Privacy Policy

Last updated: April 27, 2026

1. Information We Collect

ShipFence is a Shopify app that enforces shipping restrictions at checkout. To provide this service, we collect and process the following data when a checkout is blocked:

  • Checkout token — to identify the checkout session
  • Customer email address — if provided at checkout
  • Shipping address — city, state/province code, and ZIP/postal code
  • Product information — Shopify product ID and title of the blocked item
  • Reason for blocking — the restriction rule that was triggered
  • Timestamp — when the block occurred

We also store your Shopify session data (shop domain, access tokens) as required by the Shopify app platform to authenticate and operate the app.

2. How We Use Your Information

All data collected is used exclusively for compliance enforcement and operational purposes:

  • Enforcing shipping restriction rules at Shopify checkout
  • Displaying blocked order logs to the merchant in the ShipFence dashboard
  • Generating CSV exports of blocked orders for compliance audits

We do not use your data for marketing, advertising, profiling, or analytics. We do not sell, rent, or share your data with any third parties.

3. Data Retention

Blocked order records are automatically deleted after 30 days to minimize data retention. Merchants can export their blocked order data before it is deleted.

When a merchant uninstalls ShipFence, their shop record, rules, and configuration are preserved for 30 days to support reinstallation. After a Shopify shop/redact webhook is received, all shop data — including rules, blocked orders, and settings — is permanently and irreversibly deleted.

4. GDPR Compliance

ShipFence implements all required Shopify GDPR webhook handlers:

  • Customer data request — returns all stored data associated with a customer email (blocked order records including checkout token, shipping address, product info, and timestamps)
  • Customer data erasure — anonymizes all personally identifiable information (email, city, state, ZIP) in blocked order records while preserving the audit trail
  • Shop data erasure — permanently deletes all data associated with the shop, including the shop record, rules, blocked orders, and sessions

5. Data Storage & Security

Your data is stored in a PostgreSQL database hosted on secure, encrypted infrastructure. All data in transit is encrypted via TLS/HTTPS. Access to the database is restricted to the ShipFence application only.

Shopify session tokens and API credentials are stored securely and are never exposed to the client or logged.

6. Third-Party Services

ShipFence integrates with the following third-party service:

  • Shopify — for app authentication, checkout validation, billing, and webhook delivery. Shopify's privacy policy applies to data processed by Shopify.

We do not use any analytics, tracking, or advertising services.

7. Contact

If you have questions about this privacy policy or want to exercise your data rights, please contact us at contact@shipfence.com.