Privacy Policy

Updated April 1, 2026

Order Automator ("the App"), operated by Automator Apps, LLC ("we", "us", or "our"), provides order processing and automation services ("the Service") to merchants who use Shopify to power their stores. This Privacy Policy describes how personal information is collected, used, and shared when you install or use the App in connection with your Shopify-supported store.

For the purposes of applicable data protection laws, the merchant is the data controller of their store and customer data. We act as a data processor, processing data on behalf of the merchant to provide the Service.

Information We Collect

After installing the App, you will be presented with the permissions required for the App to function, and can accept or deny them at that point. By accepting the permissions and activating the App, you agree to those terms and this privacy policy. If you do not accept, you can decline the installation or uninstall the App, and all access to your store is revoked by Shopify.

Information collected from merchants

  • Basic Shopify store information (store name, email address, store domain, location)
  • Account and contact details you provide when using the App or contacting support
  • App usage data and preferences (ex: feature configurations, automation rules)

Information accessed through Shopify APIs

The App requests only the Shopify API permissions necessary to provide its features. Depending on which features you enable, the App may access:

  • Orders — to process automations such as tagging, fulfillment requests, and order edits
  • Customers — to apply customer-related automations (ex: tagging)
  • Products — to reference product information within automation rules
  • Fulfillments — to create, update, and manage fulfillment requests
  • Inventory and Locations — to manage inventory levels and location assignments

We access the minimum data required to perform the features you configure. The App does not independently collect personal data from your customers or communicate with your customers directly.

Third-party marketplace integrations

If you enable and authorize a feature that connects to a third-party marketplace (ex: Amazon, TikTok Shop), the App will access order and fulfillment data from those platforms as needed to provide the feature. We follow the same data minimization principles and comply with the requirements of the respective marketplaces.

Cookies and tracking technologies

The App uses the following cookies and similar technologies:

  • Session cookie — used to maintain your authenticated session within the App (expires after 14 days of inactivity)
  • Analytics tools — we use analytics services to understand how merchants use the App so we can improve the experience. These tools may use cookies and local storage to collect usage data
  • Support widget — our in-app support tool may set cookies to provide the support experience

How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the App and its features
  • Process automations and actions you configure within the App
  • Communicate with you about your account, support requests, or service updates
  • Analyze usage patterns to improve and optimize the App
  • Ensure the security and integrity of the Service
  • Comply with legal obligations

Customer data accessed through your store is used solely to perform the automation actions you configure. We do not use your customers' data for our own marketing or any purpose unrelated to providing the Service.

Third-Party Service Providers

We use third-party service providers to help operate and improve the App. These providers may process data on our behalf in the following capacities:

  • Cloud hosting, database, and infrastructure
  • Product and app analytics
  • Customer support
  • Transactional email delivery
  • Marketplace API services

These providers are contractually obligated to protect your data and use it only for the purposes of providing their services to us.

We do not sell, rent, or trade your personal information or your customers' data to third parties for their own purposes.

We may disclose your information if required to do so by law, in response to a subpoena, court order, or other lawful request, or to protect against fraud, enforce our terms of service, or protect the rights, property, or safety of our users.

Data Security

We take reasonable measures to protect your information, including:

  • All data transmitted between your browser and our servers is encrypted using TLS/SSL
  • Application data is stored on secure, access-controlled cloud infrastructure
  • Access to production systems is restricted to authorized personnel

While we strive to protect your data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

Your Rights

Depending on your location, you may have certain rights regarding your personal data under applicable privacy laws, including the General Data Protection Regulation (GDPR), the California Privacy Rights Act (CPRA), and other state or regional privacy laws.

These rights may include:

  • Access — the right to request a copy of the personal data we hold about you
  • Correction — the right to request that we correct inaccurate or incomplete data
  • Deletion — the right to request that we delete your personal data
  • Portability — the right to request your data in a structured, commonly used format
  • Restriction — the right to request that we restrict processing of your data
  • Objection — the right to object to our processing of your data
  • Opt-out — the right to opt out of the sale or sharing of personal data (we do not sell your data)

To exercise any of these rights, please contact us using the information below. We will respond to your request within 30 days, or within the timeframe required by applicable law.

We also respond to Shopify's mandatory compliance webhooks, including requests for customer data, customer data deletion, and shop data deletion, as required by the Shopify platform.

International Data Transfers

Our servers and service providers are located in the United States. If you are located outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States.

For transfers of personal data from the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on appropriate safeguards such as Standard Contractual Clauses or other legally recognized transfer mechanisms to ensure your data is protected.

Data Retention

We retain your App configuration data and account information for as long as you have the App installed. When you uninstall the App:

  • We immediately lose API access to your Shopify store (revoked by Shopify)
  • Your App configuration data (automation rules, settings, preferences) is deleted from our systems
  • Transactional records (ex: order processing logs) may be retained for a limited period as needed for operational, legal, or compliance purposes, after which they are deleted

We do not retain your customers' personal data beyond what is necessary to process the automations you configure while the App is active.

Changes to This Policy

We may update this privacy policy from time to time to reflect changes to our practices, services, or for legal and regulatory reasons. We encourage you to review this page periodically. The "Updated" date at the top indicates when the policy was last revised.

Contact Us

If you have any questions about this privacy policy, want to exercise your data rights, or want to opt out of certain features, please contact us at orderautomator.com/contact or by mail:

Automator Apps, LLC
30 N Gould St Ste R
Sheridan, WY 82801