Privacy Policy

1. Introduction

MetafieldWatch ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Shopify application.

2. Information We Collect

2.1 Data from Shopify APIs

When you install MetafieldWatch, we access the following data through Shopify's APIs:

• Product data: Product titles, IDs, and associated metafields
• Collection data: Collection titles, IDs, and associated metafields
• Customer metafields: Metafield keys, values, and namespaces (not personal customer information)
• Order metafields: Metafield keys, values, and namespaces (not order details or customer information)
• Shop metafields: Store-level metafield configurations

2.2 Session Data

We store the following session information to authenticate your access:

• Shop domain (e.g., your-store.myshopify.com)
• Access token (encrypted)
• Installation date

2.3 App Usage Data

We collect data about how you use the app:

• Scan history (health scores, issue counts, timestamps)
• Import history (file names, success/failure counts)
• Feature usage and settings preferences

3. Information We Do NOT Collect

MetafieldWatch does not collect:

• Personal information of your customers (names, emails, addresses)
• Payment or financial information
• Order details or transaction history
• Customer browsing behavior or cookies on your storefront

4. How We Use Your Information

We use the collected information solely to:

• Provide metafield scanning, editing, and management features
• Calculate health scores and detect issues
• Display historical scan data and trends
• Process bulk imports and exports
• Improve app functionality and user experience

We do not use your data for advertising, marketing to your customers, or any purpose unrelated to the app's core functionality.

5. Data Sharing

We do not sell, rent, or share your data with third parties, except:

• Shopify: As required to operate within the Shopify platform
• Infrastructure providers: Our hosting provider (Railway) processes data to run the application. They do not have access to your data for their own purposes.
• Legal requirements: If required by law or to protect our rights

6. Data Storage and Security

Location: Your data is stored on servers in the United States.

Security measures:

• All data is transmitted over HTTPS (TLS encryption)
• Database access is restricted and password-protected
• Access tokens are stored securely
• We follow Shopify's security best practices

7. Data Retention

We retain your data as follows:

• Session data: For the duration of your app installation
• Scan history: Up to 12 months, or until you uninstall the app
• Import history: Up to 12 months, or until you uninstall the app

When you uninstall MetafieldWatch, we will delete all your data within 48 hours, in compliance with Shopify's requirements.

8. Your Rights

You have the right to:

• Access: Request a copy of the data we hold about your store
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data at any time
• Portability: Request your data in a portable format

To exercise these rights, contact us at help@metafieldwatch.com

9. GDPR Compliance

For merchants and customers in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR). Our legal basis for processing data is:

• Contract: Processing necessary to provide the app services you requested
• Legitimate interest: Improving and securing our application

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting a notice in the app or sending you an email.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us:

• 📧 Email: help@metafieldwatch.com