Privacy Policy

Last updated: June 2026

Custom B2B Payment Terms ("the app", "we") is a backendless Shopify app. This policy explains what data the app accesses and how it is handled.

Summary

• The app has no application server or database. The only hosted component is a thin Cloudflare Worker that serves the app's embedded admin page (HTML/JS). It does not store, log, or transmit your store's data.
• All store data is read and written directly between your browser/admin and Shopify's GraphQL Admin API (via App Bridge), and stored inside your own Shopify store as app-owned metafields.

Data the app accesses (via Shopify APIs)

• Companies — to read/write a company's default payment term (net days) and optional deposit percentage.
• Draft orders — to read/write the payment term and a per-order term record, and to set native payment terms on the draft.
• Orders — to read/write a payment-term record for audit/ERP.
• Payment terms & payment customizations — to apply terms at B2B checkout via a Shopify Function.

The app does not request or store customer personal data or payment card data outside of Shopify.

Where data is stored

All configuration and records are stored as metafields within your Shopify store. The app does not keep its own copy of any store data.

Third parties

Shopify processes all data as part of your store. The Cloudflare Worker that serves the app page hosts static HTML/JS only and does not receive your store data. We do not sell or share data with any other third party.

Data retention & deletion

Because data lives in your store's metafields, uninstalling the app and removing its metafields removes the app's data. The app honors Shopify's mandatory compliance webhooks (customers/data_request, customers/redact, shop/redact); since the app stores no customer data off-platform, these are acknowledged with no external data to return or erase.

Contact

Questions: [email protected]