top of page

Privacy Policy

InfluenceOwl – Shopify App Privacy Policy
 

Last Updated: December 4, 2025
 

This Privacy Policy (“Privacy Policy) explains how Influence Owl (“InfluenceOwl,” “we,” “our,” or “us”) collects, uses, shares, and protects personal information in connection with:
 

 

By installing or using the App, or by accessing or using the Site, you agree to the terms of this Privacy Policy. If you do not agree, please do not install or use the App or access the Site.
 

Note: This Privacy Policy is provided for general informational purposes only and does not constitute legal advice. You should consult your own legal counsel to ensure your Shopify store and data practices comply with applicable laws.
 

1. Scope & Roles

 

This Privacy Policy covers:

  1. Merchants / Store Owners (“Merchants”) – who install and use the App on their Shopify stores.

  2. Merchant Customers (“Customers”) – end users who visit a Merchant’s store and whose information is processed via the App.

  3. Site Visitors – individuals who visit our Site, contact us, or otherwise interact with InfluenceOwl outside of Shopify.

 

For Customer Data (data about your store’s customers), the Merchant is the “data controller” (or equivalent under applicable law), and InfluenceOwl acts as a “data processor” / “service provider”. We process Customer Data only on the Merchant’s instructions and as necessary to provide the App.

For Merchant and Site Visitor data, InfluenceOwl is generally the data controller.

 

2. Information We Collect

 

2.1. Information We Collect from Merchants

 

When you install or use the App, or interact with us, we may collect:

 

  • Shopify account & store information

    • Store name and URL (e.g., yourstore.myshopify.com).

    • Store owner name and contact details.

    • Shopify plan, app permissions, and installed apps.

    • Billing status and subscription plan for the App.
       

  • Account & contact information

    • Name, role/title, company name.

    • Email address, phone number, and other contact details.

    • Login and authentication information (where applicable).
       

  • App configuration & usage data

    • Landing page templates, personalization rules, and variables (e.g., creator names, discount codes, hero images, testimonials).

    • UTM configurations, campaign names, and tracking parameters.

    • App usage metrics (e.g., log-ins, feature usage, settings changes).

    • Support messages and other communications with us.
       

  • Billing & transaction data (non-PCI)

    • Billing address and contact details.

    • Plan selection, invoices, and payment confirmations (payment processing is typically handled by Shopify or a payment processor; we do not store full payment card numbers).

 

2.2. Information We Process About Merchant Customers (“Customer Data”)

 

Through our integration with Shopify, we may receive and process Customer Data from your store, including:

 

  • Order & checkout data (depending on the permissions you grant):

    • Name, email address, phone number

    • Shipping and billing addresses

    • Order details (products purchased, variants, quantities, prices, applied discounts)

    • Discount codes and referral codes (e.g., creator-specific codes)

    • UTM parameters and attribution data (e.g., utm_source, utm_medium,

    • utm_campaign, utm_content)

    • Transaction timestamps and order value
       

  • On-site interaction data related to our App

    • Which dynamic or personalized landing page variant was shown

    • What creator / campaign / UTM combination a Customer arrived with

    • Whether certain promotions, hero assets, or dynamic elements were displayed

 

We use this data to power dynamic landing pages, personalization, and analytics for Merchants.

We do not sell Customer Data.

2.3. Information We Collect from the Site and App Interface

 

When you visit our Site or interact with the App interface, we may automatically collect:

 

  • Device & browser information

    • IP address

    • Browser type and version

    • Operating system and device type

    • Language and time zone
       

  • Usage data

    • Pages visited on the Site or within the App UI

    • Date/time of visits, session duration, and clickstream data

    • Referring URLs and UTM parameters
       

  • Cookies and similar technologies

    • See Section 6 for more details on cookies and tracking technologies.
       

3. How We Use Information
 

We use the information described above for the following purposes:
 

3.1. To Provide and Operate the App

  • Authenticate Merchants and connect to their Shopify store.

  • Generate and manage personalized landing pages and campaign-specific experiences based on UTM parameters, creator IDs, and other variables.

  • Track and attribute campaign performance (e.g., sessions, orders, conversions) to specific creators, UTMs, or landing page variants.

  • Provide dashboards, reporting, and analytics to Merchants.

  • Respond to support requests and provide technical assistance.
     

3.2. To Improve and Develop Our Services

  • Monitor App performance and stability.

  • Analyze usage patterns (e.g., which features are used most, how campaigns perform).

  • Develop new features, templates, and personalization options.

  • A/B test product changes or UX improvements.
     

Where required by law, we may rely on legitimate interests or consent to conduct analytics and improvements.

 

3.3. To Communicate with You

  • Send transactional emails (e.g., onboarding, system notices, billing, changes to terms).

  • Respond to inquiries, demo requests, and support tickets.

  • With your consent or as permitted by law, send product updates, tips, or marketing communications. You can opt out at any time.
     

3.4. For Security, Fraud Prevention, and Legal Compliance

  • Detect and prevent fraud, misuse, or abuse of the App or Site.

  • Protect the security and integrity of our systems and data.

  • Comply with legal obligations (e.g., tax, accounting, regulatory requirements).

  • Respond to lawful requests by public authorities, including to meet national security or law enforcement requirements.
     

4. Legal Bases for Processing (EEA/UK/Similar Jurisdictions)

 

Where required by the GDPR or similar laws, we process personal data under the following legal bases:

  • Performance of a Contract – e.g., to provide the App to Merchants and fulfill our obligations under our agreement.

  • Legitimate Interests – e.g., to operate, secure, and improve the App; to support and communicate with Merchants; to analyze product usage (where not overridden by data subjects’ rights).

  • Consent – e.g., for some cookies/analytics or marketing communications, where applicable.

  • Legal Obligation – e.g., to comply with tax, accounting, and regulatory requirements.
     

For Customer Data, Merchants are responsible for ensuring they have a valid legal basis to share and process Customer Data via the App.

5. How We Share Information

We do not sell personal information. We may share personal information as follows:

5.1. Service Providers / Processors

We engage third-party service providers to help us operate and improve the App and Site, such as:

  • Cloud hosting and infrastructure providers

  • Database, logging, and monitoring providers

  • Analytics and performance tools

  • Email and communication tools

  • Error tracking and security tools

 

These service providers are permitted to process personal information only on our behalf and in accordance with our instructions and applicable data protection laws.

5.2. Shopify

Because the App is built for Shopify stores, we share certain information with Shopify as required by:

  • Shopify’s API Terms of Service

  • Shopify’s App Store requirements

  • Mandatory Shopify data protection webhooks (see Section 7).
     

5.3. Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, sale of assets, or similar transaction, personal information may be transferred as part of that transaction in accordance with applicable law. If such a change occurs, we will take reasonable steps to ensure the recipient honors this Privacy Policy or provides substantially similar protection.

5.4. Legal and Safety

We may disclose information:

  • To comply with applicable laws, regulations, legal processes, or governmental requests.

  • To enforce our agreements, including our terms of service and acceptable use policies.

  • To protect our rights, property, or safety, or those of our users, partners, or the public.
     

6. Cookies and Similar Technologies

We use cookies and similar technologies on the Site and, in some cases, within the App interface to:
 

  • Remember your login and account settings.

  • Analyze traffic and usage patterns.

  • Improve the performance and usability of the Site and App.
     

Types of cookies we may use:

  • Strictly Necessary Cookies – Required for basic functionality and security.

  • Performance / Analytics Cookies – Help us understand how the Site and App are used (e.g., page views, session duration).

  • Functionality Cookies – Remember your preferences and settings.

  • Marketing / Attribution Cookies – In limited cases, help us understand which marketing activities drive visits or sign-ups.
     

You can manage cookies via your browser settings. Note that disabling some cookies may affect functionality of the Site or App.

7. Shopify Webhooks & Data Subject Requests

Shopify requires apps to comply with mandatory data protection webhooks and to support data subject requests. InfluenceOwl complies with these requirements.

7.1. Shopify Compliance Webhooks

We receive and process the following Shopify data protection webhooks (names may change if Shopify updates them):

  • customers/data_request – Requests access to a Customer’s data.​

  • customers/redact – Requests deletion/redaction of a Customer’s data.​

  • shop/redact – Requests deletion/redaction of store data when a Merchant uninstalls the App or when required by Shopify.

 

When we receive these webhooks, we will:

  • Retrieve Customer Data we hold on behalf of the Merchant and provide it to Shopify or the Merchant as required, and/or

  • Delete or anonymize Customer Data and/or store data in our systems, except where retention is required by law (e.g., for billing records or legal obligations).
     

7.2. Merchants and Their Customers

  • Merchants can submit or manage Customer-related requests via their Shopify admin or directly with us.

  • Customers should generally direct their data requests (access, correction, deletion) to the Merchant/store they purchased from or interacted with. The Merchant may then use Shopify and/or contact us to fulfill such requests.
     

8. Data Retention

 

We retain personal information as follows:

  • Merchant Account & Store Data – For the duration of the Merchant’s use of the App and for a reasonable period thereafter (e.g., up to 3–7 years) to comply with legal, tax, accounting, or contractual obligations, resolve disputes, and enforce agreements.

  • Customer Data – For as long as is necessary to provide the App’s services to the Merchant and to support campaign reporting and attribution, unless we receive a valid deletion request via Shopify webhooks, the Merchant, or applicable law.

  • Site Visitor Data & Analytics – Retained for a period consistent with our analytics tools’ settings and our legitimate business needs.
     

We may retain aggregated or de-identified data (which cannot reasonably be used to identify an individual) for product improvement, analytics, and business purposes.

9. Security

We use reasonable and appropriate technical and organizational measures to help protect personal information from loss, misuse, and unauthorized access, disclosure, alteration, or destruction. These measures may include:

  • Encryption of data in transit and at rest (where applicable)

  • Access controls and authentication

  • Logging and monitoring of system access

  • Regular updates and security patches
     

No system is 100% secure, and we cannot guarantee absolute security. If you believe your data has been compromised in connection with the App, please contact us immediately at admin@influenceowl.com.

 

10. Your Rights & Choices

 

Your rights will depend on where you live and applicable law (e.g., GDPR in the EU/EEA/UK, CCPA/CPRA in California). Subject to those laws, you may have some or all of the following rights:

  • Right of access – Request confirmation whether we process your personal data and obtain a copy.

  • Right of rectification – Request correction of inaccurate or incomplete data.

  • Right to deletion (“right to be forgotten”) – Request deletion of your personal data, subject to legal retention requirements.

  • Right to restrict processing – Request that we limit the processing of your data under certain circumstances.

  • Right to object – Object to certain processing, including direct marketing or processing based on legitimate interests.

  • Right to data portability – Request a copy of your data in a structured, commonly used, machine-readable format.

  • Right to withdraw consent – Where processing is based on consent, withdraw that consent at any time.
     

If you are a Customer of a Merchant, you should first contact the Merchant/store you interacted with. If needed, the Merchant or Shopify may then instruct us to act on your request.

If you are a Merchant or Site Visitor, you can exercise your rights or ask questions by emailing us at:

📧admin@influenceowl.com

We will respond within timeframes required by applicable laws. We may need to verify your identity before fulfilling certain requests.

You may also have the right to lodge a complaint with a supervisory authority or regulator in your jurisdiction. We encourage you to contact us first so we can try to resolve any concerns.

 

11. Additional Information for California Residents (CCPA/CPRA)

 

If you are a California resident, the California Consumer Privacy Act (CCPA), as amended by the CPRA, may grant you additional rights with respect to your personal information. In line with those laws:

  • We do not sell personal information as “sale” is defined under the CCPA/CPRA.

  • We may act as a “service provider” (for Customer Data processed on behalf of Merchants) and as a “business” (for Merchant and Site Visitor data).

 

Subject to certain exceptions, California residents may have the following rights:

  • Right to Know – You can request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources, purposes of use, and categories of third parties with whom we share it.

  • Right to Delete – You can request that we delete personal information we collected from you, subject to legal exceptions.

  • Right to Correct – You can request that we correct inaccurate personal information we maintain about you.

  • Right to Non-Discrimination – We will not discriminate against you for exercising your privacy rights.
     

To make a request under CCPA/CPRA, you can contact us at:

📧admin@influenceowl.com

If you are a Customer of a Merchant using our App, please submit your request to that Merchant. We will support Merchants in fulfilling such requests as their service provider.
 

12. International Data Transfers
 

InfluenceOwl may process and store personal information in countries other than your own, including in the United States and Canada, where data protection laws may differ.

 

Where required, we implement appropriate safeguards for international transfers, such as:
 

  • Standard Contractual Clauses (SCCs) or similar mechanisms; and/or

  • Contractual commitments with service providers to protect data in line with applicable laws.
     

By using the App or Site, or by providing us with your information, you acknowledge that your information may be transferred and processed outside your country of residence.

13. Children’s Privacy

 

The App and Site are not intended for use by children under the age of 16, and we do not knowingly collect personal information directly from children under 16.

If we learn that we have inadvertently collected personal information from a child under 16, we will take reasonable steps to delete it as soon as possible. If you believe this has happened, please contact us at admin@influenceowl.com.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time as we refine the App, change our practices, or as laws and regulations evolve. When we do, we will revise the “Last Updated” date at the top of this page.

In some cases, we may provide additional notice (e.g., via email or in-app notification) if changes are material or required by law. Your continued use of the App or Site following the posting of changes indicates your acceptance of those changes.

15. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or our data practices,you can contact us at:

InfluenceOwl

📧 Email: admin@influenceowl.com

🌐 Site: https://influenceowl.com

We’ll do our best to respond promptly and transparently.

©InfluenceOwl developed by 

bottom of page