Omnys connects to sensitive store data. We treat that responsibility seriously — with infrastructure, practices, and policies to match.
Omnys connects to your Shopify store using the official Shopify OAuth flow. We request only the scopes required to power the features you use. We do not store your Shopify Admin API credentials — only scoped access tokens.
Omnys runs on enterprise-grade cloud infrastructure with automated backups, DDoS mitigation, and 99.9% uptime SLA. Our stack is designed for horizontal scale and zero single points of failure.
We use Supabase for database and storage, which provides PostgreSQL with row-level security, automatic backups, and SOC 2 Type II compliance.
Found a security issue? We appreciate responsible disclosure. Contact us at security@omnys.app with details and we will respond within 48 hours. Please do not publicly disclose vulnerabilities before we have had a chance to address them.