Privacy Policy

for the Cart Page Upsell Widget app by Augmentum Studios Ltd

Last updated: 16 November 2025

1. Who we are

This Privacy Policy explains how Augmentum Studios Ltd (“Augmentum Studios”, “we”, “us”, or “our”) processes personal data in connection with our Shopify app, a Cart Page Upsell Widget (the “App”).

  • Company: Augmentum Studios Ltd
  • Email: support@augmentumstudios.com
  • Postal address: Augmentum Studios Ltd, International House, 101 King’s Cross Road, London, United Kingdom WC1X 9LP
  • Jurisdiction: United Kingdom

Augmentum Studios Ltd is the controller of personal data about merchants using the App. For personal data of customers of Shopify stores, we generally act as a processor on behalf of the relevant merchant (the “Controller Merchant”).

Our App is distributed through the Shopify App Store, and we comply with Shopify’s data and user privacy requirements for apps.

2. Scope of this Privacy Policy

This Privacy Policy applies to:

  • Merchants and their staff who install or use the App; and
  • The processing of data from the merchant’s Shopify store that occurs through the App.

This Privacy Policy does not apply to:

  • The merchant’s own Shopify store privacy practices; or
  • Shopify’s own processing of personal data.

For those, please refer to the merchant’s store privacy policy and Shopify’s own privacy policy.

3. How the App works (high-level summary)

  • The App is a Cart Page Upsell Widget that merchants configure via the App’s Admin UI in their Shopify dashboard.
  • The App is embedded in the Cart Page as an App Block. The script is only loaded and functional on the cart page, not on the rest of the storefront.
  • The App may display upsell offers based on the products in the cart and the merchant’s configuration.
  • The App records aggregated analytics (e.g., impressions, add-to-carts, and attributed purchases) for upsell widgets and the products shown in them.
  • The App uses the Shopify Admin API with the following scopes: read_orders, read_products, write_products, read_themes.
  • The App is built with Remix/React, hosted on Vercel, and uses NeonDB (PostgreSQL) for session and configuration storage.

We only request and use Shopify scopes that are necessary for the App to function, in line with Shopify’s app requirements.

4. Personal data we process

4.1 Data about merchants and their store

We may process the following information about merchants and their store:

  • Shop identification data
    • Shopify shop domain (e.g., example-store.myshopify.com)
    • Shopify shop ID
  • App account / configuration data
    • Upsell widget configuration (e.g., products and variants selected, notes, links, labels, pricing/discount logic, priorities)
    • Theme installation status for the App Block (from read_themes)
  • Technical & usage data (merchant-side)
    • Admin UI usage events (e.g., creation or update of upsell widgets)
    • Error logs, performance metrics, and server logs generated by our infrastructure (which may include IP address, browser/user agent, and timestamps, depending on our hosting providers’ default logging).

We do not intentionally store the merchant’s personal name, personal email, or address unless they are part of the Shopify shop account information provided to us by Shopify or are voluntarily provided via support communications.

4.2 Data about shoppers (customers of merchants)

The App does not store any directly identifying customer personal data (e.g., customer name, email address, phone number, or shipping address) in our database.

However, to function, the App may access order information via the Shopify read_orders scope. This may technically include customer personal data at the API level, but we do not persist or use those identifiers. We only process order information to:

  • Detect orders that contain line items originating from the App’s upsell widgets;
  • Attribute aggregated revenue to:
    • specific upsell widgets; and
    • specific products/variants shown in those widgets.

We therefore store only aggregated analytics, such as:

  • Number of upsell widget views;
  • Number of upsell add-to-carts;
  • Number of purchases attributed to the upsell widget;
  • Aggregated revenue attributed to a widget and/or product or variant.

We do not store individual order events with customer identifiers; we aggregate data so that it cannot reasonably be linked back to an identifiable customer.

4.3 Data processed in the cart

To distinguish items added by the upsell widget from items added elsewhere, we use line item properties, for example:

  • An internal widget identifier
  • Metadata indicating that an item was added by the upsell

These properties are stored in the merchant’s Shopify store (within the cart/line items) and not as separate customer records in our own database.

5. How and why we use personal data (purposes & legal bases)

We process personal data for the following purposes and on the following legal bases:

  1. To provide and operate the App
    • Setting up and maintaining the merchant’s app configuration
    • Rendering the upsell widget on the cart page
    • Tracking eligibility and status of the App Block in the theme
      Legal basis: Performance of a contract (or steps prior to entering into a contract) with the merchant.
  2. To provide analytics and reporting to merchants
    • Aggregating views, add-to-carts, purchases, and attributed revenue for upsell widgets and associated products
      Legal basis: Performance of a contract; and/or our legitimate interests in improving and reporting on our services.
  3. To maintain security, prevent abuse, and fix issues
    • Monitoring logs and system metrics
    • Protecting the App from misuse, fraud, and security incidents
      Legal basis: Legitimate interests (security and fraud prevention) and, where applicable, legal obligations.
  4. To manage billing and subscriptions
    • Processing Shopify app charges (e.g., USD 10 / 30 days with 14-day free trial) via Shopify Billing
    • Tracking subscription status and renewal
      Legal basis: Performance of a contract; legitimate interests in being paid for our services.
  5. To comply with Shopify and legal requirements
    • Responding to mandatory privacy law compliance webhooks:
      • customers/data_request
      • customers/redact
      • shop/redact
    • Complying with applicable data protection laws (e.g., GDPR/UK GDPR).
      Legal basis: Compliance with legal obligations.

We do not:

  • Sell personal data to third parties;
  • Use merchant or customer data for independent marketing to customers;
  • Build separate profiles of customers outside the aggregated analytics described.

6. Shopify API scopes and how we use them

We use the following Shopify scopes only for the purposes described below:

  1. read_orders
    • To access orders created in the merchant’s store;
    • To check if orders contain upsell items originating from the App;
    • To calculate and store aggregated analytics such as attributed revenue per widget and per product.
    • We do not store customer identifiers such as names, emails, addresses, or phone numbers from these orders.
  2. read_products & write_products
    • To allow merchants to configure upsell offers by selecting products and variants in the App Admin UI;
    • To add line item properties to cart items to distinguish upsell-originated items and support the cart logic required;
    • We do not modify product details beyond what is necessary for the upsell configuration and identification logic.
  3. read_themes
    • To read theme information so we can provide feedback in the App Admin UI about whether the App Block is installed and active in the theme.

These uses are intended to be consistent with Shopify’s guidance on limited permissions and protected customer data.

7. Cookies and similar technologies

  • On the storefront (cart page), the App is embedded as an App Block and generally relies on Shopify’s existing cookies and session mechanisms. We do not add any additional tracking cookies for third-party marketing.
  • In the App Admin UI, we may use functional cookies or similar technologies where necessary for:
    • Authentication and security;
    • Session management;
    • Remembering simple UI preferences.

Any such use is limited to what is necessary to operate the App. Merchants should also refer to Shopify’s own policies regarding cookies and tracking technologies.

8. Sub-processors and data sharing

We may share data with the following categories of service providers (“sub-processors”) to operate the App:

  • Hosting and infrastructure providers (e.g., Vercel) to host the App and serve the widget;
  • Database and storage providers (e.g., NeonDB (PostgreSQL)) to store configuration and aggregated analytics;
  • Error monitoring, logging, and performance analytics tools, if implemented;
  • Professional advisors (e.g. legal, accounting) where necessary.

These service providers may process data only on our behalf, in accordance with our instructions, and under appropriate contractual safeguards, including data protection and confidentiality obligations.

We may also disclose information:

  • Where required by law, regulation, or legal process;
  • In connection with a merger, acquisition, or sale of our business (in which case data protection obligations will be maintained).

We do not sell personal data to third parties.

9. International data transfers

Our infrastructure and sub-processors may be located in the United Kingdom, the European Economic Area (EEA), or other countries, including the United States.

Where we transfer personal data from the UK or EEA to countries that do not provide an equivalent level of data protection, we rely on appropriate safeguards, such as:

  • Standard Contractual Clauses approved by the European Commission or the UK ICO; and/or
  • Other lawful transfer mechanisms, as applicable.

10. Data retention

We retain data only for as long as necessary for the purposes set out in this Privacy Policy, including:

  • While the App is installed and actively used by the merchant; and
  • For a limited period thereafter where required for:
    • billing and accounting;
    • security and fraud prevention;
    • legal obligations or dispute resolution.

When Shopify sends us a shop/redact webhook, we will delete or anonymize personal data related to that store within 30 days, unless we are legally required to retain certain information.

For customer data redaction and data requests:

  • We have implemented the mandatory Shopify privacy law compliance webhooks:
    • customers/data_request,
    • customers/redact,
    • shop/redact.
  • Since we do not store identifiable customer data in our own database, such requests will normally result in a no-op (no further data to delete or export), which we handle and log accordingly.

Aggregated analytics that no longer contain personal data may be retained for longer for statistical and product improvement purposes.

11. Security

We take reasonable technical and organizational measures to protect personal data, including:

  • Use of industry-standard encryption in transit (e.g., HTTPS/TLS) as provided by our hosting providers;
  • Restricting access to production systems and databases to authorized personnel;
  • Using API keys and access tokens securely;
  • Regularly updating dependencies and infrastructure where practicable;
  • Following Shopify’s security and privacy best practices when integrating with Shopify APIs.

However, no method of transmission or storage is perfectly secure, and we cannot guarantee absolute security.

12. Your rights (merchants and staff)

Depending on your location (for example, under the UK GDPR or EU GDPR), you may have the following rights in relation to personal data we hold about you:

  • Right to access your personal data;
  • Right to rectification (correction) of inaccurate or incomplete data;
  • Right to erasure (in certain circumstances);
  • Right to restriction of processing (in certain circumstances);
  • Right to data portability (in certain circumstances);
  • Right to object to certain processing (including where based on legitimate interests);
  • Right to lodge a complaint with a data protection authority.

If you are a merchant or member of a merchant’s staff, you can exercise these rights by contacting us at:

  • Email: support@augmentumstudios.com
  • Postal: Augmentum Studios Ltd, International House, 101 King’s Cross Road, London, United Kingdom WC1X 9LP

We may need to verify your identity before fulfilling your request.

13. Rights of customers of merchants (data we process as a processor)

If you are a customer of a Shopify store that uses our App:

  • The Controller of your personal data is the merchant (store owner), not Augmentum Studios Ltd.
  • You should contact the relevant store directly to exercise your data protection rights.

We will assist the merchant in fulfilling data requests by:

  • Responding to Shopify’s customers/data_request and customers/redact webhooks; and
  • Deleting or exporting any customer data we may hold (noting that we do not store identifiable customer data as part of normal operations).

14. Children

The App is intended for business users only (Shopify merchants and their staff) and is not directed at children. We do not knowingly collect personal data from children.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in:

  • Our App or business practices;
  • Shopify requirements; or
  • Applicable laws and regulations.

We will indicate the “Last updated” date at the top of this document and, where appropriate, provide additional notice (for example, via the App Admin UI or email).

16. Contact us

If you have any questions about this Privacy Policy or our data practices, please contact:

  • Augmentum Studios Ltd
  • Email: support@augmentumstudios.com
  • Postal address: Augmentum Studios Ltd, International House, 101 King’s Cross Road, London, United Kingdom WC1X 9LP