Privacypolicy.

Tee Printer is a trading name of Print Merch Ltd (company no. 15869736), a UK print and fulfilment house that prints, packs and posts orders on behalf of Etsy, eBay and Shopify sellers. In this policy “we”, “us” and “our” mean Print Merch Ltd, trading as Tee Printer, based at 39 Highfield Road, Leeds LS13 2BL. For anything about your data, contact us at hello@teeprinter.co.uk.

For data we hold about your own account (your login, your shop details), we are the data controller. For the customer order data you bring into your dashboard, we act as a data processor on your behalf — see clause 05.

Order Capture is an optional Chrome extension that brings your marketplace orders into your Tee Printer dashboard. It is built for a single purpose: capturing an order you are viewing, into your account. Here is exactly what it does with data:

• Sign-in. You log in with your normal Tee Printeremail and password. We use this only to obtain a session token from our authentication provider (Supabase). The token is stored locally in the browser’s extension storage so you stay signed in; your password is never stored by the extension.
• Reading an order. Only when you open the extension on an order page and click “Add to Tee Printer” does it read that single, already-open order. On Etsy and eBay it reads the order details shown on the page (buyer name, delivery address, items, SKUs, quantities and totals). On Shopify it reads only the order ID from the URL, and our server fetches that order from Shopify’s API using the credentials you connected in Settings.
• Sending it. The order is sent over HTTPS to our ingest endpoint at teeprinter.co.uk and saved to your dashboard so we can fulfil it.

The extension does not run in the background, track your browsing, read pages you have not asked it to capture, or collect analytics. We do not sell your data, do not use it for advertising, and do not transfer or use it for any purpose other than providing the print-and-fulfilment service — consistent with the Chrome Web Store Limited Use requirements.

• Account & shop data — your name, email, password (stored only as a secure hash by our auth provider), brand/shop name and the settings you configure.
• Order data — orders you import via the extension or CSV: buyer name, delivery address, line items, SKUs, variations, quantities and totals.
• Marketplace connections — for Shopify, the app credentials you paste in Settings, which we store encrypted and use only to fetch your orders.
• Payment data — when you pay for print runs, card details are entered directly with our payment processor (Stripe). We never see or store your full card number.
• Messages you send us — anything you put in the contact form or email.

We use your data only to run the service, specifically to:

• authenticate you and keep your account secure;
• bring your orders into your dashboard and print, pack and post them;
• take payment for the work and send you transactional email;
• reply to your enquiries and provide support.

Our lawful bases under UK GDPR are performance of a contract (running your account and fulfilling orders) and our legitimate interests in operating and securing the service.

Orders contain your customers’ personal data (names and delivery addresses). We process this strictly on your instructions — to fulfil the orders you import — and for no other purpose. You are responsible, as the controller of your customers’ data, for having a lawful basis to share it with us as your fulfilment partner. We keep it confidential, secure it as described below, and will delete or return it on request.

We do not sell your data. We share it only with the service providers (sub-processors) that make the product work, each under their own data-protection terms:

• Supabase — database, authentication and file storage.
• Vercel — hosting for this website and our API.
• Stripe — payment processing.
• Resend — sending transactional and contact email.
• Etsy, eBay & Shopify — only in the sense that the extension reads the orders you are already viewing on those platforms under your own login.

We may also disclose data if required by law. Some providers process data outside the UK; where they do, appropriate safeguards (such as UK/EU standard contractual clauses) apply.

Data is stored in our Supabase project and protected by row-level security, so each seller can only ever reach their own records. Sensitive secrets (such as Shopify credentials) are encrypted at rest. All traffic is over HTTPS. We keep your account and order data for as long as your account is active and as needed to provide the service and meet legal or accounting obligations, then delete or anonymise it.

Under UK GDPR you can ask us to access, correct, delete, export or restrict the processing of your personal data, and you can object to certain processing. To exercise any of these, email hello@teeprinter.co.uk. You also have the right to complain to the UK Information Commissioner’s Office (ICO) at ico.org.uk.

The website uses only the cookies needed to keep you signed in and keep the site secure. We do not use advertising or third-party tracking cookies. The browser extension does not use cookies; it keeps your session in the browser’s local extension storage.

We may update this policy as the product evolves. When we make material changes we will revise the “last updated” date above and, where appropriate, let you know in the dashboard.

Questions about this policy or your data? Email us at hello@teeprinter.co.uk.