Legal
Privacy Policy
Last updated June 30, 2026
This policy explains what AutoPrintFarm LLC (“AutoPrintFarm,” “we,” “us”) collects, why, who we share it with, and the choices you have. We’ve written it in plain language on purpose — you’re running a business, not parsing legalese. AutoPrintFarm provides a cloud workspace that runs both sides of a 3D-printing operation: the production floor and the commerce behind it. This policy covers our website (autoprintfarm.com), the web app at app.autoprintfarm.com, our iOS app, our browser extension, and our REST API.
Our two roles: controller and processor
Which privacy role we play depends on the data:
- For your account, billing, and usage data — the information about you and your business as our customer — we are the controller and this policy governs.
- For the personal data of your buyers and customers that flows in from a store you connect (a Shopify, Etsy, eBay, Wix, or WooCommerce shop), you are the controller and we act as your processor / service provider. We handle that data only on your behalf, to sync and fulfill your orders, under the terms of our Data Processing Addendum. (One exception: as a matter of contract between Wix and us, we are treated as an independent controller of a Wix merchant’s own account data; the merchant’s buyer data is still handled on the merchant’s behalf.)
What we collect
Account information
When you create an account, we collect your name, email address, and a securely hashed password — authentication is handled by Better Auth. If you sign in with Google, Microsoft, or Apple, we receive your basic profile (name, email, avatar) from that provider. For teams, we store the role assigned to each member (owner, admin, operator, or viewer) and who invited them.
Printer and fleet telemetry
To monitor your fleet and run your queue, we ingest live data from the printers connected through your Wi-Fi hub: model and serial, online/offline status, current job and progress, temperatures, AMS/material state, and failure or error events. We also collect raw, unparsed printer protocol traffic from the hub on a short-lived basis to operate, debug, and improve printer compatibility; this is automatically deleted on a rolling schedule (currently within 14 days). This telemetry travels from your local network to our cloud so you can see your floor from anywhere.
Camera video
If you use an AutoPrintFarm camera, it streams live video of your printer to your workspace on demand. Streaming happens only while a viewer is watching; we relay the stream to authorized viewers in your workspace and do not retain a recording of it. We store basic device metadata (the camera’s status, firmware version, and local network address).
Print and slicing files you upload
Files you upload — 3MF/G-code and the metadata our parsers extract (estimated time, material, weight, thumbnails) — are stored so we can dispatch them to your printers and show previews. If you use our cloud slicer, your files are processed on our slicing infrastructure to produce print-ready output. Your files are yours; we don’t use them to train AI or machine-learning models, and we don’t sell them, ever.
Order and customer data from connected stores
If you connect a Shopify, Etsy, eBay, Wix, or WooCommerce store (or import Etsy orders via our browser extension), we ingest the order data needed to turn a sale into a print job and a shipped box: order line items, quantities, variant/SKU, buyer-supplied notes and personalization, fulfillment status, and the totals that drive your worklist and margin analytics. To fulfill and ship orders, this includes your customers’ personal information — the buyer’s name, shipping and billing address, and the email or phone number attached to the order, where the platform provides it.
We act as a processor of this customer data on your behalf. We request only the minimum scopes and fields those integrations require; we use the data only to sync, route, fulfill, and ship your orders; we never use it to market to your customers, to sell, or to train AI models; and we never share it with data or information brokers. We store the access tokens needed to keep an integration in sync, and you can disconnect a store at any time, which stops further sync and triggers deletion as described below.
Shipping data
If you buy shipping labels, we process the ship-from and ship-to details (names, addresses, package weight/dimensions, contents and customs information for international shipments) needed to generate a label, and we share that data with our shipping technology provider (Shippo) and the selected carrier to produce the label and track the package. Generated labels and customs documents contain personal information and are stored in isolated storage. We also keep a per-account wallet ledger of your shipping charges, markups, fees, and carrier adjustments.
Billing information
Paid subscriptions and shipping charges are processed by Stripe. Your card details go directly to Stripe and are never stored on our servers — we keep only the billing state we need (plan, printer count, status, the Stripe customer/subscription identifiers, your wallet balance and ledger, and your card brand and last four digits as returned by Stripe). There is no revenue cut and no per-print or per-job charge for the platform; shipping labels carry their own usage-based fees.
Support data
When you contact support, we collect what you send us and may attach diagnostic context from your workspace (such as recent hub firmware versions, error logs, and recent jobs) to help us resolve the issue.
Usage and device data
Like most web services, we collect basic technical data when you use the site or app: IP address, browser or device type, pages and features used, and timestamps. We use this to keep the service secure, debug problems, and understand which features earn their keep.
How we use your data
- Run the product — monitor printers, drive the queue, slice and dispatch jobs, sync orders, generate shipping labels, and ship the worklist.
- Authenticate you and enforce role-based access across your team.
- Send transactional email — failure alerts, account and security notices, and billing receipts — via the Cloudflare Email Service, and push notifications to your devices.
- Process subscriptions and shipping charges and handle billing through Stripe.
- Maintain security, prevent abuse and fraud, and diagnose and fix issues.
- Improve the product, comply with our legal obligations, and respond when you contact support.
We do not sell, rent, or share your personal information, and we never share it with data or information brokers. We don’t take a cut of your sales. And we do not use your files, order data, customer data, or any anonymized, aggregated, or derived form of it to train, fine-tune, or develop any machine-learning model, large language model, or artificial- intelligence system, except where you or the relevant platform has given prior written consent. If you choose to connect your own external AI assistant to your workspace (see Terms, Section 11), you are directing us to share your data with that provider, whose own terms then govern.
Honoring deletion and platform signals
We honor the data-deletion mechanisms the marketplaces require, and we apply a uniform deletion commitment across all of them:
- We implement and honor Shopify’s mandatory compliance webhooks —
customers/data_request,customers/redact, andshop/redact(which erases a store’s data after the app is uninstalled). - We implement and honor eBay’s Marketplace Account Deletion/Closure notifications and purge that user’s personal data on receipt.
- For every connected store, we delete or irreversibly anonymize the synced personal data within 30 days of: disconnecting the store, revoking API access, closing the account, the data no longer being needed, or any valid deletion request from you, your customer, or the platform — except for the minimum we must retain for legal, tax, or fraud-prevention purposes.
Subprocessors
We rely on a small set of vetted vendors to operate the service. Each receives only the data needed for its job, under its own privacy and security terms and under contract with us:
- Cloudflare, Inc. — application compute, file storage, caching/CDN, and transactional email (Cloudflare Email Service).
- Neon — our primary database (serverless Postgres), hosted in the United States.
- Fly.io — real-time WebSocket, camera relay, and cloud-slicing infrastructure.
- Stripe — payment processing for subscriptions and shipping charges, and card vaulting.
- Shippo — shipping-label purchase, tracking, and address/customs handling (receives ship-to and customs data).
- Google, Microsoft, and Apple — only if you choose to sign in with one of them, and Apple for push notifications to iOS devices.
- Shopify, Etsy, eBay, Wix, and WooCommerce — only for stores you choose to connect, to exchange order and fulfillment data.
A current list of subprocessors is maintained on our Subprocessors page. We remain responsible for our subprocessors’ handling of personal data.
Where your data lives
AutoPrintFarm is hosted on US-based cloud infrastructure. Your data is encrypted in transit with TLS and encrypted at rest. Access to production systems is limited to the people who need it to operate and support the service.
If you or your customers are located in the European Economic Area, the United Kingdom, or Switzerland, your data is transferred to and processed in the United States. We rely on the European Commission’s Standard Contractual Clauses (and the UK Addendum where applicable) as the safeguard for these transfers.
Data retention
We keep your account, files, and operational data for as long as your account is active so the product works as expected. Some records are pruned automatically — for example, hub error logs are deleted after 30 days, and raw printer telemetry within 14 days. Connected-store customer data is deleted on the schedule described above. When you delete your account, we delete or anonymize your personal data within a reasonable period, except where we’re required to retain certain records (such as billing history for tax and accounting). Backups are purged on a rolling schedule.
Security
Security is foundational, not a feature. We encrypt data in transit (TLS) and at rest, enforce role-based access on every paid plan, isolate each tenant’s data, and isolate sensitive stores (uploaded print files, shipping labels and customs documents) from public-facing routes. Passwords are stored only as secure hashes, never in plain text. The Wi-Fi hub makes only outbound connections and opens no inbound ports. SSO/SAML and exportable audit logs are available on request. No system is perfectly secure, but we work to protect your data and to respond quickly if something goes wrong; if a breach affects your data, we’ll notify you and, where we act as your processor, the affected platform as required.
Your rights and choices
You have control over your data. Depending on where you live, you may have additional rights under laws such as the EU/UK GDPR and the California Consumer Privacy Act (CCPA/CPRA), including:
- Access and portability — view and update your account details from the app, or ask us for a copy of your data.
- Correction — ask us to fix inaccurate personal data.
- Deletion / erasure — delete your account, which removes your personal data subject to the retention rules above.
- Restriction and objection — ask us to restrict or object to certain processing, and withdraw consent where processing is based on consent.
- Opt out of sale/sharing — we do not sell or share your personal information, so there is nothing to opt out of, but you may still tell us your preferences.
- Non-discrimination — we won’t treat you differently for exercising these rights.
- Disconnect integrations — unlink any connected store at any time to stop further order sync.
- Email preferences — transactional emails are part of the service; you can manage non-essential communication settings.
- Complain — you may lodge a complaint with your local data-protection authority.
To exercise any of these, email legal@autoprintfarm.com or nate@autoprintfarm.com — a real person reads it. We may need to verify your identity first. You may use an authorized agent where the law allows. If your personal data was provided to us by a merchant who uses AutoPrintFarm (i.e., you’re their customer), please direct your request to that merchant; we’ll assist them as their processor.
Cookies
We use cookies and similar technologies to keep you signed in, remember preferences, and understand how the site and app are used. Essential cookies are required for the service to function. You can control non-essential cookies through your browser settings, though disabling some may affect how the product works. See our Cookie Policy for details.
Children
AutoPrintFarm is a business tool and is not directed to children under 13 (or the minimum age in your jurisdiction). We don’t knowingly collect personal information from children. If you believe a child has provided us data, contact us and we’ll delete it.
Changes to this policy
We may update this policy as the product evolves or the law changes. When we make material changes, we’ll update the “last updated” date above and, where appropriate, notify you in the app or by email. Continued use of AutoPrintFarm after an update means you accept the revised policy.
Contact
Questions about this policy or your data? Email legal@autoprintfarm.com or nate@autoprintfarm.com. AutoPrintFarm LLC is a Delaware limited liability company. For sales or demo inquiries, reach nate@autoprintfarm.com.
This document is a reasonable draft intended for review by your legal counsel; it is not legal advice and does not assert certification under any specific regulatory framework.