Privacy Policy
We keep it simple: we collect only what's needed to power your search.
Screenshot coming soon
Last updated: December 12, 2024
TL;DR: We collect product data to power search, visitor behavior to improve recommendations, and merchant info for billing. We don't sell your data. Period.
This Privacy Policy explains how Ofenbock Consulting AB ("we", "us", "Facetify") collects, uses, and protects data when you use our Shopify app.
Company: Ofenbock Consulting AB
Location: Stockholm, Sweden
Contact: hello@ofenbock-consulting.com
1. What We Collect
From Merchants (You)
| Data | Why |
|---|---|
| Shop domain, name, email | Account management, support |
| OAuth access token | Access your Shopify data (encrypted) |
| Billing status | Usage-based invoicing |
From Your Store
| Data | Why |
|---|---|
| Product catalog (titles, prices, variants, metafields) | Power search and filters |
| Order data (product IDs, quantities) | Improve search ranking by popularity |
| Market and locale settings | Multi-language, multi-currency support |
From Store Visitors
| Data | Why |
|---|---|
| Search queries, filter selections | Provide search results |
| Product views, cart additions, purchases | Power ranking calculations |
| Session ID and Market ID (cookie) | Power ranking calculations |
| Wishlist/favorite products (localStorage) | Remember product preferences |
What we DON'T collect: Customer names, emails, addresses, or payment details. That stays with Shopify. We never sell data to advertisers.
2. How We Use Your Data
- Provide search, filtering, and recommendation services
- Improve search relevance using purchase signals
- Bill you based on usage (searches, recommendations)
- Debug errors and improve the service
- Respond to support requests
3. Cookies
We use two cookies on your storefront:
| Cookie | Purpose | Duration |
|---|---|---|
_facetify_cid | Power ranking calculations | Browser session |
_facetify_market | Power ranking calculations | Browser session |
facetify_wishlist_id | Persist wishlist preferences across sessions | 1 year |
4. Third-Party Services
We share data with these services to operate Facetify:
| Service | Purpose | Data Shared |
|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure | All app data (encrypted) |
| Sentry | Error tracking | Errors, shop domain (tokens stripped) |
| Shopify | Platform, billing | OAuth flow, usage reports |
5. Data Retention
- Account data: Kept until you uninstall + request deletion
- Product data: Deleted within 30 days of uninstall
- Billing records: 7 years (Swedish law requirement)
- Visitor analytics: Retained per our backend policy (typically 15 months)
6. Your Rights (GDPR)
You have the right to:
- Access your data
- Correct inaccurate data
- Delete your data ("right to be forgotten")
- Port your data to another service
- Object to processing
- Withdraw consent at any time
To exercise these rights, email us at hello@ofenbock-consulting.com. We'll respond within 30 days.
7. Customer Data Requests
When your customers request access to or deletion of their data (GDPR/CCPA), Shopify forwards these requests to us via mandatory compliance webhooks. We process these requests automatically.
8. Security
- All data encrypted in transit (TLS) and at rest
- OAuth tokens stored encrypted
- Access restricted to authorized personnel
- Regular security audits
9. International Transfers
Your data may be processed in the EU and US. For transfers outside the EEA, we rely on Standard Contractual Clauses (SCCs) or adequacy decisions.
10. Changes to This Policy
We'll notify you of material changes via email or in-app notification at least 30 days before they take effect.
11. Contact Us
Questions? Concerns? Contact us:
Ofenbock Consulting AB
Stockholm, Sweden
hello@ofenbock-consulting.com