Privacy and Data Protection Policy
This Privacy and Data Protection Policy (“Policy”) describes how Conversion Apps (“we,” “us,” or “our”) collects, uses, and protects personal data processed through our Shopify apps, including Discount Dive, CA: WhatsApp Order Button, and any other apps we develop (“Apps”). This Policy is designed to comply with Shopify’s privacy and data handling requirements and to show our commitment to protecting store owners’ and customers’ information.
By installing or using any of our Apps, you (“store owner” or “you”) agree to the terms outlined in this Policy.
Minimal Data Collection
We collect and process only the minimum personal data necessary to operate the Apps and deliver their features. No unnecessary data is collected or stored for unrelated purposes.
Data Processed by the Apps
To provide core app functionality such as discount code generation, WhatsApp ordering, analytics, and reporting, the Apps may process the following store data:
Store name
Store domain
Storefront theme ID
Shopify API tokens (for syncing codes or integration)
Button click and interaction data (e.g., game scores or WhatsApp clicks)
We do not access or store end-customer personal information unless required by Shopify API behavior, such as displaying earned codes or facilitating WhatsApp messaging.
Customer Data and Messaging
The Apps facilitate communication and transactions between your store and customers. For example, the WhatsApp Order Button app generates context-aware messages containing product or page details. The Discount Dive app tracks game interactions without collecting personal customer data.
Messages and interactions are not stored beyond what is necessary to perform app functions and are never shared with unauthorized parties.
Analytics and Tracking
The Apps collect interaction data such as button clicks, device type, location, page source, and session details to provide analytics and improve functionality. This data supports features like:
Real-time dashboards with filters by product, date, and geography
Historical analytics with paginated views
Meta Pixel integration using Facebook’s Conversions API for ad tracking
All tracking data is anonymized where applicable and handled securely.
Security Measures
We apply industry-standard security safeguards, including:
Encryption of sensitive data both at rest and in transit using OpenSSL
Secure backups stored on geographically redundant servers in the United States
Access controls that limit data access to authorized personnel only
Mandatory two-factor authentication (2FA) for staff accounts
Continuous monitoring, logging, and regular review of access and security events
Data Retention Policy
Data collected by the Apps is retained only as long as necessary for their operation or as required by Shopify policies. Upon uninstalling any of our Apps, all personal store-related data is deleted within a short period (typically within 3 days).
Usage Controls and Customization
Store owners have full control over the data shared with the Apps through Shopify’s permissions. Additionally, merchants can customize:
Discount code formats and usage restrictions (e.g., one-time use, unlimited use)
Messaging templates shown to customers
Button appearances and display conditions
None of these customization features collect additional personal data.
No Third-Party Sharing
We do not sell, rent, or share store or customer data with third parties except trusted service providers necessary for App operation. Customer data is never exposed or published by the Apps.
Incident Response
In the unlikely event of a security breach, we have a strict incident response plan that includes:
Immediate containment and investigation
Notification to affected store owners and relevant authorities if required
Remediation and system improvements to prevent recurrence
Your Rights and Support
You control what data is shared with the Apps via Shopify permissions. For any questions, data access, or deletion requests, contact us at:
📧 support@conversionapps.net
Developer: Conversion Apps