Privacy Policy

Last updated: May 29, 2026

Introduction

Panelque (“we”, “our”, or “us”) provides a Shopify application for sales analytics, inventory management, and expense tracking (the “App”). This Privacy Policy explains how we collect, use, and share information when you install or use the App in connection with your Shopify store.

Information We Collect

When you install and use the App, we may access and process certain information from your Shopify account, depending on the features you use and the permissions you grant:

  • Store Information: Store name, domain, contact email, Shopify plan, currency, VAT registration settings, and related configuration
  • Authentication Data: Shopify OAuth access tokens and granted scopes required to access your store on your behalf
  • Product Data: Product listings, variants, options, inventory levels, and pricing information
  • Order Data: Order details, line items, shipping lines, fulfillment status, tracking information, refunds, and transaction data
  • Customer Data: Information about your end customers as received from Shopify orders, including name, email, phone number, shipping address, and company name
  • Financial Data: Sales figures, expenses, purchase invoices, warehouse and inventory records, and cost data that you input into the App
  • Uploaded Files: Files you upload to the App, such as purchase invoice attachments
  • Technical Data: Logs, IP address, and timestamps for security and debugging

Customer data is processed solely to provide the App’s analytics, order management, and fulfillment tracking features to you, the merchant. We do not use end-customer information for marketing or share it with third parties beyond the service providers listed below.

How We Use Your Information

We use the information we collect to:

  • Provide the App’s features: analytics, inventory management, cost tracking, and delivery tracking
  • Synchronize data between Panelque and your Shopify store
  • Provide customer support
  • Monitor and improve performance, reliability, and security
  • Comply with legal obligations

We do not sell your information.

Legal Basis for Processing

We process your personal information under the following legal bases:

  • Contractual Necessity: To provide the App’s services and features to you.
  • Legitimate Interests: For security, debugging, and improving our services.
  • Consent: Where you have explicitly provided it (for example, for marketing communications).

Third-Party Services

We use the following third-party services to operate the App:

  • Shopify: Store platform and authentication
  • Hetzner (EU jurisdiction): Cloud hosting infrastructure for data storage and processing
  • Cloudflare R2 (EU jurisdiction): Object storage for uploaded files such as purchase invoice attachments
  • Postmark: Transactional email delivery
  • Shipping carriers (e.g., InPost): Delivery tracking status
  • OpenStreetMap Nominatim: Postal-code geocoding (postal code and country code only, no customer name, email, or street address) used to plot order origins on the geographic distribution map
  • Facebook Marketing API: When you connect your Facebook ad account, we retrieve your own ad-spend metrics. No customer data from your store is sent to Facebook.
  • Simple Analytics (EU jurisdiction): Cookieless, anonymous page-view analytics on our public marketing pages. Not loaded inside the Shopify-embedded app.

These services have their own privacy policies, and we recommend that you review them.

Data Retention and Security

We retain your data for as long as you use the App. When you uninstall Panelque, your store is marked inactive and your Shopify access token is invalidated immediately, so we can no longer access your store. We then fully delete your store data — including any uploaded files — within 30 days of uninstall. We also honour end-customer data-erasure and data-access requests from Shopify within the timeframes required by applicable law. Some technical logs may be retained longer where necessary for security and legal compliance.

We protect your information with encryption in transit (SSL/TLS), restricted access controls, and industry-standard security measures. No method of transmission or storage is 100% secure, but we work to protect data against unauthorized access, alteration, or destruction.

In the event of a security incident affecting personal data, we follow our Incident Response Policy, which describes how we detect, contain, and notify affected merchants.

Your Rights

Depending on your location, you may have rights under applicable data protection laws (such as GDPR) including the right to access, correct, delete, or port your data. You can also uninstall the App at any time, which invalidates our access to your store and triggers deletion of your data within 30 days. To exercise any rights or request immediate deletion sooner, please contact us at the email below.

Changes

We may update this Privacy Policy from time to time. Any updates will be posted on this page with an updated date.

Contact

The App is operated by Marie Smth Marina Kuznetsova, a sole proprietorship registered in Poland, acting as the data controller for the personal information described in this Policy.

If you have any questions about this Privacy Policy, please contact us at:

Email: [email protected]