This Customer Data Processing Privacy Policy explains how MergeGuard processes personal data relating to end customers of merchants ("Customer Data") when merchants use our application and services.
This Policy supplements our Global Privacy Policy and applies only to Customer Data processed on behalf of merchants.
1. Scope & Purpose
This Policy applies when:
- A merchant installs or uses our Services (e.g., via Shopify)
- We access or process Customer Data through merchant-authorized APIs
- Customer Data is processed solely to provide the Services
2. Roles & Responsibilities
- Merchant: Data Controller (GDPR) / Data Fiduciary (India)
- MergeGuard: Data Processor
We process Customer Data:
- Only on documented merchant instructions
- Only for purposes defined by the Services
- Only in accordance with applicable law
3. Categories of Customer Data Processed
Subject to merchant permissions, Customer Data may include:
- Name, email address, phone number
- Shipping and billing addresses
- Order and transaction history
- Customer identifiers, tags, and metadata
- Region, location, and behavioral indicators
4. How We Process Customer Data
Customer Data is processed to:
- Identify and resolve duplicate customer records
- Perform customer identity resolution and clustering
- Generate analytics and insights (e.g., LTV, CAC, retention)
- Support merchant-initiated customer merge decisions
- Improve data accuracy and operational efficiency
5. What We Do NOT Do With Customer Data
- We do NOT sell customer data
- We do NOT use it for our own marketing
- We do NOT share it with unrelated third parties
- We do NOT retain it beyond what is necessary
6. Contact Information
privacy@mergeguard.store