FraudFlag
Legal

Privacy Policy

Last updated: 17 April 2026

Draft template — have it reviewed by a lawyer in your jurisdiction before relying on it commercially, particularly for UK/EU GDPR and California CCPA compliance.

This document describes how FraudFlag ("we", "us", or "our") collects, uses, and protects information when you ("the merchant") use the FraudFlag Shopify app ("the Service").

FraudFlag is operated by FraudFlag Ltd, located at Peaceland Estate, Lagos, Nigeria.

1. What we collect

When you install FraudFlag we receive, via the Shopify APIs and webhooks:

  • Your shop domain, shop billing country, and shop currency.
  • For every order placed after installation: order ID, order name, total price and currency, customer email, customer name, phone, billing and shipping addresses (country code plus street-level detail where relevant to scoring), shipping method, fraud-analysis messages Shopify attached to the order, and the customer's Shopify order-history count.

We also store the following information you enter directly:

  • The email address you nominate for FraudFlag alerts.
  • The list of email domains you block.
  • Your alert preferences (which risk levels trigger emails; the medium-risk threshold).

2. How we use it

We use this information solely to:

  • Score each new order against our risk-signal library and present the result to you in the FraudFlag admin UI.
  • Send email alerts for orders that meet thresholds you have explicitly enabled.
  • Send the optional Monday-morning digest summarising the previous week.
  • Show aggregated counts and values in your FraudFlag dashboard.

We do not profile individual shoppers. We do not use your data to train machine-learning models. We do not sell your data.

3. Who we share it with

We share data only with:

  • Shopify — source of the data; access is governed by the scopes you approved at installation.
  • Railway (our hosting provider) — hosts the operational database and servers that run FraudFlag.
  • Resend (our email provider) — receives only the recipient email, subject, and body of alerts you have enabled.

We do not share data with advertisers, analytics providers, or any party outside the processors listed above.

4. How long we keep it

  • Order scores, signals, and bullets — retained while your app installation is active. Deleted on receipt of Shopify's shop/redact webhook (sent approximately 48 hours after uninstall).
  • Sessions — deleted immediately on Shopify's app/uninstalled webhook.
  • Individual customer data — deleted on receipt of Shopify's customers/redact webhook.

5. Your rights (and your customers' rights)

FraudFlag honours Shopify's mandatory GDPR webhooks:

  • customers/data_request — we log the request. Because FraudFlag holds no structured PII beyond what Shopify already shows you in the admin order detail, you can fulfil the request directly from Shopify.
  • customers/redact — we delete all scored-order data associated with the specified customer email and orders.
  • shop/redact — we delete all data associated with your shop.

To exercise these rights outside of Shopify's tooling, contact us at [email protected].

6. Cookies

FraudFlag sets no first-party tracking cookies. Authentication uses Shopify's session cookies managed by Shopify App Bridge.

7. Security

Data is transmitted over HTTPS. Credentials for the operational database are held only in environment variables on our hosting provider. Every Shopify webhook payload is HMAC-verified before any processing.

8. Changes

We may update this policy. The "Last updated" date at the top indicates the current version. Material changes will be emailed to merchants with an alert email on file.

9. Contact

Questions? Email [email protected].