PRIVACY POLICY

Effective Date: January 22, 2026

1. Introduction

Codinative (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our BigCommerce applications, services, and website (collectively, the “Services”). By using our Services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect several types of information from and about users of our Services:

Personal Information: Name, email address, phone number, billing address, and payment information when you register for our Services or make purchases.
Store Data: Information related to your BigCommerce store, including product catalogs, customer data, order information, and store configuration settings that are necessary to provide our Services.
Usage Data: Information about how you access and use our Services, including your IP address, browser type, device information, pages visited, and time spent on pages.
Technical Data: API credentials, authentication tokens, and integration data necessary for our applications to function with your BigCommerce store.
Communication Data: Records of correspondence when you contact us for support or inquiries.

3. How We Use Your Information

We use the information we collect for the following purposes:

Service Provision: To provide, maintain, and improve our applications and services, including custom signup forms, storefront features, and other BigCommerce integrations.
Account Management: To create and manage your account, process transactions, and handle billing.
Customer Support: To respond to your inquiries, provide technical support, and address issues.
Communication: To send you service-related notifications, updates, security alerts, and administrative messages.
Analytics and Improvement: To analyze usage patterns, troubleshoot technical issues, and improve our Services.
Legal Compliance: To comply with legal obligations, enforce our agreements, and protect our rights and the rights of others.
Marketing: With your consent, to send promotional materials and information about our services (you may opt out at any time).

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

Service Providers: We may share information with trusted third-party service providers who assist us in operating our Services, processing payments, hosting services, or conducting business analysis. These providers are contractually obligated to protect your information.
BigCommerce: As our applications integrate with the BigCommerce platform, certain data is shared with BigCommerce in accordance with their API and platform requirements.
Legal Requirements: We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.

5. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

Encryption of data in transit and at rest
Secure API authentication and authorization protocols
Regular security assessments and updates
Access controls and authentication requirements for our personnel

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

6. Data Retention and Deletion

6.1 General Data Retention: We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
6.2 Data Retention for Custom Signup Forms App: For the Custom Signup Forms app and similar applications, we retain your configuration settings, form data, and associated information after app uninstallation for your benefit. This allows you to reinstall the app at any time and continue from where you left off without needing to reconfigure your settings or losing your form submissions and customer data.
6.3 Data Deletion Upon Request: When you uninstall any of our applications, including the Custom Signup Forms app, you have the right to request permanent deletion of all your data associated with that application. To request data deletion, please contact us using the information provided in Section 12. Upon receiving your deletion request, we will:

Permanently delete all your configuration settings, form data, customer submissions, and any other data associated with the uninstalled application
Process your deletion request within 30 days of receipt
Confirm completion of the deletion process via email

6.4 Important Note on Data Deletion: Please be aware that once your data is deleted upon your request, it cannot be recovered. If you reinstall the app after deletion, you will need to start fresh with new configurations and will not have access to any previously collected form submissions or settings.
6.5 Exceptions to Data Deletion: We may retain certain information even after a deletion request when required for legal, tax, audit, or regulatory purposes, or to prevent fraud and enforce our agreements. Such retained data will be kept only for the minimum period required by law.

7. Your Rights and Choices

Depending on your jurisdiction, you may have certain rights regarding your personal information:

Access: You may request access to the personal information we hold about you.
Correction: You may request correction of inaccurate or incomplete information.
Deletion: You may request deletion of your personal information, subject to certain legal exceptions.
Restriction: You may request restriction of processing under certain circumstances.
Data Portability: You may request a copy of your data in a structured, machine-readable format.
Opt-Out: You may opt out of marketing communications at any time by following the unsubscribe instructions in our emails or contacting us directly.

To exercise these rights, please contact us using the information provided in Section 12.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our Services and store certain information. Cookies are files with a small amount of data that are sent to your browser from a website and stored on your device. You can configure your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Services.

9. Third-Party Links

Our Services may contain links to third-party websites or services that are not owned or controlled by Codinative. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

10. Children’s Privacy

Our Services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us, and we will take steps to delete such information.

11. International Data Transfers

Your information may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. By using our Services, you consent to the transfer of your information to these locations. We will take appropriate steps to ensure your data is treated securely and in accordance with this Privacy Policy.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us at:

Email: info@codinative.com

Website: https://codinative.com/

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the new Privacy Policy on our website and updating the “Effective Date” at the top of this document. Your continued use of the Services after such changes constitutes your acceptance of the updated Privacy Policy. We encourage you to review this Privacy Policy periodically.

14. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, use, and share, and the right to request deletion of your personal information. You also have the right to opt out of the sale of your personal information; however, we do not sell personal information. To exercise your rights, please contact us using the information in Section 12.

15. European Union Privacy Rights

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR), including the right to access, rectify, erase, restrict processing, object to processing, and data portability. You also have the right to lodge a complaint with a supervisory authority. We process your personal data based on legitimate interests, contractual necessity, or with your consent. To exercise your rights, please contact us using the information in Section 12.

By using Codinative’s Services, you acknowledge that you have read and understood this Privacy Policy.