PSimplrProfit

Privacy Policy

Last updated: May 13, 2026

SimplrProfit ("we", "us") provides a Shopify profit analytics dashboard. This Privacy Policy explains what personal data we collect, how we use it, and the rights you have under the EU/UK General Data Protection Regulation (GDPR).

1. Data we collect

Account data

  • Email address and hashed password (or Google OAuth identifier).
  • Account creation date, last sign-in, and session metadata.

Store, customer and order data (via Shopify)

When you connect a Shopify store, we read order-level data via the Shopify Admin API:

  • Order ID, date, total, currency, line items, SKUs, quantities, discounts, refunds.
  • Shipping country and city (for region-level analytics — not full addresses).
  • Product catalog (titles, costs, variants).
  • Payment, shipping and platform fees attached to each order.

We do not request or store customer names, email addresses, phone numbers, full addresses or payment card details from your Shopify store.

Billing data (via Stripe)

Subscription payments are processed by Stripe. We never see or store your card number. Stripe shares with us a customer ID, subscription status, plan, billing country, and the last four digits and brand of your card for receipts. Stripe's processing is governed by the Stripe Privacy Policy.

Usage data

  • IP address, browser, device type, pages viewed, and timestamps.
  • Error and performance logs to keep the service reliable.

2. How we use your data

  • To provide, maintain and secure the SimplrProfit dashboard.
  • To compute profit, margins, fees and ad spend metrics for your store.
  • To process subscription payments and send billing receipts.
  • To respond to support requests and send essential service emails.
  • To detect abuse, fraud and to comply with legal obligations.

Legal bases under GDPR: performance of contract (providing the service), legitimate interests (security, product improvement), legal obligation (tax, accounting), and consent (non-essential cookies, marketing).

3. Shopify integration

We access your Shopify store using a scoped access token you authorize. We request only read access to orders, products and shop information needed for analytics. You can disconnect your store at any time from Settings; this revokes the token and stops further sync. Existing aggregated analytics may be retained until you request deletion.

4. Stripe payment processing

Stripe acts as an independent data controller for payment information. SimplrProfit acts as a controller for subscription metadata (plan, status, customer reference). All card data is captured directly by Stripe in a PCI-DSS compliant environment.

5. Data sharing

We share data only with sub-processors required to run the service:

  • Cloud hosting and database providers (encrypted at rest and in transit).
  • Stripe (payments).
  • Shopify (source of order data).
  • Email delivery providers (transactional email).

We do not sell personal data.

6. International transfers

Your data may be processed outside the EEA/UK. Where this happens, we rely on Standard Contractual Clauses or equivalent safeguards.

7. Retention

We keep account and store data for as long as your account is active. After account deletion, personal data is removed within 30 days, except where retention is required by law (e.g. invoices retained for up to 7 years).

8. Your GDPR rights

  • Access — request a copy of the data we hold about you.
  • Rectification — correct inaccurate data.
  • Erasure — request deletion ("right to be forgotten").
  • Restriction — limit how we process your data.
  • Portability — receive your data in a machine-readable format.
  • Objection — object to processing based on legitimate interests.
  • Withdraw consent — at any time, where processing is based on consent.
  • Lodge a complaint — with your local supervisory authority.

9. Account & data deletion

You can delete your account from Settings → Account → Delete account, or by emailing privacy@simplrprofit.com from your registered email. We will:

  1. Confirm your identity within 5 business days.
  2. Disconnect any linked Shopify store and revoke tokens.
  3. Cancel active subscriptions in Stripe.
  4. Permanently delete your personal and store data within 30 days.

10. Cookies

See our Cookie Policy for details on the cookies we use and how to manage your preferences.

11. Contact

Data Protection contact: privacy@simplrprofit.com

Questions? Email privacy@simplrprofit.com.