Security

Your data security and privacy are our top priorities

Data Protection

We implement industry-standard security measures to protect your data:

• End-to-end encryption for data in transit (TLS/SSL)
• Encrypted storage for sensitive data at rest
• Regular security audits and penetration testing
• Secure API authentication using OAuth 2.0
• Role-based access controls (RBAC)

Compliance

We comply with major data protection regulations:

• GDPR: Full compliance with EU data protection requirements
• CCPA: California Consumer Privacy Act compliance
• Shopify Standards: All apps meet Shopify's security requirements
• PCI DSS: Payment Card Industry Data Security Standard adherence

Data Handling

Minimal Data Collection: We only collect data necessary for our services to function.

Data Retention: Customer data is retained only as long as needed for service delivery.

Right to Deletion: You can request deletion of your data at any time through our support team.

No Third-Party Sharing: We never sell or share your data with third parties for marketing purposes.

Infrastructure Security

Our infrastructure is built with security in mind:

• Hosted on enterprise-grade cloud platforms with 99.9% uptime SLA
• Automated security patches and updates
• DDoS protection and rate limiting
• Regular backups with disaster recovery procedures
• 24/7 security monitoring and incident response

Report a Security Issue

If you discover a security vulnerability, please contact us immediately at security@greatindiancompany.com. We take all reports seriously and will respond promptly.