Security & Data Processing
Our architecture guarantees database isolation, data encryption, and secure support auditing.
1. Tenant Database Isolation
Aovance runs a rigorous tenancy mapping resolver. Every DB row associated with custom recommendation scripts, templates, discount rules, and webhook receipts is mapped directly to a unique store workspace ID. We perform active authorization audits at the Drizzle ORM query layer to fully isolate sibling stores.
2. Technical Safeguards & Encryption
All communications between Shopify Admin, our backend API endpoints, and storefront script extensions are encrypted using TLS 1.3. Persistent database tables are encrypted at rest. Security tokens (including Clerk tokens and Shopify admin credentials) are never stored in plain-text client caches.
3. Incident & Support Audits
Support engineers accessing your console configuration details must generate temporary access keys, which are automatically purged within 2 hours. Merchant operators can audit, approve, or immediately revoke diagnostic collections inside the Operations Console.
4. Backup and Disaster Recovery
Our database runs automated hourly replication checkups. In the event of catastrophic data anomalies, disaster recovery protocols allow our engineers to execute point-in-time recovery rollbacks in less than 15 minutes.