Privacy Policy

Last updated: June 10, 2026

Appify Lift - A/B Testing ("the App") is operated by Appify Labs. This policy explains how we collect, use, store, and delete data when merchants install and use the App on Shopify.

Who this applies to

This policy covers merchants who install the App and visitors to merchant storefronts where A/B tests are active. We process the minimum data needed to run tests and show analytics in the merchant admin.

Data we collect

• Shop domain, subscription plan, and billing status
• A/B test configuration (test names, URLs, prices, traffic splits, templates, themes, and test status)
• Anonymous visitor identifiers (random IDs stored in browser cookies)
• Aggregated storefront event data: pageviews, add-to-cart, checkout, and purchase events, including order totals and order identifiers needed for conversion reporting
• Non-identifying technical metadata such as device type, page path, and test variant assignment (Control A or Variant B)
• Cart and checkout note attributes (for example test ID and variant) used to attribute funnel events to the correct experiment
• Staff account information provided by Shopify during app installation, used only for support and account management

Data we do not collect

We do not intentionally collect or store customer names, email addresses, phone numbers, or mailing addresses. We do not sell merchant or customer data.

Order data access (read_orders only)

Appify Lift - A/B Testing requests the read_orders scope only. We do not request or use the read_all_orders scope.

Purchase conversions are recorded when Shopify sends an orders/create webhook for a new checkout. The app reads only the order total and test attribution note attributes from that webhook payload. We do not query historical orders through the Admin API and do not need access to orders older than 60 days.

How we use data

We use this data solely to:

• Run A/B tests and assign visitors to control or variant experiences
• Measure funnel performance and revenue per variant
• Display statistics and Bayesian confidence in the merchant admin
• Process app subscriptions and billing
• Provide customer support to merchants

We do not use storefront data for advertising, remarketing, or unrelated purposes.

How tracking works

The App uses a theme app embed for test delivery and a Shopify Web Pixel for checkout and purchase events. Checkout and purchase tracking relies on anonymous cart attributes set when a visitor enters a test. The Web Pixel is configured for analytics purposes only and respects Shopify customer privacy and consent settings.

Customer consent

Storefront tracking follows the merchant's Shopify privacy and cookie consent configuration. Analytics events are collected only when permitted under the merchant's storefront privacy settings.

Data storage & security

Data is stored on secure cloud infrastructure (PostgreSQL on Supabase). Data is transmitted over encrypted connections (HTTPS/TLS). Access is limited to what is required to operate the App.

Data retention & deletion

We retain data only while the App is installed and needed to provide the service. When a merchant uninstalls the App, shop data is deleted in accordance with Shopify's mandatory compliance webhooks (including shop redact). We respond to customer data requests and redaction requests through Shopify's required GDPR webhooks.

Third-party services

The App is hosted on Vercel and uses Supabase for database storage. Shopify provides authentication, billing, and storefront APIs. These providers process data only as needed to operate the App.

Contact

Questions about this policy or data handling: appifylabs3@gmail.com