Privacy Policy — Questify (Shopify Post-Purchase Survey App)

• Merchant information: We generally act as an independent controller for information about Merchants (e.g., account / admin contact details and communications).
• Shopper / customer information: When we process a Merchant’s customer data (e.g., survey responses, order association, customer-type detection), we generally act as a processor / service provider on behalf of the Merchant, and the Merchant is the controller / business.

If you are a Shopper / Store Visitor, privacy requests about your survey response or related customer data are typically handled by the Merchant (see Section 12).

We collect the following categories of information depending on how the Merchant uses the Service.

A) Merchant and store information (from Shopify and the Merchant)

When a Merchant installs Questify, we may receive store and account information necessary to operate the Service, such as:

• store name, store domain, store identifiers
• Merchant contact details associated with the Shopify account (e.g., email)
• app settings and configuration data
• order, customer, and product reference information needed for survey targeting, response attribution, and analytics

Questify uses Shopify app permissions / scopes, all read-only:

• read_orders, read_customers, read_products

Questify does not request write access to merchant data and does not modify Shopify orders, products, or customer records.

B) Survey response information (Shoppers / Store Visitors)

We may process:

• survey response content (selected options for choice questions, multi-select selections, NPS scores 0–10, short-text and long-text answers)
• response timestamps (start, last update, submission)
• order context derived from Shopify for the order the survey was associated with: order ID, order total value, currency, country
• customer context: a Shopify customer ID reference (GID) and whether the shopper is a first-time or returning customer at the Merchant’s store
• browser locale at the time the survey was viewed

Questify does not collect names, email addresses, shipping addresses, payment information, or other personal contact details of Shoppers, unless a Merchant explicitly asks for such information via a free-text survey question. Free-text answers may contain user-typed content that the Shopper chooses to include.

C) AI-generated insights and derived data

The Service schema includes fields for future AI-generated insights based on free-text answers (such as summaries, sentiment, and themes). In the current version of the Service, AI processing is not enabled and no third-party AI providers receive Shopper data. If we activate AI features in a future version, we may use third-party AI service providers (for example, OpenAI or similar). When such processing is enabled:

• free-text answer content may be transmitted to such providers for processing
• those providers may process the data according to their own terms, documentation, and policies
• we do not control the internal operation of third-party AI models and systems, and AI outputs may be inaccurate, incomplete, or inappropriate

To the maximum extent permitted by applicable law, Questify is not responsible or liable for the acts, omissions, or independent practices of third-party AI providers. We may select and change providers over time. We will update this Policy when AI features are enabled.

D) Communications

Questify does not send marketing or transactional emails to Shoppers. Surveys are rendered to Shoppers within the Shopify thank-you page, order status page, or admin order details page — not via email.

We may process:

• support requests and messages from Merchants and individuals who contact us
• service communications to Merchants (e.g., updates, security notices, operational messages)

E) Technical, device, and usage information

We may collect or receive technical information such as:

• device / browser type and settings
• IP address and approximate location derived from IP
• app and storefront-extension usage events
• logs and diagnostic data (e.g., error and performance logs)

F) Affiliate / referral program information (if offered)

If we offer affiliate / referral programs, we may collect information to track referrals and attribute sign-ups (e.g., referral identifiers, link clicks, conversion events).

We use information to:

Provide and operate the Service

• authenticate and connect Questify to a Merchant’s Shopify store
• evaluate survey targeting rules and match the right survey to each shopper
• display surveys on storefront surfaces (thank-you page, order status page) via Shopify checkout / customer-account UI extensions
• save Shopper responses (including partial responses) and present them back to the Merchant in their admin analytics
• attribute responses to orders and revenue so Merchants can see which answers correlate with order value
• fire Shopify Flow triggers when the Merchant has configured workflows around survey submissions
• store and apply app settings and survey configuration

AI and automated analysis

Where enabled in a future version (currently scaffolded only), analyze free-text answer content to generate insights (e.g., summaries, themes, sentiment), assist with moderation, and help Merchants understand response trends.

Security, fraud prevention, and abuse control

• detect and prevent spam, fraud, or misuse of the Service
• protect the Service, Merchants, and Shoppers
• validate that survey responses originate from Shopify-issued sessions via HMAC-signed App Proxy requests

Support and communications

• respond to inquiries and provide technical support
• send service-related notices and required communications

Improve and maintain the Service

• debug issues, monitor performance, and improve features
• analyze usage trends (including through analytics tools, where enabled)

Marketing and growth (where permitted)

• communicate about Questify and other products / services
• operate promotions, affiliate / referral programs, and related measurement

Where required by applicable law, we will provide appropriate choices / consents for certain marketing or tracking activities.

By submitting a survey response through the Service, you:

• consent to the collection, use, processing, and disclosure of your information as described in this Policy (including for display in the Merchant’s admin, and, where enabled, for AI / automated analysis);
• acknowledge that survey responses are intended to be visible to the Merchant in their admin, subject to the Merchant’s settings and applicable law;
• represent and warrant that you have the legal right to submit the content you provide, and that your content does not violate applicable law or third-party rights;
• agree not to include sensitive personal information (e.g., government IDs, financial details, medical data) or personal information of other individuals, unless you have their permission and a legal basis to share it.

Merchants control whether a response is retained, exported, anonymized, or deleted. If you want a response removed or changed, you must contact the Merchant (see Section 12).

Survey responses are intended for the Merchant’s analytics and review. Merchants can:

• view individual responses and aggregate analytics in their Shopify admin
• export responses as CSV from the Service’s admin
• anonymize or delete responses in accordance with applicable law and platform requirements (e.g., Shopify GDPR webhooks)

Questify does not publicly display individual survey responses on storefront pages. Aggregate or anonymized response insights may be surfaced to Merchants in their admin.

As described above, the Service is currently designed to support (but does not actively perform) AI-based analysis of free-text answers. If and when such features are enabled, Questify may use third-party AI service providers (for example, OpenAI or similar) to process free-text answer content.

When these features are used:

• response content may be transmitted to such providers for processing;
• those providers may process the data according to their own terms, documentation, and policies;
• we do not control the internal operation of third-party AI models and systems, and AI outputs may be inaccurate, incomplete, or inappropriate.

To the maximum extent permitted by applicable law, Questify is not responsible or liable for the acts, omissions, or independent practices of third-party AI providers. However, Questify may select and use providers to operate the Service, and may change providers over time.

Questify operates within Shopify and may load scripts / widgets on storefront surfaces to render the survey UI. We may use cookies or similar technologies for:

• Strictly necessary purposes (e.g., security, functionality, session integrity, HMAC validation of App Proxy requests)
• Analytics / advertising measurement (e.g., pixels or analytics SDKs), which may be enabled now or in the future depending on configuration and legal requirements

Tools that may be used include Google Analytics and similar providers; other providers may be added over time. These tools may collect device data, cookie identifiers, and usage events.

Merchant responsibility: If non-essential cookies / tags are used on a Merchant storefront, the Merchant may be responsible for obtaining end-user consent and providing required cookie notices under applicable law.

We do not disclose personal information except as described below:

A) Service providers (sub-processors)

We may share information with vendors that help us operate the Service, such as:

• infrastructure and database hosting providers (e.g., Fly.io for application hosting, DigitalOcean for managed PostgreSQL)
• email delivery providers (for Merchant-facing service emails, if applicable)
• analytics, logging, and security providers
• AI providers (where enabled in the future)

These providers are permitted to process information only to provide services to us.

B) Legal, safety, and enforcement

We may disclose information if we believe it is reasonably necessary to:

• comply with law, regulation, legal process, or lawful requests
• protect rights, safety, and security of Questify, Merchants, Shoppers, or the public
• prevent, investigate, or address fraud, abuse, or security issues

C) Business transactions

If we are involved in a merger, acquisition, restructuring, financing, bankruptcy, or sale of assets, information may be disclosed or transferred as part of that transaction.

D) Marketing-related disclosures / “sale” or “sharing” (where legally defined and only as permitted)

We may use or disclose information for marketing, promotional, affiliate / referral, or measurement purposes as permitted by applicable law. Where required, we will provide notices and the ability to opt out or manage preferences.

We operate from the United Arab Emirates and may process or store information in other countries where we or our service providers operate (including the European Union, where our primary database and application hosting are located). Where required by law, we will implement appropriate safeguards for cross-border transfers.

You can opt out of marketing communications by:

• using an unsubscribe link (if provided), or
• emailing rofskydev@outlook.com with the subject: “Opt out of marketing”

Service / transactional messages (e.g., security or operational notices) may still be sent when necessary to provide the Service.

We retain information for as long as reasonably necessary to:

• provide and maintain the Service
• support reinstalls and account continuity
• comply with legal obligations
• resolve disputes, enforce agreements, and protect against fraud / abuse
• maintain security and operational integrity
• improve and develop the Service

When a Merchant uninstalls the app, we stop collecting new data via Shopify integrations associated with that installation, and we delete or anonymize Merchant-scoped and Shopper data within a reasonable period (typically within 30 days) consistent with the purposes above and applicable law.

Questify handles Shopify’s required compliance webhooks:

• customers/data_request — we return the requested customer’s survey responses for the Merchant to forward to the customer
• customers/redact — we anonymize the customer’s responses by removing the customer identifier, while retaining the aggregated response row so survey analytics remain accurate
• shop/redact — we delete all data scoped to the Merchant’s shop

Merchants may also contact us directly regarding deletion requests, which we will handle in accordance with applicable law.

Rights vary depending on your location.

Shoppers / Store Visitors

If your information was collected through a Merchant’s store (for example, by submitting a survey response), the Merchant is typically the controller. Requests to access, delete, correct, or remove response content should be directed to the Merchant. We may assist the Merchant as their processor / service provider.

Merchants

Merchants may request access, correction, or deletion of certain account / contact information we process as controller by contacting rofskydev@outlook.com.

EU / UK and California

If you are in the EU / UK (GDPR / UK GDPR) or California (CCPA / CPRA), you may have additional rights such as access, deletion, correction, portability, restriction, objection, and opt-out rights (including opt-out of certain disclosures defined as “sale” or “sharing” under some laws).

To submit a request, email rofskydev@outlook.com with the subject: “Privacy Request” (or “California Privacy Request” if applicable). We may need to verify your identity.

We implement reasonable administrative, technical, and organizational measures designed to protect information, including TLS-encrypted transport between Shopify, the Merchant’s browser, and our servers, encryption-at-rest for our managed database backups, and HMAC validation of all shopper-facing App Proxy requests. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

The Service is not intended for individuals under 18, and we do not knowingly collect personal information from children.

We may update this Policy from time to time. The effective date will be updated when changes are posted. If changes are material, we may provide additional notice where appropriate.

For questions, requests, or concerns:

rofskydev@outlook.com