Back to Home

Privacy Policy

Last Updated: June 28, 2026

At drepx ("we", "us", or "our"), we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, process, transfer, and safeguard your personal data when you use our dropshipping automation platform, including our web application, browser extensions, and API services (collectively, the "Services").

1. Information We Collect

To provide our automation services, we process the following categories of data:

  • Account Information: Basic identifying information such as name, email address, and encrypted authentication parameters required to secure your user profile.
  • Integration & Store Data: Authorization details (e.g., OAuth tokens) for connecting store channels (Shopify, eBay, WooCommerce, etc.) to allow automated synchronizations.
  • Transaction & Sourcing Logs: Log files, configuration mappings, and order tracking numbers utilized within our synchronization pipelines.
  • Usage & System Metrics: Analytical data on how you interact with our features, search queries, and performance configurations.
  • Billing Information: Payments are processed via certified third-party channels (Stripe). We do not collect or store raw financial account credentials on our infrastructure.

2. Platform Integrations & Data Synchronization

To support dropshipping orchestration, Drepx provides secure cloud connections and automated synchronization pipelines. These pipelines allow users to link external sales channels and import public catalog data from partner sourcing platforms.

  • All synchronization actions operate under the direct instruction and authorization of the user.
  • We do not retrieve or collect private, non-public user data from third-party platforms.
  • You are responsible for ensuring that all sourcing and store integrations comply with the user agreements and guidelines of the respective third-party platforms.

3. How We Use Your Information

We process your personal data under legal bases specified under privacy regulations, solely for:

  • Operating, maintaining, and improving the features of the Service.
  • Processing user-directed orders, status alerts, and inventory notifications.
  • Enhancing security, defending against fraudulent activity, and resolving platform bugs.
  • Meeting legal compliance obligations, tax accounting requirements, and regulatory requests.

4. Data Storage & Security Controls

We enforce security controls to safeguard data from loss, unauthorized access, alteration, or disclosure:

  • All web traffic is encrypted in transit using industry-standard TLS 1.3 encryption.
  • Information stored on our servers is protected with AES-256 database-level encryption.
  • Integrations use tokenized authentication, ensuring your account keys remain isolated and protected.

Please note that while we use robust compliance checks to safeguard your data, no method of transmission or storage is 100% secure.

5. Cookies & Analytical Technologies

We utilize cookie technologies to authenticate sessions, persist settings, and gather telemetry on service performance:

  • Essential Cookies: Necessary for core services, session maintenance, and security checks.
  • Analytical Cookies: Help us measure usage stats and improve speed.

You can disable cookies through your browser preferences, though doing so may limit your access to certain features.

6. International Data Transfers

Drepx is headquartered in the United States, and our infrastructure utilizes hosting providers located globally (including the US and EU). When personal data is transferred across international boundaries, we ensure appropriate safeguards (such as European Commission Standard Contractual Clauses) are established to protect your information.

7. Your Privacy Rights (GDPR & CCPA)

Depending on your jurisdiction (such as the EU or California), you are entitled to several statutory rights:

  • Access & Portability: Request details of the personal data we hold and receive it in a structured format.
  • Correction & Erasure: Ask us to rectify inaccurate information or delete your records.
  • Object & Restrict: Request that we limit or stop processing your data.
  • Opt-Out of Sale/Share: California consumers can request that their data not be shared or sold. We do not sell consumer information.

To exercise any of these privacy rights, please submit a request to our data protection officer at [email protected].

8. Policy Modifications

We may update this Privacy Policy from time to time. If changes are material, we will post a prominent notification in your account dashboard or contact you directly. We encourage you to review this policy periodically.