DigiTonz

PRIVACY POLICY – DGT SMART WARRANTY APP

Effective Date: June 13, 2026

Company: Digitonz
Website: https://digitonz.com

Digitonz (“we”, “our”, “us”) provides Shopify applications (“Apps”), including DGT Smart Warranty. This Privacy Policy explains how we collect, use, process, and protect personal data when merchants install and use our Apps.

1. Scope and Role

This Privacy Policy applies to:

  • Shopify merchants using our App

  • Customers of those merchants whose data is processed through Shopify APIs

Digitonz acts as a data processor, while the merchant remains the data controller responsible for customer data.

2. Data We Collect

From Shopify (via API)

  • Customer data including name, email address, phone number, and customer ID

  • Order data including order numbers, purchased products, and transaction details

  • Product data necessary for warranty registration and management

  • Store data including shop domain and configuration details

From Merchants

  • Contact and account information

  • Warranty settings and configuration data

  • Brand configuration and support details

  • Usage and interaction data

We collect only the minimum data necessary to provide warranty and claims management services.

3. How We Use Data

We use collected data to:

  • Create and manage product warranties

  • Process warranty registrations and approvals

  • Generate warranty certificates

  • Manage customer claims and warranty requests

  • Track returns, repairs, replacements, and RMAs

  • Send warranty-related notifications and updates

  • Authenticate users and maintain secure access

  • Improve app performance, reliability, and security

We do not sell or rent personal data.

4. Warranty Data Processing

When the App is used:

  • Warranty records are linked to products, orders, and customers

  • Customer warranty registrations may be stored in centralized databases

  • Warranty certificates and claim records may be generated and maintained by the App

  • Data may be hosted on secure third-party infrastructure such as DigitalOcean or equivalent providers

Merchants remain responsible for obtaining any necessary consents from their customers.

5. Legal Basis for Processing

We process personal data based on:

  • Merchant authorization through Shopify app installation

  • Legitimate interest in providing warranty management functionality

  • Compliance with legal obligations

6. Data Sharing

We share data only with:

  • Shopify, as required for app functionality

  • Trusted hosting and infrastructure providers

  • Service providers necessary to operate the App

We do not share personal data with advertisers or unauthorized third parties.

7. Data Retention

We retain personal data:

  • For as long as necessary to provide warranty services

  • For warranty, audit, security, and compliance purposes

  • As required by applicable laws

Upon app uninstallation:

  • Data is deleted or anonymized within a reasonable timeframe unless retention is legally required

8. Data Security

We implement appropriate technical and organizational measures, including:

  • HTTPS encryption for data in transit

  • Secure cloud storage for data at rest

  • Access control and authentication mechanisms

  • Activity monitoring and system logging

  • Restricted administrative access

9. Customer Rights

Depending on applicable laws, customers may:

  • Request access to their personal data

  • Request correction of inaccurate information

  • Request deletion of personal data

  • Restrict or object to processing

Merchants are responsible for responding to such requests. We assist merchants where required.

10. International Data Transfers

Data may be processed and stored in countries outside the merchant’s jurisdiction. We implement appropriate safeguards in accordance with applicable laws.

11. Third-Party Services

We rely on third-party providers such as:

  • DigitalOcean or equivalent cloud hosting providers

  • Shopify platform services

  • Email delivery providers used for warranty notifications

These providers maintain industry-standard security practices.

12. Data Breach and Incident Response

In the event of a data breach or security incident:

  • We will take immediate steps to secure affected systems

  • Investigate and mitigate the issue

  • Notify affected parties when required by law

13. Children’s Data

Our App is not intended for use by individuals under the age of 18, and we do not knowingly collect personal data from minors.

14. Changes to this Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on this page with a revised effective date.

15. Contact

Email: helpdesk@digitonz.com

Website: https://digitonz.com