Custom Signup Formsby Codinative
Codinative Get the app
Home Privacy Policy
Legal

Privacy Policy

How Custom Signup Forms handles data when installed on your BigCommerce store. Last updated 16 June 2026.

Custom Signup Forms (“the App”) is a BigCommerce app provided by Codinative (“we”, “us”). The App lets a merchant publish a custom account-signup form, collect applications, and approve them into BigCommerce customer accounts. This policy explains what data the App accesses, stores, and processes.

Information we access

When a merchant installs the App via BigCommerce OAuth, we request only the permissions needed to run the signup flow:

  • Customers — to create approved applicants as BigCommerce customer accounts.
  • Customer groups — to list groups and assign approved customers to one.
  • Storefront scripts — to install the script that renders your form on the create-account page.

The App does not access orders or payment data.

Information we store

We store the data required to operate the App, in Google Firebase (Firestore and Storage):

  • Your store hash and the OAuth access token issued by BigCommerce at install.
  • The store user(s) who installed or were granted access to the App (id, email, username).
  • Your configuration — form designs, email templates, notification and cooldown settings, and the default customer group.
  • Your subscription status for billing (see Third-party processors).

Applicant data

When a shopper submits your signup form, the App stores the information they enter (such as name, email and any custom fields) and any files they upload (such as a trade licence), so you can review and approve the request. On approval, the relevant details are sent to BigCommerce to create the customer account. This applicant data is processed on your behalf, as the merchant, and is retained until you delete the request or uninstall the App.

Third-party processors

  • BigCommerce — the platform the App integrates with.
  • Google Firebase / Firestore & Storage — stores configuration, requests and uploaded files.
  • Vercel — hosts the App.
  • Brevo (or your configured SMTP service) — delivers confirmation and notification emails.
  • Stripe — processes subscription billing.

We do not sell or share your data with advertisers, and we do not use it for any purpose other than operating the App.

Data retention & deletion

When you uninstall the App, BigCommerce notifies our uninstall endpoint and we remove your store record, access token, configuration, signup requests and associated uploads. To request deletion at any other time, email us at info@codinative.com.

Security

All traffic uses HTTPS. Access tokens and credentials are stored server-side and are never exposed to the browser or to shoppers. Uploaded files are stored in access-controlled Firebase Storage.

Contact

Questions about this policy? Email info@codinative.com or visit codinative.com.

Codinative · codinative.com