Smart Fees & Add-Ons Privacy Policy

Smart Fees & Add-Ons ("the App") provides product and cart add-on fee functionality ("the Service") to merchants who use Shopify to power their stores. This Privacy Policy describes how personal information is collected, used, and shared when you install or use the App in connection with your Shopify-supported store.

Personal Information the App Collects

When you install the App, we request access to your Shopify account under the following scopes. We use each only as described:

• Shop information (OAuth session): store domain (e.g. your-store.myshopify.com) and basic shop metadata to identify and connect to your store.
• read_themes: read-only access to your store themes to detect whether the app embed is installed and active, and to synchronize fee-related assets with your theme.
• read_products: read-only access to your products, collections, variants, and related metadata (e.g. product tags and vendors) so you can configure which products or conditions display add-on fees.
• read_customers: read-only access to your store's customer tags. We use this so you can configure fee rules that depend on customer tags (e.g. show a fee only to customers with a specific tag). We fetch tag names when you use the app (e.g. in the fee rule builder); we do not store your customers' personal data (names, emails, or purchase history) in our database. Customer tag data may be used at checkout to evaluate which fees apply.
• write_products: we create or update products when required by the Service (for example, a bundle product used to represent cart fees in the cart). We also write metafields on your store (e.g. Cart Product Fees Config and Cart Product Fees List) to sync fee configuration to your storefront.
• write_publications: we publish certain products (e.g. the cart-fee bundle product) to your Online Store publication so they are available on your storefront and in the cart.
• write_cart_transforms: we create and manage cart transform functions for your store so that add-on fees are applied and displayed correctly in the cart.
• unauthenticated_read_product_listings: used by our storefront extension so that product listing data can be read on your storefront (e.g. to show fees) without requiring a logged-in session.

In addition, once you have installed the App, we store the following in our own database to provide the Service:

• Shop account information: shop domain, subscription status (e.g. plan type, trial start date), and technical session identifiers to keep the app connected to your store.
• Fee configuration: fee names, enabled status, fee types (product or cart fee), input types (checkbox, dropdown, radio, text, date, or hidden), price type (fixed or percent), options and pricing, required/optional and apply-once-per-item settings, descriptions, fee name format, targeting rules (products, collections, variants, tags, vendors), location targeting (countries and states), cart rules (e.g. cart subtotal, quantity, weight, customer tags), and other display and app settings you configure.
• Product and collection targeting data: identifiers for products, collections, variants, tags, and vendors you select for fee targeting.
• App configuration: storefront access token (if used), cart settings, selectors, cart labels, styling, and theme-related preferences.

The app does not collect,store,or process personal information about your store's customers or visitors. The app only displays and processes fees on your storefront based on the products being viewed or added to cart. No customer data (such as names, email addresses, or purchase history) is collected or stored by the App.

We may collect technical information automatically when you or your staff use the App (e.g. IP address, browser details, time zone, cookies, and basic usage logs such as which parts of the app were accessed and when).

How We Use Your Personal Information

We use the information we collect to provide and operate the Service. This includes:

• Displaying product and cart add-on fees on your storefront and in the cart based on your configuration (optional fees such as checkboxes or dropdowns, and auto-applied fees), including evaluation of customer-tag-based rules where you have configured them.
• Storing and applying your fee configurations (pricing, targeting, cart rules, location targeting, display settings).
• Writing and syncing fee data to your Shopify store via metafields (e.g. Cart Product Fees Config and Cart Product Fees List) so fees display and work on your storefront and in the cart.
• Creating or updating products (e.g. a bundle product for cart fees) and publishing them to your Online Store when required by the Service.
• Creating and managing cart transform functions for your store so fees are applied and displayed correctly in the cart.
• Communicating with you about the App (e.g. support, updates, or billing).
• Maintaining and improving the App's performance, reliability, and security, and debugging issues.

Sharing Your Personal Information

We share your information with third parties to help us provide the Service, as described above. For example:

• Shopify: we use Shopify's APIs to store and retrieve fee configuration (including metafields), to create or update products and publish them to your Online Store when needed, and to create and manage cart transform functions. Fee data in metafields on your store is what allows fees to display and apply on your storefront and in the cart.
• Hosting and infrastructure providers: the App is hosted on third-party infrastructure (for example, cloud hosting and managed databases). These providers may process stored configuration data, application logs, and technical data needed to operate the App.

We may also share your personal information to comply with applicable laws and regulations, to respond to a subpoena, search warrant, or other lawful request for information, or to otherwise protect our rights.

We do not sell or rent your personal information to third parties.

Your Rights

If you are a European resident or otherwise benefit from data protection rights under applicable law, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us using the information in the Contact Us section below.

In many cases we act as a processor on behalf of Shopify merchants. We may need to retain certain information where we have a legal obligation or a legitimate business reason (for example, records required for fraud prevention, security, or accounting).

Your information will be transferred outside of Europe, including to Canada and the United States (for example, when we use US-based hosting providers or when data is stored in Shopify's infrastructure).

Data Retention

We retain shop and configuration data for as long as your store has the App installed, and for a reasonable period afterward in case you reinstall or for audit, security, and legal purposes.

We retain operational and technical data (for example, application logs and usage statistics) for as long as necessary to maintain the Service, debug issues, and comply with legal obligations.

When you uninstall the App, we delete your fee configurations and related data from our database (including via Shopify's SHOP_REDACT webhook). Data that exists in Shopify (metafields, any products we created such as a cart-fee bundle, publications of those products, and cart transform functions) may remain in your store until you remove them or Shopify's data retention policies apply.

Changes

We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices, changes to the Service, or for legal, regulatory, or operational reasons. We will post the updated policy at this URL and update the "Last updated" date where appropriate.

Contact Us

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, you can contact us:

• By email: support@webpanda-solutions.com