Privacy Policy
Last updated: June 3, 2026
Introduction
JizaiDev ("we", "us") recognizes the protection and proper management of your information as an important responsibility in providing the Shopify app "SellRules" (the "App").
This Privacy Policy explains the types of information we collect through the App, how it is used, whether it is shared with third parties, and your rights.
Information We Collect
To provide its features, the App requests access to the following information through the Shopify API.
- Shop & account information — Store name, store URL, plan information, and the administrator's email address, name, and locale (required for authentication and operation).
- Product & inventory information — Product IDs, variant IDs, and inventory quantities (used for selling-phase management and inventory-linked rules).
- Customer email addresses — Email addresses submitted through the storefront Waitlist sign-up form (used for back-in-stock notifications).
- Order information — Order IDs, quantities, amounts, phase status, and shipping / estimated delivery dates (used to track order progress and detect delays).
- Notification data — Recipient email addresses, email templates, and send-queue status (used to manage the delivery of email notifications).
- Feedback — Feedback text and attachments submitted by the user. For support and improvement purposes, these are sent to a support management system operated by us (desk-api.jizai.dev).
Shopify API Access Scopes
The API scopes the App requests from Shopify and their purposes are as follows.
- write_products / read_products — Writing selling-phase status to product metafields and monitoring inventory.
- write_orders / read_orders — Applying order tags, phase management, and delay detection.
- read_fulfillments — Monitoring fulfillment status (used to track order progress).
- write_customers / read_customers — Waitlist management and purchase-limit checks (such as VIP detection via customer tags).
- write_merchant_managed_fulfillment_orders — Used to perform fulfillment (shipping) operations and bulk fulfillment.
How We Use Information
- To automatically switch selling phases (announcement, pre-order, made-to-order, regular sale) based on a calendar schedule.
- To accept Waitlist (back-in-stock) email sign-ups and send automatic notifications.
- To apply purchase limits (per-order limit, per-customer limit, VIP-only sales).
- To track the progress of pre-order and made-to-order orders and to detect and notify of delays.
- To deliver email notifications (order confirmations, shipping notices, delay alerts, etc.) via Resend.
- To improve the App, fix issues, and provide support.
Third-Party Services
The App integrates with the following external services.
- Resend — Used for email delivery. Only recipient email addresses and email content are sent.
- Shopify Platform — Used for real-time data synchronization via Webhooks, Flow Triggers, and the Metafields API.
- Fly.io — Used as the hosting infrastructure (cloud platform) for the App.
- Feedback management system (desk-api.jizai.dev) — Operated by us. Used to receive and manage feedback content and attachments submitted by users.
Data Storage and Retention
Customer email addresses registered to the Waitlist are stored in the App's database for as long as the registration remains active. They are deleted upon a customer deletion request or a shop data erasure request.
Order records are retained for operational purposes such as tracking and reporting, and are deleted when the shop uninstalls the App or upon a shop data erasure request.
Email templates and notification settings are stored per shop and are deleted upon uninstall.
Product inventory caches are temporary data and are refreshed periodically.
Disclosure to Third Parties
We do not provide your personal information to third parties except in any of the following cases.
- When disclosure is required by law.
- When necessary to protect a person's life, body, or property.
- When we have your prior consent.
Your Rights
You have the following rights regarding your personal information.
GDPR / CCPA Compliance
In compliance with Shopify's GDPR and CCPA requirements, the App implements the following webhooks.
customers/data_request: When a customer data request is received, we review the data the App holds about that customer (Waitlist registrations, notification history, etc.) and respond through the store owner.
customers/redact: When a customer data deletion request is received, the relevant customer's email address is automatically removed from the Waitlist and notification queue.
shop/redact: When a shop data erasure request is received, all data related to that shop (order records, Waitlist entries, email templates, notification settings, and notification queue) is automatically deleted in bulk.
These mechanisms ensure compliance with the privacy requirements mandated by Shopify.
Cross-Border Data Transfer
Due to the operation of cloud infrastructure and API providers, data may be processed on servers located overseas. In such cases, we apply safeguards such as SSL/TLS encrypted communication.
Security Measures
We strive to prevent unauthorized access, loss, and leakage of data through SSL/TLS encryption of all communications, access restrictions to our systems, and server vulnerability countermeasures.
Changes to This Privacy Policy
We may update this Policy from time to time in response to feature additions or legal changes. If there are significant changes, we will notify you in advance, such as through in-app notifications.
Contact
For questions about this Privacy Policy or the handling of information, or for deletion requests, please contact us below.
JizaiDev (developer and operator of the App)
Please contact us via the inquiry form accessible from the Shopify admin or the "Support" link on the Shopify App Store.