ltd. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application ("StudioOne" or the "App"). By installing and using StudioOne, you agree to the collection and use of information in accordance with this policy.

If you have questions or concerns about this Privacy Policy, please contact us at support@bolt-apps.com.

1. Information We Collect

1.1 Information from Shopify

When you install StudioOne, we collect the following information from your Shopify store through the Shopify API:

Store Information:

  • Store domain name (e.g., yourstore.myshopify.com)
  • Store owner email address
  • Store locale/language settings

User Information (when applicable):

  • User ID
  • First name and last name
  • Email address
  • Account owner status
  • Collaborator status
  • Email verification status

Product Information:

  • Product IDs
  • Product titles
  • Product images (featured images)

Access Information:

  • OAuth access tokens (encrypted and securely stored)
  • Session data
  • API access scopes granted

1.2 Usage Data

We automatically collect certain information about how you use the App:

Usage Metrics:

  • Number of AI images generated
  • Number of AI banners generated
  • Number of image edits performed
  • Number of saves to products or files
  • Current subscription plan
  • Billing period information
  • Timestamps of app usage

Technical Data:

  • App version
  • Error logs (for debugging purposes)
  • API request/response metadata

1.3 Content You Provide

When using StudioOne's AI generation features, you may provide:

User-Generated Content:

  • Text prompts describing desired images/banners
  • Reference images uploaded for style inspiration
  • Product selections from your catalog
  • Angle preferences and aspect ratio selections

Generated Content:

  • AI-generated product images
  • AI-generated marketing banners
  • Edited versions of generated content

2. How We Use Your Information

2.1 To Provide and Improve the App

We use your information to:

  • Authenticate your Shopify store and maintain your session
  • Process your AI image and banner generation requests
  • Save generated images to your products and Shopify Files
  • Track your usage against your subscription plan limits
  • Display usage statistics and billing information
  • Provide customer support and respond to your inquiries
  • Improve app performance, features, and user experience
  • Debug and fix technical issues

2.2 For Billing and Compliance

We use your information to:

  • Manage your subscription through Shopify's billing system
  • Calculate usage limits and enforce plan restrictions
  • Reset usage counters at the start of each billing period
  • Process subscription changes and upgrades
  • Maintain usage records for billing accuracy
  • Comply with legal obligations and Shopify's terms of service

2.3 AI Processing

We use your information to:

  • Send product images and prompts to Google Gemini AI API for processing
  • Generate AI-powered product photography and marketing banners
  • Edit and refine AI-generated images based on your prompts
  • Return generated images to your Shopify store

Important: Your product images and prompts are sent to Google's Gemini AI service for processing. Please review Google's privacy policy at https://policies.google.com/privacy

3. How We Share Your Information

3.1 Third-Party Service Providers

We share your information with the following third-party services:

Google Gemini AI:

Shopify:

  • Purpose: Authentication, billing, product management, and file storage
  • Data Shared: All data collected through Shopify API (store info, products, sessions)
  • Privacy Policy: https://www.shopify.com/legal/privacy

3.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency), including to:

  • Comply with legal obligations
  • Protect and defend our rights or property
  • Prevent or investigate possible wrongdoing
  • Protect the personal safety of users or the public
  • Protect against legal liability

3.3 Business Transfers

If we are involved in a merger, acquisition, or asset sale, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4. Data Storage and Security

4.1 Data Storage Location

Your data is stored in secure databases hosted by our cloud provider. We use PostgreSQL databases with encrypted connections.

4.2 Security Measures

We implement industry-standard security measures to protect your information:

  • Encryption: All data transmission uses HTTPS/TLS encryption
  • Access Control: Restricted access to databases and systems
  • Authentication: OAuth 2.0 for secure Shopify authentication
  • Token Security: Access tokens are encrypted and securely stored
  • Regular Updates: We keep our systems and dependencies up to date
  • Monitoring: We monitor for security vulnerabilities and suspicious activity

4.3 Data Retention

We retain your information for as long as your Shopify store has StudioOne installed, plus:

  • Session Data: Retained until session expires (typically 24-48 hours for online tokens)
  • Usage Data: Retained indefinitely for billing accuracy and analytics
  • Webhook History: Retained for audit trail purposes
  • Generated Images: Not stored by us; saved directly to your Shopify store
  • Reference Images: Temporarily processed for AI generation, then deleted

5. Your Data Rights

5.1 Access and Correction

You have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate or incomplete information
  • View your usage statistics within the app dashboard

5.2 Data Deletion

You have the right to request deletion of your data:

  • Uninstall the App: When you uninstall StudioOne, we mark your account as uninstalled but retain usage data for billing accuracy
  • Full Deletion Request: Contact us to request complete deletion of all your data
  • Automatic Deletion: Session data is automatically deleted when expired
  • Generated Content: Images saved to your Shopify store remain in your store; we do not store copies

5.3 Data Portability

You have the right to:

  • Export your usage statistics (available within the app)
  • Request a copy of your data in a structured, machine-readable format
  • Transfer your data to another service (where technically feasible)

5.4 Withdraw Consent

You have the right to:

  • Revoke API access permissions through Shopify's app settings
  • Uninstall the app at any time
  • Opt out of certain data collection (may limit app functionality)

5.5 How to Exercise Your Rights

To exercise any of these rights, please contact us at support@bolt-apps.com with:

  • Your store domain
  • Description of your request
  • Any supporting information

We will respond to your request within 30 days.

6. Children's Privacy

StudioOne is intended for use by businesses and is not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If you believe we have collected information from a child under 18, please contact us immediately.

7. International Data Transfers

Our company is located in Israel. If you are located outside Israel, please be aware that your information may be transferred to, stored, and processed in Israel or other countries where our service providers are located. By using StudioOne, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.

For EU/EEA Users: We comply with applicable data protection laws including the General Data Protection Regulation (GDPR). Israel has been recognized by the European Commission as providing adequate protection for personal data. We ensure appropriate safeguards are in place for all international data transfers.

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date at the top
  • Notifying you via email (if applicable)
  • Displaying an in-app notification (for significant changes)

Your continued use of StudioOne after changes become effective constitutes your acceptance of the revised policy.

9. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

Email: support@bolt-apps.com

Website: https://bolt-apps.com

Mailing Address:

Hivemind Ltd
24 Kanfei Nesharim St
Jerusalem, 9546440
Israel

10. Your Responsibilities

As a StudioOne user, you are responsible for:

  • Ensuring you have rights to use any reference images you upload
  • Complying with Google's AI acceptable use policies when creating prompts
  • Not generating content that infringes intellectual property rights
  • Not using the app to create illegal, harmful, or inappropriate content
  • Maintaining the security of your Shopify admin account

By using StudioOne, you acknowledge that you have read and understood this Privacy Policy.

Document Version: 1.0

Effective Date: December 2, 2025

Governing Law: Laws of the State of Israel