Privacy Policy — Exsonna Checkout Upsells
Last updated: May 27, 2026
1. Who we are
Exsonna Checkout Upsells ("the App") is a Shopify application that lets merchants display upsell offers in the Shopify checkout and apply automatic discounts to those offers. The App is operated as a single-developer application.
2. Data we collect
When a merchant installs the App, we store the following data in our database:
- Shop domain and access token — required by Shopify to authenticate API requests on the merchant's behalf.
- Upsell campaign configuration — the product IDs, discount percentages, and active/inactive status that the merchant sets in the App dashboard. No customer data is included.
- Billing plan status — whether the merchant is on a free or paid plan.
We do not collect, store, or process any personal data about end customers (shoppers). The checkout extension reads product and cart information directly from Shopify's checkout APIs within the browser; none of it is sent to our servers.
3. How we use data
- To display upsell offers to shoppers in the merchant's Shopify checkout.
- To apply the configured discount percentage via a Shopify discount Function.
- To manage the merchant's subscription and billing via Shopify.
We do not sell, rent, or share merchant data with any third parties.
4. Data retention
Merchant shop data and campaign configurations are retained for as long as the App is installed. Upon uninstallation, Shopify sends us anapp/uninstalled webhook and we delete the shop's access token. Campaign data may be retained for up to 30 days after uninstallation for billing reconciliation, then permanently deleted.
5. GDPR / data subject rights
We comply with Shopify's mandatory GDPR webhook requirements:
- Customer data request (
customers/data_request) — we confirm we hold no customer personal data. - Customer data erasure (
customers/redact) — we confirm we hold no customer personal data to erase. - Shop data erasure (
shop/redact) — we delete all data associated with the shop within 30 days of receiving this webhook.
6. Security
Merchant data is stored in a PostgreSQL database hosted on Fly.io with TLS encryption in transit. Access tokens are stored server-side and never exposed to the browser. HTTPS is enforced on all endpoints.
7. Changes to this policy
We may update this policy from time to time. Material changes will be communicated via the Shopify Partners dashboard notification system. Continued use of the App after changes constitutes acceptance.
8. Contact
Questions about this policy? Email us at ansonliang55@gmail.com.