For Merchants
📊
"Why did revenue drop this week?"
Revenue attribution
🔻
"Where is my funnel leaking?"
Funnel diagnostics
🔑
"Is SEO bringing buyers or just traffic?"
SEO → revenue
💡
"What should I fix first today?"
AI diagnostics
For Agencies
📈
"Which channel deserves more budget?"
Channel CAC & payback
"Can I explain what changed in 60 seconds?"
Store diagnostics
🏪
"How do I compare across all client stores?"
Multi-store dashboard
Pages
Pricing Changelog Sign in
Start 30-day free trial → Watch live demo
Security & data protection

Security built for
merchant trust.

StoreTracker is built for outcomes — without compromising trust. Merchant data stays owned, protected, isolated, and used only to power analytics and insights.

View privacy policy Contact support
Shopify-native access
Encrypted storage
Data deleted on uninstall
StoreTracker · Security overview
Protected
Protection principles
01
Merchant owned
02
Encrypted
03
Not resold
No payment credentials stored. StoreTracker does not store credit cards, CVVs, passwords, or billing credentials.
First-party architecture. Tracking is Shopify-native and merchant-owned.
🔐 Security & Data Protection

Built for outcomes — without compromising trust.

1. Data Ownership

Merchants retain full ownership of their data. StoreTracker acts only as a data processor and never sells, shares, or monetizes merchant data.

2. What We Store and What We Don’t

  • Order metadata including IDs, timestamps, and values
  • Product and attribution data
  • First-party behavioral events

We do not store payment information, credit cards, CVVs, passwords, or billing credentials.

3. First-Party, Shopify-Native Tracking

StoreTracker integrates via Shopify OAuth with read-only permissions. All tracking is first-party and merchant-owned.

4. Encryption & Secure Storage

  • HTTPS / TLS encryption in transit
  • Encrypted databases and backups
  • Secrets stored securely outside application code

5. Access Control

Access is restricted using role-based permissions. Only authorized users can access store data.

6. Auditability & Transparency

Attribution logic, data sources, and metrics are clearly labeled in-app. Agencies can audit and explain results with confidence.

7. Data Retention & Deletion

  • Merchant-initiated data deletion supported
  • Automatic deletion within 30 days of uninstall
  • Data deletion requests handled through verified support workflows

8. AI & Automated Insights

StoreTracker does not train shared or public AI models using merchant data. Data is processed ephemerally to generate insights.

9. Regulatory & Privacy Considerations

StoreTracker is designed around core data protection principles such as data minimization, purpose limitation, transparency, and merchant-initiated data deletion.

StoreTracker does not sell or share consumer personal data and relies on Shopify as the primary system of record for customer information. Our practices continue to evolve as regulatory requirements apply.

10. Certifications

We follow industry-standard security practices. Formal certifications are pursued based on enterprise requirements.

One-line summary:
StoreTracker uses a Shopify-native, first-party architecture where merchants retain full data ownership. Data is encrypted, isolated, never resold, and deleted on uninstall.