Overview
Warnify is a Shopify app that helps merchants show product and cart warnings, collect customer acknowledgments, and keep consent evidence for configured warning rules.
This Privacy Policy explains what information Warnify processes when a merchant installs and uses the app.
Information we collect
Shop information: store domain, shop name, contact email, plan, currency, timezone, and primary domain provided by Shopify.
App configuration: warning rules, warning copy, selected products, selected variants, product tags, display settings, validation settings, and storefront styling settings created by the merchant.
Consent records: rule name, rule version, warning title and message snapshots, checkbox label, product IDs, variant IDs, cart token, checkout ID, order ID when available, source page, acceptance status, and acceptance time.
Authentication and session data: Shopify OAuth/session records needed to keep the app installed and connected to the merchant's Shopify store.
Information we do not intentionally collect
Warnify does not intentionally collect payment card data, billing addresses, customer passwords, or unnecessary customer profile data.
Warnify is designed to store consent context rather than full customer identity. Shopify may provide order or checkout identifiers so consent evidence can be connected to the relevant transaction.
How we use information
We use shop and configuration information to render warning blocks on the storefront, match rules to products or cart contents, and enforce required acknowledgments when checkout validation is enabled.
We use consent records to help merchants review what warning was shown, when it was accepted, and which product or variant context was involved.
We use technical and session information to authenticate the app, maintain security, troubleshoot issues, and comply with Shopify platform requirements.
Sharing and subprocessors
Warnify does not sell personal information.
Warnify shares data with Shopify as needed to provide the app, including app proxy requests, OAuth, webhooks, cart attributes, metafields, and checkout validation.
Warnify may use hosting, database, logging, and infrastructure providers to operate the app. These providers process data only as needed to deliver and maintain the service.
Cookies and local storage
Warnify may use Shopify session cookies or related browser storage as part of the embedded app authentication flow.
On the storefront, Warnify may use local storage to remember that a shopper accepted a warning version, so the same warning does not need to be acknowledged repeatedly unless the rule or cart context requires it.
Data retention and deletion
Warnify keeps app configuration and consent records while the app is installed or as otherwise needed to provide the service, support audit history, resolve disputes, or comply with legal obligations.
When Shopify sends a shop redaction request, Warnify deletes local shop data associated with that store. When Shopify sends a customer redaction request with order IDs, Warnify removes matching cart, checkout, order, and user-agent identifiers from consent logs where possible.
Merchant responsibilities
Merchants are responsible for the warning text they configure, how they use consent records, and whether their use of Warnify complies with laws and policies that apply to their store, products, and customers.
Merchants should avoid entering sensitive personal information into warning rules, descriptions, custom CSS, or other app settings.
Changes to this policy
We may update this Privacy Policy from time to time. The updated policy will be posted on this page with a new effective date.
Contact
Questions about these terms or policies can be sent to [email protected].