Shopify App Privacy Policy

Header illustration Header illustration
Hero media illustration Hero media illustration

We take privacy and security seriously. We will never farm or sell your personal information.

This app is designed to avoid collecting data except where it is necessary for the proper functioning and maintenance of the app.

What Information Do We Collect?

When you add the app to your Shopify store or authenticate we automatically (due to the nature of how the internet works) become privy to some information about you, including: IP address, operating system, browser version, language, access time, timezone and certain cookies.

When you purchase the app some basic information about you is shared with us via Shopify. You will have agreed this as part of the Shopify's Terms of Service.

Sessions & Cookies

Shopify apps use "cookies" as part of the secure OAuth flow to authenticate you with the app. As such we use cookies to track a temporary session as part of Shopify's standard model for OAuth.

Logging & Analytics

Behind the scenes are app performs logging to allow monitoring its health and debug problems. This logging is anonymous, non-identifying and stats are aggregated across all users. Logging and stats are stored on 3rd party services that we use to host the product:

  • Render.com
  • Sentry.io

How do we use your information?

We use this information to run the app and for legitimate business purposes:

  • To provide our service.
  • To communicate with you for administrative purposes.
  • To communicate with you for the purpose of inviting you to participate in customer research, run marketing campaigns, request feedback and advise you on promotions & news.
  • To enforce our terms and policies and protect you, us and our service.
  • To comply with legal obligations, governmental requests, court orders or legal process.
  • To provide customer support and to understand customer needs.
  • To run analytics that helps us improve the services we offer.

Do We Share Your Information With Third Parties?

No - We will not sell or share your information with third parties, except:

  • To comply with legal obligations, governmental requests, court orders or legal process.
  • When it is necessary to do so for the proper functioning of the service, for example storing logs or events on our cloud provider platform.
  • To protect the rights, property and safety of any person or entity.

Your rights - Data retention, Access & Correction

We do not retain your information once it is no longer necessary for us to store or process it for our legitimate business needs as outlined in this Privacy Policy, unless a longer retention period is required by law.

Where it is practical to do so your information will be deleted or anonymised immediately or within a reasonable timeframe when it is no longer necessary for us to retain it. Where this is not possible, such as when your data has been archived in cold data backups, we will securely store your personal information and isolate it from any further processing for the entire lifetime of the backup (usually 1 to 6 months).

In some jurisdictions, such as the EEA, you have data protection rights giving you control over the personal information that hold about you, including rights to:

  • Access the personal information we retain about you.
  • Have the personal information we retain about you updated to maintain correctness.
  • Have your personal information deleted in its entirety.
  • Withdraw permission for us to process your personal information.

To exercise these rights you will need to contact us at policy [at] wavefrontinventive [dot] com. We will endeavour to respond to such requests within a reasonable timeframe.

Changes To This Policy

We reserve the right to revise this Privacy Policy at any time without notice and for any reason, at our sole discretion. You should review the current Privacy Policy regularly.