Last updated: [DATE] · Replace bracketed placeholders before publishing.
1. Who we are
- App: Pourmit
- Provider: [Legal entity name], [address]
- Contact: [privacy@yourdomain.com]
2. Data we access (and whether we store it)
| Data | Source | Why | Stored? |
|---|---|---|---|
| Shop domain, plan, app settings | Shopify on install | Run the app for your store | Yes (your shop record) |
| Products & collections you select for a rule | Admin API (read) when you pick them | Define which products a rule applies to | Only the product/collection ID + title in your rule |
| Order ship-to state/province + country | Checkout (Shopify Function) | Decide if a cart item can ship to that state | No — read transiently during the check; never persisted |
| Age-gate / terms confirmations | Your storefront, via app proxy | Record that a visitor confirmed (“verified at <time> via self-attestation”) | Yes — timestamp + method only |
We do not access or store: customer names, emails, phone numbers, full addresses, payment details, dates of birth, or government IDs. The age gate is self-attestation — the visitor's date of birth (if your chosen template asks for it) is checked in the browser and is never sent to or stored by us.
3. Protected Customer Data (PCD)
The only Protected Customer Data Pourmit touches is the ship-to province/country, read transiently inside the checkout validation function to make the block decision. It is not stored and not linked to any customer identity. Our audit log records only the 2-letter state code and the decision — never a full address or a customer identifier.
4. What the audit log contains
Each event row holds: timestamp, event type (age gate / terms confirm / checkout allowed / blocked), result, 2-letter ship-to state (where relevant), and references to the product/rule/order. No personal data. You can export it as CSV and it is deleted with your shop data (Section 7).
5. How we use data
Solely to provide the app's features: enforce the rules you configure, render the storefront gate/confirmation, and maintain your audit trail. We do not use any AI/LLM, do not sell or share data, and use no advertising or third-party analytics on your customers.
6. Sub-processors & hosting
Data is hosted on secure cloud infrastructure and processed by Shopify as part of the platform. We do not share data with any other third parties.
7. Retention & deletion
- Audit events are retained for [24] months (configurable) or until you uninstall.
- On uninstall, sessions are deleted immediately; 48 hours later Shopify sends a
shop/redactrequest and we delete all of your shop's data (settings, rules, audit events). - We honor Shopify's mandatory GDPR webhooks:
customers/data_request,customers/redact(we hold no customer data to return or erase), andshop/redact(full deletion).
8. Security
Data is encrypted in transit (HTTPS) and at rest by our hosting provider. Access is restricted to the app's operation. Webhooks are verified by HMAC signature.
9. Your rights
Under GDPR/CCPA you may request access to or deletion of data. Since we store no customer
personal data, customer requests routed via Shopify's customers/data_request /
customers/redact return no personal data. Merchants can contact
[privacy@yourdomain.com] for their shop data.
10. Legal disclaimer
Pourmit helps you enforce your own rules; it does not guarantee legal compliance. You remain responsible for confirming and meeting your own legal obligations.
11. Changes
We may update this policy; the “Last updated” date will change and material changes will be communicated in-app or by email.