Privacy Policy

Last updated: 2026-05-12 · Publisher: ShipEasyCo · Contact: privacy@shipeasyco.com

1. Scope

This Privacy Policy describes how ShipEasyCo (“we”, “us”) collects, uses, and shares information through the ShipEasy Shopify app (the “App”) and related services. It applies to merchants who install the App on their Shopify store and, indirectly, to the customers of those merchants whose order data flows through the App for freight shipment processing.

2. Who is the data controller?

For data about merchants (Shopify store owners and their staff users): ShipEasyCo is the data controller.
For data about customers of those merchants (shipping recipients): the merchant is the data controller and we act as a data processor on the merchant’s behalf, processing only the data needed to generate and fulfill Bills of Lading.

If you are a merchant: you remain responsible for informing your customers that shipment data is shared with us as your processor.

3. Information we collect

3.1 From Shopify (when a merchant installs the App)

Shop identity: shop domain, shop ID, name, primary location
App OAuth: an offline access token (so we can call Shopify’s Admin API on the merchant’s behalf)
Permissions (“scopes”) the merchant grants us
Webhook deliveries for installation, scope changes, GDPR events, and Shopify App Billing events

3.2 About merchant orders selected for shipping

When a merchant uses the App to create a Bill of Lading for an order:

Shopify order ID, order number, order total, currency
Shipping address: name, company, street, city, state/province, postal code, country, phone number
Order line items (titles, quantities, SKUs) used to populate package descriptions
Package dimensions and weights (entered by the merchant or pulled from saved defaults)

3.3 About merchant staff using the App

Shopify user ID and email of the merchant staff member who clicks “Generate BOL” (recorded for audit purposes)

3.4 About App Billing

The amount of each per-BOL charge issued via Shopify’s App Billing
The status of each charge (pending, active, declined, expired, refunded)
A serialized snapshot of the purchase request so we can resume booking after merchant approval

3.5 Technical / operational data

Server logs (timestamps, request paths, error stack traces — with personally identifiable fields redacted before storage)
Error reports forwarded to Sentry (anonymized exception payloads)

We do not collect:

Payment card numbers or any payment instrument data — Shopify handles all payment processing; we never see card details.
Customer end-user behavioral analytics (mouse movements, scrolling, etc.).

4. How we use the information

Purpose	Legal basis (GDPR Art. 6)
Generate and book freight shipments via TAI Cloud and connected carriers	Performance of the contract between merchant and us
Send tracking information back to the merchant’s Shopify order	Performance of the contract
Charge the merchant’s Shopify App Billing for each BOL	Performance of the contract
Log errors and operational events for debugging	Legitimate interest in providing a stable service
Respond to GDPR data requests and deletion requests from the merchant or their customers	Legal obligation

We do not use merchant or customer data for advertising, profiling, or training machine-learning models.

5. Third parties who receive the data

We share data only with the providers needed to deliver the service:

Provider	What they receive	Why
Shopify	OAuth scopes, App Billing charges, webhook subscriptions	Platform integration
TAI Cloud (“TAI”)	Origin and destination addresses, package dimensions, carrier preference	Shipment booking and tracking
CEVA, Alliance, AIT	Shipping addresses and shipment details, via TAI	Actual physical shipment
Render	Encrypted database storage, application hosting	Infrastructure
Sentry	Anonymized error payloads	Error monitoring

We do not sell data to data brokers, advertisers, or any third party.

6. Where the data is stored

Application servers and database: Render, US-East / Oregon region.
Webhooks pass through Shopify’s global infrastructure.
Carrier APIs (TAI, CEVA, Alliance, AIT) may operate from various US-based data centers.

If you are an EU-based merchant or your customers are EU residents, your data crosses the Atlantic. We rely on Standard Contractual Clauses with our sub-processors where applicable.

7. How long we keep the data

Data class	Retention
Shopify session tokens	Until the merchant uninstalls the App, then deleted within 48 hours per Shopify’s `shop/redact` webhook
Shipment records (post-delivery)	Indefinite, retained for merchant audit / accounting purposes. Merchant may request deletion.
Order-attached customer addresses	Redacted on receipt of Shopify `customers/redact` webhook for the affected order
Server logs	90 days
Error reports in Sentry	According to Sentry’s retention (typically 30–90 days)
Audit logs	Retained for operational purposes; we may delete entries older than 2 years on request

A merchant who uninstalls the App and waits 48+ hours triggers Shopify’s shop/redact event, after which all data tied to their shop is hard-deleted from our database via cascade delete on the Shop record.

8. Rights of merchants and their customers

If you are a merchant, you may:

Request a copy of the data we hold about your shop or your customers’ orders. Use Shopify’s customer data request webhook, or email privacy@shipeasyco.com.
Request deletion of any specific customer’s data. Use Shopify’s customer redact webhook, which we honor automatically. We also honor direct requests by email.
Uninstall the App at any time. Doing so terminates our right to process your data and starts the deletion clock.

If you are a customer of a merchant using ShipEasy: your data is processed under your merchant’s privacy policy. Contact the merchant directly to request access or deletion. Shopify will route your request to us as the merchant’s processor; we will action it within 30 days as required by GDPR Art. 12(3) / CCPA equivalent.

Under GDPR you may also lodge a complaint with your supervisory authority.

9. Security

All connections to and from the App use TLS 1.2 or higher.
OAuth access tokens, admin tokens, and session cookies are encrypted at rest in the database.
Production secrets are managed in Render’s Env Groups with access limited to authorized operators.
The cross-tenant admin interface is protected by a strong shared token and signed session cookies.
We do not store payment card data or any payment instrument information.
Logs are sanitized of credentials and known PII fields before storage.

No system is perfectly secure, but we take reasonable steps to protect the data entrusted to us and will notify the relevant Shopify merchant and applicable regulators of any breach within 72 hours of discovery as required by GDPR Art. 33.

10. Cookies and similar technologies

The App runs inside a Shopify admin iframe. The only cookie the App sets is an opaque session cookie used by Shopify App Bridge to authenticate API calls. We do not use third-party analytics or advertising cookies.

11. Children

The App is a B2B tool for Shopify merchants. It is not intended for use by individuals under the age of 16, and we do not knowingly collect data from them.

12. Changes to this policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top will reflect any changes. For material changes, we will notify merchants by an in-app notice or email at least 30 days before the new version takes effect.

13. Contact

Email: privacy@shipeasyco.com
Postal address available on request.

If you are a customer of a merchant using ShipEasy and want to exercise your rights about your shipment data, please contact that merchant first; they will route the request to us.

14. Sub-processor list

We maintain an up-to-date list of sub-processors. The current list is the set of providers identified in Section 5 (Shopify, TAI Cloud, the named carriers, Render, Sentry). We will notify merchants by in-app notice or email at least 30 days before adding a new sub-processor.