Privacy Policy
Version 2026-07-08 · Effective July 8, 2026
Draft pending legal review — this is a working draft and has not been finalized by counsel.
ManageCanvas ("we", "us") provides software that lets artists ("Artists") publish a
storefront, sell original works and prints, and issue certificates of authenticity.
This Privacy Policy explains how we handle personal information for our own purposes —
running the platform, serving Artists, and operating our marketing site.
Two different roles. When you use ManageCanvas as an Artist (you have an account),
we are the controller of your account data. When a buyer or visitor interacts with an
Artist's storefront, the Artist is the controller of that buyer's data and we act as
their processor (service provider) — see our Data Processing terms and each
Artist's own privacy notice on their store. This policy covers the data we control.
Information we collect
Account information. When an Artist creates an account we collect name, email, and (for
password sign-ups) a hashed password, or — if you use Google sign-in — the profile Google
returns (name, email, avatar). We store login session records including IP address and
browser user-agent to keep you signed in and secure the account.
Store and content data. Artwork, images, descriptions, page text, prices, shipping
settings, and your public contact details, which you provide to build your store.
Transaction and payout data. We record orders placed through your store (item, amount,
our platform fee, status, tracking) and your connection to a payment provider (Stripe or
Square account identifiers, and encrypted Square access tokens). We never receive or store
full payment-card numbers — card data is handled entirely by Stripe or Square.
Marketing-site data. If you join our waitlist we collect your email. If you email us we
keep your message.
Usage analytics. Public storefront pageviews are recorded in an aggregate, cookieless
way. For each view we store the page type, the artwork/page slug, the visitor's country (derived
at the network edge), and the referring site's hostname. To count unique visitors without
cookies, we also derive a short-lived, pseudonymous measurement identifier — a one-way hash of the
day, the store, and the visitor's IP address and browser user-agent. We do not store the IP
address or user-agent themselves, only the hash, and because the day is part of the input the
identifier changes every 24 hours, so it cannot be used to recognize a visitor across days or across
different Artists' stores. It is used only to estimate visitor numbers and is not built into a
profile or combined across sites.
How we use it
- To provide and operate the platform (host your store, process orders, issue certificates).
- To authenticate you and secure accounts (session and IP/user-agent records).
- To communicate with you about your account and service (transactional email).
- To provide optional AI features you invoke (see "AI features" below).
- To send you product news only if you opt in, and to run our own waitlist.
- To comply with law, enforce our Terms, and prevent abuse.
Legal bases (GDPR). We rely on: performance of our contract with you (running your
account and store); our legitimate interests (securing the service, aggregate analytics,
improving the product); consent (product-marketing email, and any optional cookies); and
legal obligation (tax and accounting records).
AI features
If you use the AI Studio Assistant or marketing-copy tools, we send the relevant Artist
content (artwork images downscaled for analysis, artwork details, your bio/page copy, and
your prompt) to our AI provider (OpenRouter, routing to the model's provider such as Anthropic)
to generate a response. No buyer personal data is sent to AI providers. AI providers are
contractually restricted from training on this content.
Sharing and sub-processors
We share personal information only with the service providers needed to run the platform —
payments (Stripe, Square), print fulfillment (Prodigi), shipping-rate quotes (EasyPost),
hosting/email/media processing (Cloudflare), and AI (OpenRouter). The current list, and what
each receives, is on our Sub-processors page. We do not sell
personal information, and we do not share it for cross-context behavioral advertising.
We may disclose information to comply with law or legal process, to enforce our terms, or in
connection with a merger or acquisition (with notice where required).
Cookies
ManageCanvas uses only strictly necessary cookies (sign-in session, security/CSRF, and an
administrator function). Storefronts set no cookies of our own. We use no advertising or
cross-site tracking cookies. Details are in our Cookie Policy.
Data retention
We keep account and store data for as long as your account is active. Transaction records are
retained as required for tax and accounting even after other data is removed. Cookieless
analytics are retained in aggregate. When you delete your account we remove your data on the
schedule described below, except records we must keep by law and delivered certificates (which
are permanent public attestations — see the Certificates note in our Terms).
Your rights
Depending on where you live, you may have rights to access, correct, delete, or export your
personal information, to object to or restrict certain processing, and to withdraw consent.
California residents have rights to know, delete, correct, and to opt out of "sale"/"sharing"
(we do neither) and limit use of sensitive information, without discrimination for exercising
them. EU/UK residents have the GDPR rights above and may lodge a complaint with a supervisory
authority.
Artists can export or delete their account and data from Settings, and can act on their
buyers' requests from their dashboard. Buyers should contact the Artist whose store they
used (that Artist is the controller); we will assist the Artist as their processor. You can also
reach us any time via our data-request form or at
privacy@managecanvas.com, and we will respond within the timeframes the law requires (generally
30 days under GDPR, 45 days under CCPA). We may need to verify your identity first.
International transfers
We operate on global infrastructure (Cloudflare) and use providers that may process data in the
United States and elsewhere. Where required, we rely on appropriate safeguards such as Standard
Contractual Clauses.
Children
The platform is not directed to children under 16, and we do not knowingly collect their data.
Changes
We may update this policy; we will change the version and effective date above and, for material
changes, provide notice.
Contact
Draft pending legal review. This document is a working draft prepared to match how the
service actually operates. It is not legal advice and must be reviewed by qualified counsel
before it is relied upon.