SHOW IN MY ROOM← Back to home
LEGAL

Privacy Policy

Last updated: April 16, 2026  ·  Micush — Tallman Solutions

Overview

Show In My Room ("the App") is developed and operated by Tallman Solutions, the technology development brand of Micush. This policy explains what data we collect, why we collect it, how we use it, and your rights regarding that data.

By installing the App you agree to the practices described in this policy.

Data We Collect

We collect and store the following merchant data at the shop level:

  • Shopify shop domain (e.g. your-store.myshopify.com)
  • Shopify access token — used solely to update metafields on your store
  • Installation timestamp
  • Current subscription tier and billing cycle information
  • Visualization request count for the current billing cycle
  • Billing audit log entries (subscription events, usage charge records)

We do not collect or store any customer (shopper) personally identifiable information. When a shopper uploads a room photo to use the visualizer, that image is transmitted directly to our AI processing pipeline and is not retained after the visualization is returned.

How We Use Your Data

  • To operate the Show In My Room visualizer feature on your storefront
  • To enforce your subscription plan request limits and billing cycles
  • To create and manage Shopify metafields that control the app button visibility
  • To send billing events to Shopify on your behalf (usage charges for PLUS plans)
  • To respond to support requests you submit through the app

Data Sharing

We do not sell, rent, or share your data with third parties for marketing purposes.

We use the following sub-processors to operate the App:

  • Shopify — storefront and admin API access
  • Railway — cloud hosting for our backend service and PostgreSQL database
  • Resend — transactional email for support requests
  • AI image processing provider — room visualization inference (images are not stored)

Data Retention

We retain shop-level data for as long as your store has the App installed.

When you uninstall the App, we initiate deletion of your shop record and all associated data (usage history, billing audit log) within 48 hours. In response to a formal GDPR shop redact webhook, erasure is performed immediately.

GDPR & Merchant Rights

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the right to access, correct, or request deletion of any personal data we hold about you.

Because we store no customer PII, there is no customer data to export or delete in response to a customers/data_request or customers/redact webhook — we respond to these automatically with a 200 OK.

To exercise your rights as a merchant or to request your data, contact us at [email protected].

Security

All data is transmitted over HTTPS. Access tokens are stored encrypted at rest within our hosted database. API communication between the App components uses short-lived signed tokens (30-second expiry, single-use) and HMAC signature verification on all Shopify webhooks.

Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via the Shopify Partner Dashboard or by email to the store owner address on file. Continued use of the App after changes take effect constitutes acceptance of the updated policy.

Contact

Micush · Tallman Solutions (technology development)
[email protected]

Terms of ServiceFAQ