Privacy Policy

1. Introduction

This Privacy Policy describes how Facebook Pixel Gateway ("we," "our," or "us") collects, uses, and protects your information when you use our Shopify application and related services (the "Service").

Our Service helps Shopify merchants integrate Facebook Pixel tracking with their online stores to improve advertising effectiveness and customer insights.

2. Information We Collect

2.1 Merchant Information

When you install our app, we collect:

• Shopify store domain and basic store information
• Store owner contact information
• App configuration settings and preferences
• Facebook Pixel ID and access tokens (encrypted)

2.2 Customer Data

Through our pixel tracking service, we may process:

• Website visitor behavior and interactions
• Purchase information and transaction data
• Customer email addresses and phone numbers (hashed for privacy)
• IP addresses and browser information
• Facebook browser IDs and click IDs
• Geographic location data (city/region level)

2.3 Technical Information

• API usage logs and performance metrics
• Error logs and debugging information
• System configuration and integration status

3. How We Use Your Information

3.1 Service Provision

• Facilitate Facebook Pixel tracking and conversion reporting
• Send customer event data to Facebook's Conversions API
• Provide analytics and performance insights
• Maintain and improve our service functionality

3.2 Data Processing

• Hash and encrypt personal identifiers for privacy protection
• Aggregate data for analytics and reporting purposes
• Monitor service performance and troubleshoot issues

3.3 Communication

• Send service-related notifications and updates
• Provide customer support and technical assistance
• Share important security or policy updates

4. Data Sharing and Third Parties

4.1 Facebook/Meta

We share customer event data with Facebook through their Conversions API for advertising optimization purposes. This data is hashed and processed according to Facebook's data use policies.

4.2 Shopify

We access your Shopify store data through official Shopify APIs as authorized by you during app installation.

4.3 Service Providers

We may share data with trusted service providers who assist in:

• Cloud hosting and infrastructure (Vercel, AWS)
• Database services and data storage
• Analytics and monitoring services
• Customer support platforms

4.4 Legal Requirements

We may disclose information when required by law, court order, or to protect our rights and safety.

5. Data Security

We implement industry-standard security measures including:

• Encryption of data in transit and at rest
• Secure API authentication and access controls
• Regular security audits and monitoring
• Hashing of personal identifiers before transmission
• Limited access to customer data on a need-to-know basis

6. Data Retention

We retain data for the following periods:

• Event logs: 90 days for operational purposes
• Configuration data: Until app uninstallation
• User data: Processed in real-time and not permanently stored
• Analytics data: Aggregated data may be retained longer for service improvement

7. Your Rights and Choices

7.1 Merchant Rights

• Access and review your app configuration data
• Modify or delete your Facebook Pixel settings
• Uninstall the app to stop data collection
• Request data deletion upon app removal

7.2 Customer Rights

End customers have rights under applicable privacy laws including GDPR, CCPA, and others:

• Right to know what personal information is collected
• Right to request deletion of personal information
• Right to opt-out of data processing
• Right to data portability where applicable

8. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses for EU data transfers
• Adequacy decisions where available
• Other legally recognized transfer mechanisms

9. Compliance with Privacy Laws

9.1 GDPR Compliance

For EU residents, we comply with the General Data Protection Regulation (GDPR) including:

• Lawful basis for processing (legitimate interest, consent)
• Data minimization and purpose limitation
• Right to erasure and data portability
• Data Protection Impact Assessments where required

9.2 CCPA Compliance

For California residents, we comply with the California Consumer Privacy Act (CCPA) including disclosure of data collection and sharing practices.

10. Cookies and Tracking

Our service works with Facebook Pixel cookies and similar tracking technologies:

• _fbp: Facebook browser pixel for user identification
• _fbc: Facebook click identifier from ad clicks
• These cookies are set by Facebook's pixel code, not directly by our service
• Users can control cookie preferences through their browser settings

11. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we become aware of such collection, we will take steps to delete the information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the updated policy on our website
• Sending email notifications to registered merchants
• Displaying notices within the app interface

Your continued use of the service after changes become effective constitutes acceptance of the updated policy.

13. Contact Information

If you have questions about this Privacy Policy or our data practices, please contact us:

14. Shopify App Store Compliance

This app complies with Shopify's App Store requirements including:

• Transparent data collection and usage practices
• Secure handling of merchant and customer data
• Compliance with applicable privacy laws
• Implementation of required webhook endpoints for data deletion