Effective Date: April 27, 2026
Company: Digitonz
Website: https://digitonz.com

Digitonz (“we”, “our”, “us”) provides Shopify applications (“Apps”), including Customer Loyalty Points. This Privacy Policy explains how we collect, use, process, and protect personal data when merchants install and use our Apps.

1. Scope and Role

This Privacy Policy applies to:

• Shopify merchants using our Apps
• Customers of those merchants whose data is processed through Shopify APIs

Digitonz acts as a data processor, while the merchant remains the data controller responsible for customer data.

2. Data We Collect

From Shopify (via API)

• Customer data including name, email, and customer ID
• Order data including purchase history and transaction values
• Store data including shop domain and configuration details

From Merchants

• Contact and account information
• App configuration settings
• Usage and interaction data

We collect only the minimum data necessary to provide our services.

3. How We Use Data

We use collected data to:

• Provide loyalty, rewards, and customer engagement features
• Calculate and manage loyalty points
• Synchronize customer data across multiple stores where enabled
• Authenticate users and maintain secure access
• Improve app performance, reliability, and security

We do not sell or rent personal data.

4. Multi Store Data Processing

When multi-store functionality is enabled:

• Customer data may be stored in centralized databases
• Data is synchronized across connected Shopify stores
• Data is hosted on secure third-party infrastructure such as DigitalOcean or equivalent providers

Merchants are responsible for ensuring lawful data sharing across stores and obtaining required consents.

5. Legal Basis for Processing

We process personal data based on:

• Merchant authorization via Shopify app installation
• Legitimate interest in providing app functionality
• Compliance with legal obligations

6. Data Sharing

We share data only with:

• Shopify, as required for app functionality
• Trusted infrastructure and hosting providers
• Service providers necessary to operate the App

We do not share data with advertisers or unauthorized third parties.

7. Data Retention

We retain personal data:

• Only for as long as necessary to provide services
• As required for legal, accounting, or security purposes

Upon app uninstallation:

• Data is deleted or anonymized within a reasonable timeframe unless retention is legally required

8. Data Security

We implement appropriate technical and organizational measures, including:

• HTTPS encryption for data in transit
• Secure cloud storage for data at rest
• Access control and authentication mechanisms
• Monitoring and logging of system activity

9. Customer Rights

Depending on applicable laws, customers may:

• Request access to their personal data
• Request correction or deletion
• Restrict or object to processing

Merchants are responsible for responding to such requests. We assist merchants where required.

10. International Data Transfers

Data may be processed and stored in countries outside the merchant’s jurisdiction. We ensure appropriate safeguards are applied in accordance with applicable laws.

11. Third Party Services

We rely on third-party providers such as:

• DigitalOcean or equivalent cloud hosting providers
• Shopify platform services

These providers maintain industry standard security practices.

12. Data Breach and Incident Response

In the event of a data breach or security incident:

• We will take immediate steps to secure the system
• Investigate and mitigate the issue
• Notify affected parties where required by law

13. Children’s Data

Our Apps are not intended for use by individuals under the age of 18, and we do not knowingly collect data from minors.

14. Changes to this Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on this page with a revised effective date.

15. Contact

Email: loyaltify@digitonz.com
Website: https://digitonz.com