日本語 | English

Privacy Policy

Last updated: 2026-01-12 | Version: 1.0.0

1. Introduction

Pointly ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify application.

By installing and using Pointly, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We collect the following types of information through Shopify's API:

2.1 Store Information

  • Shop name and domain
  • Store owner email address
  • Store locale and timezone
  • Store currency

2.2 Customer Information

  • Customer name
  • Customer email address
  • Shopify customer ID
  • Points balance and transaction history

2.3 Order Information

  • Order ID and order number
  • Order total amount
  • Order date and status
  • Purchased products and quantities

2.4 Product Information

  • Product name and ID
  • Product price
  • Product tags (for exclusion rules)

2.5 Checkout Information (Storefront)

Through Shopify's Storefront API, we may access the following information when customers interact with your store:

  • Product listings displayed on the storefront
  • Checkout session data (cart contents, applied discounts)
  • Checkout status and completion

Note: This information is accessed in an unauthenticated context to enable point display and redemption features on the storefront.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Points Calculation: To calculate and award loyalty points based on purchases
  • Points Management: To track and manage customer point balances
  • Points Redemption: To process point redemptions and generate discount codes
  • Service Improvement: To analyze usage patterns and improve our service
  • Communications: To send important notices about the service

4. Data Retention

We retain your data for as long as your Shopify store has Pointly installed. When you uninstall the app, we will delete your data within 30 days, unless required by law to retain it longer.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share data only in the following circumstances:

  • Service Providers: With trusted third-party services that help us operate our application (e.g., hosting providers)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfer: In connection with a merger, acquisition, or sale of assets

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of sensitive data at rest
  • Regular security assessments
  • Access controls and authentication

7. GDPR Compliance (For EU Users)

If you are located in the European Union, you have the following rights:

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data
  • Right to Portability: Request transfer of your data
  • Right to Object: Object to processing of your data

To exercise these rights, please contact us at the email address below.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the app after changes constitutes acceptance of the updated policy.

9. Contact Us

Questions or Concerns?

If you have any questions about this Privacy Policy or our data practices, please contact us through the chat widget at the bottom right of this page, or visit our website to start a conversation.