๐ About This Policy
This Privacy Policy explains how Roundly by XOEGAN ("we", "our", "the app") collects, uses, and protects data when you install and use the Roundly Shopify app (secure.storesyncapp.com).
By installing Roundly, you agree to the terms described here. If you have questions, contact us at devsheb019@gmail.com.
๐ฆ Data We Collect
Roundly collects only the minimum data necessary to operate the currency conversion service.
| Data Type | Why We Collect It | Stored? |
|---|---|---|
| Shop domain (e.g. your-store.myshopify.com) |
To identify your store and apply your currency settings | Yes โ in our database |
| Shopify access token | To call the Shopify API on your behalf (read products, inventory) | Yes โ encrypted in our database |
| Your currency & widget settings | To configure which currencies to show and how the widget appears | Yes โ in our database |
| Visitor IP address (storefront) | To detect the visitor's country for automatic currency selection. IP is resolved to a country code and immediately discarded โ the raw IP is never stored. | No โ only the country code is retained (in a short-lived cache) |
| Storefront impression counts | To show you dashboard analytics (views, conversions, top countries) | Yes โ anonymized counts with no personal identifiers |
๐ง How We Use Your Data
We use the data we collect to:
- Deliver automatic currency conversion on your storefront
- Show accurate exchange rates (fetched from Fixer.io, refreshed daily)
- Detect visitor location by IP to select the right currency automatically
- Display analytics on your Roundly dashboard (views, conversion counts, top countries)
- Apply your geolocation rules (country โ currency mappings you configure)
- Send you account-related emails if you contact support
We do not sell, rent, or share your data with third parties for marketing.
๐ Third-Party Services
Roundly uses a small number of third-party services to operate:
- Fixer.io โ Provides daily currency exchange rates. We send a single request per day with no customer data. See Fixer's privacy policy.
- IP2Location โ We download their Lite geolocation database monthly and run all IP lookups locally on our own server. No visitor IPs are sent to IP2Location. See IP2Location's privacy policy.
- Shopify โ We interact with Shopify's API using OAuth. See Shopify's privacy policy.
๐ Data Security
All data is transmitted over HTTPS (TLS). Shopify access tokens are stored encrypted in our database. We apply server-side rate limiting and input validation on all API endpoints. Our infrastructure is hosted on hardened Linux servers with restricted access.
We do not store raw IP addresses. Geolocation lookups happen in-memory and only the resulting country code (e.g. "GB") is cached for a short period.
๐ Data Retention
- Shop & settings data โ retained while your store has Roundly installed.
- Analytics impression data โ retained for up to 12 months, then automatically purged.
- Geolocation cache โ expires within 24 hours.
-
After uninstall โ when you uninstall Roundly, Shopify sends us an
app/uninstalledwebhook. We deactivate your shop record. You may request full deletion by emailing us (see below).
๐ช๐บ GDPR Compliance
Roundly is built with GDPR in mind. We respond to all three Shopify GDPR mandatory webhooks:
- customers/data_request โ We respond within 30 days. Since we do not store personal customer data, there is nothing to retrieve.
- customers/redact โ No customer PII is stored, so no action is required. We log the receipt of these requests.
- shop/redact โ Sent 48 hours after uninstall. We fully delete shop data upon receipt.
For any GDPR-related request, email us at devsheb019@gmail.com.
๐ถ Children's Privacy
Roundly is a business tool intended for Shopify merchants. We do not knowingly collect any data from individuals under the age of 13. If you believe we have inadvertently collected such data, please contact us and we will delete it promptly.
โ๏ธ Changes to This Policy
We may update this policy from time to time. The "Last updated" date at the top of this page will always reflect the most recent version. Continued use of Roundly after a policy update constitutes acceptance of the revised terms.
๐ฌ Contact Us
For any privacy questions, data requests, or concerns:
- Email: devsheb019@gmail.com
- App: secure.storesyncapp.com
We aim to respond to all inquiries within 5 business days.