AvatarPortfolio

Choosing Not to Store Customer Data Internally

Design philosophy of storing customer data in Shopify from security and operational cost perspectives

customer dataShopifysecuritydesign philosophy
3 min read

About This Topic

One of the most important design decisions in headless EC development is "where to store customer data." This project adopted the policy of storing all customer data in Shopify and not storing any data on our own servers.

This is not just a technical choice, but a strategic decision derived from security, legal liability, and operational cost perspectives.

Why This Design Decision Matters

When operating an EC site, customer data management is an unavoidable challenge. Traditionally, the mindset that "storing data internally is standard" was mainstream, but this comes with more risks and costs than imagined.

Risks of Internal Storage

Security responsibility
Specific ContentLegal liability and damages in case of data breach
Operational costs
Specific ContentSecurity audits, vulnerability response, backup management
Personal data protection law compliance
Specific ContentPurpose disclosure, access requests, deletion requests
PCI DSS compliance
Specific ContentStrict standards when handling credit card information

Benefits of Storing in Shopify

Delegated security
DetailsShopify maintains world-class security
Distributed legal liability
DetailsShared responsibility with Shopify as data processor
Cost reduction
DetailsNo investment in security infrastructure required
Reliability
DetailsTrack record and trust of a major platform

Basic Design Principles

Your server (Vercel, etc.) only temporarily processes customer data and does not store it persistently. Authentication and session information are also managed with minimal validity periods.

Data Flow
Customer enters form data

Submit data via registration or my page updates

Your server (Vercel, etc.)

Temporary processing only. Validation and API calls. Data is not stored

Shopify

Persistent storage. Customer data protected under world-class security management

For Those Who Want to Learn More

This design philosophy is explained in detail in three articles.

1. Security and Shared Responsibility

Detailed explanation of why not to store customer data internally, from security and legal liability perspectives.

-> Security and Shared Responsibility

2. Passwordless Authentication

Explanation of authentication concepts in headless architecture and passwordless authentication implementation approaches.

-> Passwordless Authentication

3. Utilizing Metafields

How to manage additional information needed for Japanese EC sites, such as furigana and birthdate, using Shopify metafields.

-> Utilizing Metafields

What This Design Enables

For Operations

  • Significantly reduced security response costs and effort
  • Minimized data breach risk
  • Reduced burden of personal data protection law compliance

For Customers

  • Personal information protected by world-class security
  • Easy and secure passwordless login
  • Consistent customer experience across all channels

Related Topics

Why Not Store Customer Data Internally

Design decisions from the perspective of security risks and legal liability

securitypersonal data protectiondata management

Managing Extended Information with Metafields

How to manage furigana, birthdate, and other information needed for Japanese EC sites using Shopify metafields

metafieldShopifyextended information

Online-Offline Integration

Unified customer management across EC and store with common key

OmnichannelPOSCustomer Integration

Authentication Approach in Headless Architecture

Achieving both customer experience and security with passwordless authentication

passwordlessauthenticationOTP
Online-Offline IntegrationCustomer Data Security