OPTIS
View OPTIS apps

Privacy Policy

Last updated: 2026-02-26

BSS Commerce ("we", "us", or "our") is a Shopify Partner. We develop Shopify apps (the "App") and provide related support and consulting services (the "Services") to merchants using Shopify to run their online stores. This Privacy Policy explains what information we collect when you install or use our app, how we use and protect that information, and your privacy rights under applicable law. By installing or using our app, you agree to the practices described in this policy.

1. Information We Collect

When you install the app, Shopify automatically shares certain information with us through Shopify's API, in accordance with Shopify's API License and Terms of Use.

1.1 Information from your Shopify store

This may include:

  • Your store name - used to identify your account in our systems.
  • Your store email address - used for service notifications and support.
  • Customer email addresses - only when strictly necessary to deliver a feature you have configured (for example, order-related personalization).
  • Information shared when you contact us for technical or customer support - such as the body of your message, attachments, and any screenshots you send.

This information is required for the app to function properly and for us to provide support. If you choose not to provide this information, you may uninstall the app at any time.

1.2 Information from our website

When you visit the BSS Commerce / OPTIS website (the "Site"), we may automatically collect certain information using common technologies:

  • Cookies - small data files stored on your device to remember preferences and improve user experience.
  • Log files - including IP address, browser type, internet service provider, referring and exit pages, and timestamps.
  • Web beacons, tags, and pixels - used to understand how visitors browse the Site.

For more details about cookies and how to disable them, please visit allaboutcookies.org.

2. Why We Collect Your Information

We use the information described above to:

  • Create and save app settings for your store.
  • Provide technical support and respond to your requests.
  • Enable and operate app features that you have explicitly turned on.
  • Communicate with you about the app, important updates, or related services.
  • Detect, investigate, and prevent fraudulent activity or abuse of our Services.
  • Improve our products, our customer support, and the overall user experience.

We never sell or share your data with third parties for marketing purposes.

3. Data Storage & Security

Your store and customer data are stored on BSS Commerce servers in the United States, hosted via Linode, and retained only while you use the app or until you uninstall it. We take data protection seriously and use modern security measures - including encrypted transport (HTTPS/TLS), encrypted backups, restricted access controls, and audit logging - to prevent unauthorized access, data loss, or misuse. However, please note that no method of online transmission or electronic storage is 100% secure, and we cannot guarantee absolute security.

4. Data Retention

We retain your data only for as long as is necessary to provide our Services. When you uninstall the app, we automatically delete or anonymise store-related data within a reasonable period (typically 30 days), unless we are legally required to retain it for tax, accounting, or compliance reasons. Support correspondence may be kept longer for service-quality monitoring, but is never used for marketing without your consent.

5. Cookies Policy

Cookies help us improve your experience when using our website. We use the following categories:

  • Strictly Necessary Cookies - required for the website to function properly. These cannot be switched off.
  • Performance & Analytics Cookies - help us understand how visitors use the site so we can improve it. These are anonymised and aggregated.
  • Functionality Cookies - remember your preferences (such as language and region) to personalise content.

You can control or disable cookies through your browser settings at any time. Disabling certain cookies may degrade Site functionality.

6. Third-Party Services

Our app and website may use trusted third-party services, including Shopify APIs, analytics providers, customer-support chat tools, and email delivery services. These providers act as processors on our behalf and are bound by their own privacy policies and data-processing agreements. We do not control third-party websites linked from our content and recommend reviewing each provider's privacy policy before sharing personal information.

7. Your Privacy Rights

Depending on where you live, you may have specific rights regarding your personal data.

7.1 European (GDPR) Privacy Rights

If you are located in the European Economic Area (EEA) or the United Kingdom, you have the right to:

  • Know what personal data we collect and why we collect it.
  • Access a copy of your personal data in a portable format.
  • Correct or update inaccurate information.
  • Request deletion of your personal data, subject to legal exceptions.
  • Object to or restrict certain types of processing, including direct marketing.
  • Opt out of marketing communications at any time.
  • Not be subject to automated decisions that significantly affect you.
  • Lodge a complaint with your local data-protection authority.

To exercise any of these rights, please contact us at [email protected]. We will respond within 30 days.

7.2 California Privacy Rights (CCPA / CPRA)

If you are a California resident, you have the right to:

  • Request details about the personal information we collect, use, disclose, and sell (if applicable).
  • Request deletion of your personal information.
  • Opt out of any sale or sharing of personal information for cross-context behavioural advertising.
  • Correct inaccurate personal information.
  • Limit the use and disclosure of sensitive personal information.
  • Receive equal service and pricing even if you exercise your privacy rights.

To submit a request, please email us at [email protected]. We may need to verify your identity before processing your request.

7.3 Nevada Privacy Rights

Nevada residents may request to opt out of the sale of personal information. Although we do not sell personal information, you may still submit a request by emailing [email protected].

8. Children's Privacy

Our Services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can delete it.

9. International Data Transfers

If you access our Services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using the Services, you consent to this transfer. We rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers from the EEA, UK, or Switzerland.

10. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other operational reasons. The updated version will be posted on this page with a new "Last updated" date. Continued use of our app or Services after any update means you accept the revised terms.

Contact Us

If you have any questions about this Privacy Policy or the data we collect, please contact us:

  • Email: [email protected]
  • Address: 14-16-18-19F, Viwaseen Tower, 48 To Huu Street, Trung Van Ward, Nam Tu Liem District, Hanoi, Vietnam

Please clearly describe your request, especially if you are asking about the personal data we hold about you. We aim to respond within one business day for support inquiries and within 30 days for formal data requests.