Overview
FIDE is a Shopify app by FIDE Labs("we", "us") that lets merchants collect quote requests from their customers. This policy explains what data we handle, why, how we protect it, and the rights you have over it. We've kept it plain — if anything's unclear, email us.
For customer data, the merchant is the data controller and FIDE is the processor acting on their behalf. For merchant account data, FIDE Labs is the controller.
What we collect
- Merchant data — store name, Shopify store URL and ID, your account name and email, subscription/billing status, and the settings you choose in the app. Payment card details are handled by Shopify Billing; we never see them.
- Customer data — name, email, phone (if your form asks for it), the products/details requested, any notes, and the date of the request. We only collect the fields the merchant adds to their form.
- Usage and technical data — feature usage, error logs, and limited technical diagnostics, used to keep the app reliable. We do not collect IP addresses or cookies for analytics purposes; our error monitoring is configured to exclude them.
We do not sell data, and we do not use it for advertising or profiling.
How we use it
- Merchant data — to run your account, deliver the app, process billing, and provide support.
- Customer data — to capture, store, and display quote requests to the merchant, and to send quote-related emails on the merchant's behalf.
- Usage data — to monitor app health, fix bugs, prevent abuse, and improve features.
Where it's stored and how it's protected
FIDE is hosted on Fly.io in the Singapore (SIN) region, on a managed PostgreSQL database. Transactional emails are sent via Gmail SMTP or, where a merchant configures their own sender, via Elastic Email or a custom SMTP provider.
- Encryption in transit — all connections are HTTPS/TLS enforced.
- Encryption at rest — sensitive fields (such as merchant SMTP credentials) are encrypted with AES-256-GCM.
- Access controls — Shopify OAuth for authentication, HMAC-verified webhooks, and per-shop data scoping so each store's data is isolated.
- PII minimisation — error monitoring excludes IP addresses, cookies, and request headers.
- Least privilege — we request only the Shopify API scopes the app actually needs.
- Monitoring — Sentry for error tracking and Fly.io health checks for uptime.
No system is perfectly secure, but we take reasonable, appropriate steps and review them regularly.
How long we keep it
FIDE uses event-driven deletion rather than scheduled time-based purges. Data is deleted when the triggering event occurs (uninstall, customer deletion request, or a GDPR webhook), not on a rolling calendar.
- Merchant data — kept while the app is installed. After uninstall, retained for up to 2 days, then permanently deleted via the
shop/redactwebhook (~48 hours after uninstall). - Customer data — kept while the app is installed and the quote record is active. On a customer deletion request, all personal data fields are replaced with redacted values; the anonymised record is retained for analytics continuity but contains no personal information. On uninstall, remaining customer data is deleted with the store's data.
- Usage and analytics data — no separate analytics store; figures are computed live and deleted with the store's data on uninstall.
- System logs — governed by Fly.io and Sentry plan-level retention policies.
Who we share it with
We share data only with the providers needed to run FIDE, never for sale:
| Provider | Receives | Purpose |
|---|---|---|
| Shopify | Merchant, store, and quote data | The app runs on Shopify; data flows through its APIs. |
| Fly.io (Singapore) | All app data | Hosting and infrastructure. |
| Prisma Postgres | All structured app data | Managed PostgreSQL database. |
| Sentry (EU — Germany) | Error and diagnostic data | Error monitoring, configured to exclude IPs, cookies, and headers. |
| Cloudinary | Uploaded files | File and image storage for merchant-uploaded assets. |
| Gmail SMTP | Merchant and customer email addresses | Default sender for quote notifications. |
| Elastic Email (optional) | Email addresses | Alternative sender if configured by the merchant. |
| Custom SMTP (optional) | Email addresses | Used only when a merchant provides their own SMTP credentials. |
All providers are bound by data-protection terms. Where data leaves the EEA/UK, we rely on Standard Contractual Clauses. A current sub-processor list is available on request. We may also disclose data where required by law.
Your GDPR rights
If you're in the EEA, UK, or Switzerland, you have the right to access, correct, delete, restrict, object to, or port your personal data, and to withdraw consent where processing relies on it. You can also complain to your local data protection authority.
Lawful basis: we process merchant data under contract, usage data under legitimate interests, customer data under consent (given to the merchant), and any other data as required by legal obligation.
To make a request:merchants email us directly. Customers should contact the merchant they submitted a quote to, since that merchant is the controller. If a customer contacts us, we'll forward the request or help the merchant fulfil it. We verify identity before acting.
Deletion and Shopify GDPR webhooks
You can request deletion at any time by emailing us. Merchants can also trigger deletion by uninstalling the app — data is retained for up to 2 days, then permanently deleted via the shop/redactwebhook. FIDE implements Shopify's three mandatory compliance webhooks:
customers/data_request— we provide a customer's data to the merchant so they can respond to an access request.customers/redact— we replace all personal data fields with redacted values; the anonymised quote record is retained but contains no personal information.shop/redact— sent ~48 hours after uninstall; we run a final deletion pass to permanently remove all store data.
Webhook deletions are permanent and cannot be reversed.
Cookies
FIDE uses only the cookies necessary to operate the app (for example, session authentication). We do not use analytics cookies, advertising cookies, or any third-party tracking.
The FIDE storefront widget also uses your browser's local storage (not a cookie) to cache the quote form configuration for performance. The key stored is qr_cfg_v1_<shop>and contains only app configuration data — no personal information, no tracking identifiers. It is strictly functional and can be cleared at any time by clearing your browser's site data. See our Cookie Policy for full detail.
Children
FIDE is a business tool, not directed at children, and we don't knowingly collect data from anyone under 16. If you believe a child's data was collected, contact us and we'll delete it.
Changes
We may update this policy to reflect changes in our practices or the law. We'll update the date above and, for material changes, notify merchants in the app or by email. Continued use after changes take effect means you accept them.
Contact
- Email: support@fidelabs.io
- Company: FIDE LABS (OPC) PRIVATE LIMITED
We acknowledge privacy requests within 2 business days and resolve them within 30 days (extendable by up to two months for complex requests, as GDPR allows).