Privacy Policy

1. Introduction

Gang Sheet Builder ("we," "us," or "our") operates the website at gsbapi.u2z.us and provides gang sheet creation services through our platform, including our WooCommerce plugin, canvas editor, and related APIs (collectively, the "Service"). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Name and email address
• Password (stored in hashed form)
• Business name and website URL
• Billing model preference (pay-as-you-go or subscription)

2.2 Shop and Integration Data

When you connect your WooCommerce store, we collect:

• WordPress site URL and shop slug
• WooCommerce product and order data relevant to gang sheet creation
• API access tokens for authenticating your plugin

2.3 Design and Upload Data

When you use our editor or upload files, we collect:

• Uploaded images and design files
• Design configurations (dimensions, layouts, sticker cut lines)
• Generated gang sheet output files
• Thumbnail previews

2.4 Payment and Billing Data

• Credit balance and transaction history
• PayPal subscription and payment identifiers
• We do not store credit card numbers or full payment credentials. All payments are processed through PayPal.

2.5 Usage and Technical Data

• IP addresses and browser user-agent strings
• API request logs
• Feature usage patterns (e.g., which editor tools are used)

2.6 Third-Party Service Data

If you import designs from connected services (Google Drive, Dropbox, Canva), we temporarily access your files through their APIs using OAuth tokens. We do not store your third-party credentials.

3. How We Use Your Information

We use collected information to:

• Provide, operate, and maintain the Service
• Process your gang sheet designs and generate output files
• Manage your account, billing, and credit balance
• Authenticate your WooCommerce plugin and API requests
• Send important service-related communications
• Monitor usage for billing calculations (square inches, downloads)
• Improve and optimize the Service
• Detect and prevent fraud or abuse

4. Data Storage and Security

Your data is stored on secure servers. We implement appropriate technical and organizational measures to protect your personal information, including:

• Encrypted API tokens and hashed passwords
• HTTPS encryption for all data in transit
• Access controls limiting data access to authorized personnel
• Regular security reviews of our infrastructure

Design files and uploaded images are stored on our servers and are accessible only to you and your authorized shop integrations.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share information only in the following circumstances:

• Payment Processing: Transaction data is shared with PayPal to process payments.
• Third-Party Integrations: When you authorize connections to Google Drive, Dropbox, or Canva, data flows through their APIs under their respective privacy policies.
• Legal Requirements: We may disclose information if required by law, court order, or government request.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Specifically:

• Account data: Retained until you request account deletion
• Design files: Retained while your account is active; deleted upon account closure
• Transaction records: Retained for accounting and legal purposes as required by law
• Server logs: Retained for up to 90 days

7. Your Rights

You have the right to:

• Access your personal data stored in our systems
• Correct inaccurate information in your account
• Delete your account and associated data
• Export your design data
• Withdraw consent for optional data processing

To exercise these rights, contact us at support@gsbapi.u2z.us.

8. Cookies and Tracking

We use essential cookies for session management and authentication. We do not use third-party advertising trackers. Our use of cookies is limited to:

• Session cookies for login state
• CSRF protection tokens

9. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal data, please contact us and we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at:

support@gsbapi.u2z.us