Privacy Policy

Refund Leakage Monitor processes minimum protected order, refund, and return data required to provide refund leakage analytics, reporting, export, and merchant troubleshooting.

Data processed

We may process store domain, app session data, product identifiers, titles, SKUs, vendor, product status, product type, inventory item identifiers and unit cost when available, order identifiers and order names, order totals, discounts, taxes, shipping amounts, refund identifiers, refunded amounts, refund line items, refund quantities, restock information, return identifiers/status/line items when enabled, transaction summary fields such as gateway/kind/status/amount/fees when available, app settings, cost assumptions, sync job status, and operational logs.

Data not requested by default

The app does not request customer email, phone, name, billing address, or shipping address by default. It does not create refunds and does not change orders, products, inventory, returns, customers, themes, or storefronts.

Protected customer data

Some order/refund/return data is protected customer data because it relates to individual orders. Data is used only for refund leakage analytics, filtering, reporting, CSV export, and merchant troubleshooting.

Security and retention

Access tokens and sensitive text fields are encrypted at rest. Raw webhook bodies are not stored long-term. Owner/admin dashboards show operational metadata and aggregate counts, not customer identity or detailed merchant order/refund content. Shopify privacy webhooks are supported and merchants can request deletion.