Privacy Policy

Parcelvana ("we", "us", "the app") is a Shopify app that provides order tracking, customer notifications, and shipment analytics for merchants. This Privacy Policy explains what data we collect, how we use it, and how we protect it.

1. Data we receive from Shopify

When a merchant installs our app, Shopify shares the following with us via the Admin API and webhooks:

• Shop information: shop domain, plan, primary email, country, currency, timezone.
• Order information: order numbers, total prices, currency, financial & fulfillment status, creation timestamp, and customer email. We do not store the customer's shipping address (name, street, city, postal code, country, or phone) — it is not needed to provide tracking and is excluded by design.
• Fulfillment information: tracking numbers and carriers.

2. Data we generate

We compute and store the following derived data:

• A SHA-256 hash of the lowercased customer email (used so customers can look up their tracking page without us exposing the raw email).
• Carrier-pushed tracking events: status, description, location, timestamp.
• A log of notifications sent (channel, recipient, trigger status, provider message id, send timestamp).
• Audit records of when our webhooks last received deliveries from Shopify and our carrier aggregator.

3. Data we send to third parties

To provide the service we transmit data to:

• WhereParcel (carrier aggregator) — tracking numbers and carrier codes only. WhereParcel privacy policy.
• Sentry (error monitoring) — code stack traces and request metadata, with cookies and tokens redacted.

Customer-facing email notifications (order confirmation, shipping confirmation, delivery updates) are sent by Shopify directly using the merchant's configured notification templates — we are not in that data flow.

We do not sell or rent customer data. We do not share data with advertising or analytics platforms.

4. Data retention

• Order & shipment records are retained while the merchant has the app installed.
• When a merchant uninstalls, Shopify fires shop/redact webhooks 48 hours and 7 days later. On the first delivery we delete all data associated with that shop.
• When a customer requests deletion via Shopify (customers/redact webhook), we null out the customer email and email hash, tokenize the order number, and delete notification log entries that contain that customer's email or phone. (We do not store shipping addresses.)

5. Customer rights (GDPR / CCPA)

Customers in jurisdictions with applicable data-protection law have the right to:

• Request a copy of data we hold (right of access). Customers should request this through the merchant whose store they purchased from; merchants forward the request to us via Shopify's customers/data_request webhook, and we email the merchant a structured export within 30 days.
• Request deletion of their data (right to erasure). Same flow via Shopify's customers/redact webhook.

6. Security

• All data is transmitted over TLS.
• Webhook deliveries from Shopify and our carrier aggregator are verified by HMAC signature before processing.
• Merchant access tokens are stored encrypted at rest at our database provider.
• We restrict employee access to production systems via principle of least privilege.

7. International transfers

Our infrastructure may be located in regions different from where you reside. We rely on standard contractual clauses with our subprocessors where required.

8. Children's data

The app is not directed at children and does not knowingly collect data from individuals under 13.

9. Changes to this policy

We may update this policy. Material changes will be notified to merchants via in-app notification or email at least 30 days before they take effect.

10. Contact

Privacy or data-protection questions: support@parcelvana.com. Postal address: Bangalore, India.