Privacy Policy

Who we are

Stockist Map Sync is developed and operated by Plynthr ABN 87 731 585 002. This privacy policy explains how we collect, use, store, and protect information when you install and use Stockist Map Sync (the "App") on your Shopify store.

What data we collect

When you install the App, we access the following data from your Shopify store via the Shopify API:

• Customer data: Name, address (street, city, province, country, postal code), email address, and tags for customers matching your configured sync tags. This is used to geocode addresses and display locations on the map.
• Shop data: Your store name, domain, and Shopify plan information. This is used to identify your store and manage your App subscription.

We do not collect payment information, browsing data, or any data from your store's buyers or visitors.

When store visitors use the map's auto-locate feature, their browser requests geolocation permission directly. This location data is processed entirely in the visitor's browser and is never sent to our servers.

How we use your data

We use the collected data solely to provide the App's functionality:

• Geocoding customer addresses to display them as map locations
• Storing location data (name, address, coordinates, and any details you add) in our database so the map can render on your storefront
• Managing your App subscription and billing via Shopify's Billing API

We do not sell, share, or transfer your data to any third parties for marketing, advertising, or any purpose unrelated to providing the App's service.

Third-party services

The App uses the following third-party services:

• OpenStreetMap / Nominatim: Customer addresses are sent to the Nominatim geocoding service to convert addresses into map coordinates. Nominatim's usage policy is available at operations.osmfoundation.org.
• Fly.io: Our application and database are hosted on Fly.io infrastructure located in Sydney, Australia.
• Shopify: The App operates within the Shopify platform and is subject to Shopify's own privacy practices.

Data storage and security

Your data is stored in a PostgreSQL database hosted on Fly.io in the Sydney, Australia region. We use encrypted connections (HTTPS/TLS) for all data transmission between your store, our servers, and third-party services.

Access to the database is restricted to the application only. We do not provide database access to any third parties.

Data retention

We retain your location data for as long as the App is installed on your store. When you uninstall the App, we receive a webhook notification from Shopify and delete all of your store's data from our database within 48 hours.

You can also delete individual locations at any time from the App's dashboard.

GDPR compliance

We comply with the General Data Protection Regulation (GDPR) and support Shopify's mandatory GDPR webhooks:

• Customer data request: We respond with all stored data for a given customer.
• Customer data erasure: We delete all stored data for a given customer upon request.
• Shop data erasure: We delete all stored data for your shop when the App is uninstalled.

If you or your customers wish to exercise GDPR rights, contact us at [email protected].

Your rights

You have the right to:

• Access the data we store about your shop and customers
• Request correction of inaccurate data
• Request deletion of your data at any time
• Export your location data
• Withdraw consent by uninstalling the App

Changes to this policy

We may update this privacy policy from time to time. If we make significant changes, we will notify you via the App or email. The "last updated" date at the top of this page indicates when this policy was most recently revised.

Contact us

If you have any questions about this privacy policy or how we handle your data, please contact us:

Email: [email protected]
Website: plynthr.com