Install Free

Legal

Privacy Policy

Effective date: 1 May 2026 · Last updated: 1 May 2026

FAQFlow is committed to protecting your privacy. This policy explains what information we collect, how we use it, and your rights as a merchant or visitor.

1. Information We Collect

When you install FAQFlow, we collect: your Shopify store domain and shop metadata (name, currency, timezone); your Shopify admin access token (stored encrypted, used only to deliver the Service); FAQ content you create inside FAQFlow; widget configuration preferences; and anonymised interaction analytics (FAQ view counts, click events) from your storefront widget. We do not collect or store your customers' personal data.

2. How We Use Your Information

We use the information we collect to: provide and operate the FAQFlow service; render the FAQ widget on your storefront; send operational emails (billing confirmations, service notices); improve the product based on aggregate usage analytics; and respond to support requests. We do not sell your data to third parties.

3. Shopify Data Access

FAQFlow accesses your Shopify store via the Shopify Partner API using only the permissions you grant at installation. These typically include reading store metadata, and writing scripts or pages to your theme for widget delivery. We do not access orders, customer personal information, payment details, or any data outside the declared permission scopes.

4. Data Storage & Security

Your store data is stored in a Supabase-hosted PostgreSQL database in a secured cloud environment. Access tokens are encrypted at rest. We use HTTPS for all data in transit. We retain your data for as long as your FAQFlow account is active. You may request deletion at any time (see Section 8).

5. Third-Party Services

FAQFlow uses the following third-party services to operate: Shopify (store integration), Supabase (database hosting), and optionally Google Analytics (aggregate, anonymised usage statistics). Each third-party service has its own privacy policy. We do not share your personally identifiable store information with any third party beyond what is required to deliver the Service.

6. Cookies

FAQFlow uses a session cookie (faqflow_session) to maintain your authenticated session in the dashboard. We do not use tracking or advertising cookies. The storefront widget does not set any cookies in your customers' browsers.

7. Your Rights (GDPR / CCPA)

If you are located in the EU, UK, or California, you have the right to access the personal data we hold about you; request correction of inaccurate data; request deletion of your data; object to or restrict processing; and receive a portable copy of your data. To exercise any of these rights, email us at support@faqflow.shop.

8. Data Deletion

To request deletion of all data associated with your store, uninstall FAQFlow from your Shopify admin and email support@faqflow.shop with the subject line "Data Deletion Request" and your store domain. We will process the deletion within 30 days.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the effective date at the top of this page. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

10. Contact

If you have questions or concerns about this Privacy Policy, please contact us at support@faqflow.shop.

Questions? Email us at support@faqflow.shop