How Blimey Protects Your Data
We take the security of your data seriously. Here's how Blimey keeps your information safe.
Minimal permissions
Blimey requests the absolute minimum permissions needed to operate. We use the read_themes scope, which is required for Shopify app functionality. We don't access your customers, orders, products, or financial data.
Encrypted connections
All communication between Blimey and your store uses HTTPS (encrypted connections). Your data is never transmitted in plain text.
Secure authentication
Blimey uses Shopify's official OAuth authentication flow and token exchange system. Your access tokens are stored securely and are never exposed.
Data isolation
Your monitoring data is isolated to your store. Other Blimey users cannot see your uptime data, settings, or store information.
Webhook verification
All incoming Shopify webhooks are verified using HMAC signatures to ensure they genuinely come from Shopify and haven't been tampered with.
No sensitive data collection
Blimey never accesses or stores:
- Customer personal information
- Payment or financial data
- Order details
- Product information
- Theme source code