1. Introduction
LeadNotio ("we", "our", or "us") is a Shopify application that provides customer outreach and CRM management tools for Shopify merchants. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you install and use our application.
By installing LeadNotio, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our application.
2. Information We Collect
We collect the following categories of information to provide and improve our service:
- Shop information: Your Shopify store domain, shop name, plan, currency, and timezone.
- Customer data: Customer names, email addresses, phone numbers, order history, and tags — accessed via the Shopify API to power your CRM pipeline.
- Outreach data: Notes, activity logs, follow-up dates, pipeline statuses, and team assignments that you create within LeadNotio.
- Staff information: Shopify staff member names used for team assignment features.
- Usage data: App usage patterns, feature interactions, and performance data to help us improve the product.
3. How We Use Your Information
We use the information we collect to:
- Provide, operate, and maintain LeadNotio's features
- Sync customer and outreach data between LeadNotio and your Shopify store
- Allow team members to collaborate on customer outreach within your store
- Send you important service communications (e.g., billing, security alerts)
- Improve, personalize, and expand our application
- Understand and analyze how you use our application
- Develop new features and functionality
- Prevent fraud and ensure application security
4. Data Storage and Security
Your data is stored securely using industry-standard practices. We use Supabase (PostgreSQL) for data storage with row-level security enabled. All data is encrypted in transit using TLS/HTTPS.
We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or electronic storage is 100% secure.
5. Data Retention
We retain your data for as long as your LeadNotio subscription is active. When you uninstall LeadNotio, we process a shop deletion request and remove your store's data from our systems within 30 days, in compliance with Shopify's data requirements.
You may request deletion of your data at any time by contacting us at support@leadnotio.com.
6. Sharing of Information
We do not sell, trade, or rent your personal information to third parties. We may share data only in the following limited circumstances:
- Service providers: We use trusted third-party services (Supabase, Render) solely to operate our application. These providers are contractually obligated to protect your data.
- Legal requirements: We may disclose information if required by law, court order, or government authority.
- Business transfers: If LeadNotio is acquired or merged, your data may be transferred as part of that transaction. We will notify you before this occurs.
7. Shopify Customer Data (GDPR Compliance)
LeadNotio accesses and stores Shopify customer data as part of its core CRM functionality. In compliance with Shopify's requirements and the GDPR, we support the following data subject rights:
- Data access requests: If a customer requests their data from your store, LeadNotio will provide all outreach data associated with that customer.
- Data erasure requests: If a customer requests deletion, LeadNotio will delete all outreach records associated with that customer.
- Shop redaction: When a shop is deleted, all associated data is removed from our systems within 30 days.
These requests are handled automatically via Shopify's GDPR webhook system.
8. Cookies
LeadNotio is an embedded Shopify app and does not use tracking cookies. We use session cookies only where required by Shopify's embedded app framework for authentication and security purposes.
9. Children's Privacy
LeadNotio is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a minor, please contact us immediately.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page and, where required, by sending a notification through the app. Your continued use of LeadNotio after changes are posted constitutes acceptance of the updated policy.
11. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your data, please contact us:
- Email: support@leadnotio.com
- Website: leadnotio.com/contact