Dynamic Trust Badges & Icons Privacy Policy

Dynamic Trust Badges & Icons ("the App") helps merchants create and manage trust badge and icon blocks for their Shopify storefronts ("the Service"). This Privacy Policy explains how information is collected, used, and shared when you install or use the App.

Personal Information the App Collects

When you install the App, we access your Shopify store using OAuth and the scopes listed in our Shopify app configuration:

• OAuth and session data: shop domain and technical session details needed to authenticate requests and keep the app connected to your store.
• read_themes: read-only access to themes so we can detect and support theme app extension placement and related app behavior.
• read_products: read-only access to product and collection data so you can target icon blocks by products, collections, tags, and vendors.
• write_files: upload and store icon assets in your Shopify Files so they can be used by the app and rendered on your storefront.

In addition to Shopify API access, we store app data in our database to operate the Service:

• Shop account data: shop domain, subscription status, charge ID, trial settings, and timestamps.
• Icon block configuration: block names, enabled/disabled status, display design settings, placement rules, geo-targeting settings, and icon data.
• Custom icon records: references to icon file URLs uploaded for your store.
• App settings: configuration and sync flags used to manage metafield updates and app behavior.

We do not use this app to collect or profile your storefront customers for advertising. The app is focused on rendering icon and trust badge content based on your configuration.

We may also process technical and operational information (for example, logs and error details) to maintain app reliability and security.

How We Use Your Personal Information

We use the information described above to provide and operate the Service, including:

• Creating, editing, and managing icon blocks and rendering behavior.
• Syncing configuration data to Shopify metafields used by the storefront extension.
• Uploading and maintaining icon assets in Shopify Files.
• Managing subscription and billing state through Shopify Billing APIs.
• Providing support communication, including messages sent through the in-app Contact Us form.

Sharing Your Personal Information

We share information with service providers only as needed to deliver the Service. This includes:

• Shopify: to authenticate your store, read products/themes, store icon files, sync metafields, and manage app billing.
• Hosting and infrastructure providers: to run application servers, databases, and logging systems.
• Email provider: support and subscription notification emails are sent through configured email infrastructure.

We may also disclose information when required by law, to respond to lawful requests, or to protect our rights and the security of the Service.

We do not sell or rent your personal information to third parties.

Your Rights

If you are a European resident or otherwise benefit from data protection rights under applicable law, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us using the information in the Contact Us section below.

In many cases we act as a processor on behalf of Shopify merchants. We may need to retain certain information where we have a legal obligation or a legitimate business reason (for example, records required for fraud prevention, security, or accounting).

Your information will be transferred outside of Europe, including to Canada and the United States (for example, when we use US-based hosting providers or when data is stored in Shopify's infrastructure).

Data Retention

We retain shop and app-configuration data while the app is installed and for a reasonable period afterward for operational, security, and legal purposes.

On app uninstall, session records are removed and associated shop data can be deleted from our database according to our uninstall and compliance handling flows. Some data written in your Shopify store (for example metafields or files) may remain until removed by you or by Shopify data lifecycle policies.

Changes

We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices, changes to the Service, or for legal, regulatory, or operational reasons. We will post the updated policy at this URL and update the "Last updated" date where appropriate.

Contact Us

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, you can contact us:

• By email: support@webpanda-solutions.com