Privacy Policy — PuffDots Shipping Protection

Last updated: June 10, 2025

PuffDots Shipping Protection ("the App", "we", "us") is operated by PuffDots ("the Developer"). This Privacy Policy explains what information the App collects, how it is used, and how it is protected when a merchant ("you") installs the App on a Shopify store, and when buyers interact with the App's storefront features.

By installing or using the App you agree to this Privacy Policy.

1. Who is responsible for your data

• For merchant account data and store data accessed via Shopify APIs, the Developer acts as a data processor on your behalf; you (the merchant) remain the data controller.
• Shopify Inc. is the platform provider. Your use of Shopify is governed by Shopify's own Privacy Policy and Data Processing Addendum.

2. Information we collect

2.1 Store & merchant data

When you install the App we receive and store:

• Your store domain (e.g. your-store.myshopify.com).
• Shopify API access tokens (stored encrypted at rest).
• Subscription / trial status for billing entitlement.

We do not store buyer personal information in our database.

2.2 Store data accessed through Shopify APIs

• Products — virtual products for shipping protection, donations, and additional protection or give-back forms (e.g. gift wrap, warranty).
• Orders — orders containing the App's services (dashboard, stats, orders).
• Customer data on those orders — for Shipping Protection claim handling (name, email, phone, shipping address, billing address on order detail). See §6.
• Files, themes, storefront cart setup — icons, cart widget mount, consolidated service fees.
• Storefront listings/inventory — render storefront pricing for additional protection or donation forms on product pages.

App configuration is stored in Shopify metafields on your store, not on our servers.

2.3 Buyer data

Buyer selections live in cart attributes / line item properties within Shopify. The App does not collect payment details or build marketing profiles.

2.4 Data we do NOT collect

• Payment/card information (handled by Shopify Checkout).
• We do not sell personal data or use your data to train third-party AI models.

3. How we use information

We use data solely to authenticate the App, provide features (shipping protection, checkout donations, and configurable protection or give-back forms), manage billing, and provide support. No advertising use.

4. How we store and protect data

• Tokens encrypted at rest (Fernet) in MongoDB; traffic over HTTPS/TLS.
• Hosting: application served at https://app.puffdots.com/ (self-hosted infrastructure). Database: MongoDB on the same infrastructure.
• Production access restricted to authorized personnel.

5. Sub-processors

• Shopify — platform and source of store data.
• Self-hosted infrastructure — application and database hosting for this App.

6. Protected Customer Data

The App's primary use of buyer PII is Shipping Protection claim handling. We read (but do not store) name, email, phone, shipping address, and billing address on protected orders so you can verify the shipment and contact the buyer about a claim — shown only inside your embedded admin.

7. Data retention & deletion

• Store/merchant records (domain, encrypted tokens, billing/trial ledger) are retained while the App is installed and, under the current operational policy, may be retained after uninstall for billing/trial continuity and operational records.
• We store no buyer PII off Shopify at any time.
• We honor Shopify's mandatory compliance webhooks:
  • customers/data_request — we hold no buyer PII to return; we acknowledge receipt with HTTP 200.
  • customers/redact — we hold no buyer PII to erase; we acknowledge receipt with HTTP 200.
  • shop/redact — we acknowledge receipt with HTTP 200; store records may be retained per the policy above unless manually deleted upon a verified request to contact@puffdots.com.
• app/uninstalled — we acknowledge receipt with HTTP 200; store records may be retained per the same policy.

We do not promise automatic erasure of store records on uninstall under the current implementation. Contact contact@puffdots.com to request manual deletion.

8. Your rights

Contact contact@puffdots.com to exercise access/deletion rights. Buyers should contact the merchant they purchased from.

9. International transfers

Data is processed where our hosting infrastructure operates. We use appropriate safeguards as required by law.

10. Changes

We may update this policy; material changes update the "Last updated" date.

11. Contact

• Privacy / data protection: contact@puffdots.com
• General support: contact@puffdots.com
• Operator: PuffDots