Privacy Policy
Last updated: May 24, 2026
This Privacy Policy explains how eshopOS, operated by Osarian Solutions, collects, uses, stores, and protects personal data when you use the platform.
At a glance
| Topic | Position |
|---|---|
| Data sale | We do not sell personal data. |
| Merchant data | Merchant data and customer data are processed to provide the service and follow merchant instructions. |
| Privacy requests | Send requests to support@ossarian.com. Identity verification may be required. |
| Connected imports | Connected-platform data is processed only for authorized connection, migration, synchronization, reporting, and store-operation purposes. |
1. Information we collect
We collect information required to operate and secure the platform, including:
- Account and identity data such as name, email, phone, and role.
- Business and billing data such as store details, tax configuration, payout configuration, and plan information.
- Usage and technical data such as logs, device/browser metadata, diagnostics, and security events.
- Customer and transaction data submitted by merchants.
- Connected-platform data authorized by a merchant.
2. How we use information
We use data to:
- Authenticate users and prevent fraud or abuse.
- Provide dashboards, storefronts, APIs, integrations, orders, payments, payouts, and support workflows.
- Maintain reliability, analytics, and incident response.
- Send service, billing, operational, security, and legal communications.
- Comply with legal obligations and provider requirements.
3. Data sharing
We share data only when necessary for service delivery, compliance, security, or lawful requests.
Examples include:
- Infrastructure and cloud service providers.
- Payment and financial service providers.
- Identity, email, shipping, messaging, and integration providers.
- Professional advisors and legal authorities when required.
Current external service categories are described in the Infrastructure Annex.
4. Privacy rights
Where applicable law provides privacy rights, you may request access, correction, deletion, restriction, portability, or objection.
Send privacy requests to support@ossarian.com. We may verify identity before processing a request. Merchants remain responsible for responding to requests concerning their own customer relationships and processing purposes.
5. Security
We use technical and organizational safeguards, including encryption in transit, access controls, monitoring, security testing, credential controls, and incident response procedures.
No system is absolutely secure. We improve controls based on risk, product change, and operational review.
6. Retention
We retain data only as long as needed for service delivery, contractual commitments, legal obligations, provider requirements, dispute handling, auditability, and legitimate operational purposes.
When retention is no longer required, data is deleted or anonymized according to lifecycle controls.
7. Cookies and tracking
We use essential cookies and similar technologies for authentication, security, session continuity, and performance measurement.
Where required, we provide controls for optional analytics or marketing-related tracking.
8. Children
eshopOS is not directed to children and we do not knowingly collect personal data from children without an appropriate legal basis. If we learn that prohibited child data was provided, we will take steps to delete it.
9. International transfers
Data may be processed in multiple jurisdictions where our providers operate. For cross-border transfers, we apply contractual safeguards and security controls required by applicable law.
10. Connected platform imports
Merchants may connect external commerce platforms and authorize eshopOS to import or synchronize data for migration and store operations.
Connected-platform data is processed on the merchant's instructions, only for scopes and purposes described during connection and in the applicable service documentation.
For Shopify catalog migration, the current connector uses product, collection, variant, inventory, location, and media data. It does not request Shopify customer data. Customer data import would require separate disclosure, merchant authorization, and applicable platform approval before use.
11. Policy changes
We may update this policy as products, laws, or operational practices change. Material updates will be announced through the platform or email with a revised effective date.