By using our WebCEO GTO app solution, you agree to the collection and use of your data as outlined in this document. If you do not agree with the terms of this notice, you should not use our app.
As part of our service, we may collect and process the following personal data through the Shopify API. The specific permissions required are as follows:
| Permission | Description |
|---|---|
| read_orders | Access to read the details of orders placed in your Shopify store. |
| read_returns | Access to read the details of product returns in your Shopify store. |
| read_locations | Access to read the locations of your Shopify store where inventory is managed. |
| read_fulfillments | Access to read information about order fulfillments. |
These permissions will be used to retrieve data necessary for processing your store’s orders and for providing the requested services. The data obtained from the Shopify API is only used for the intended purpose and is not shared with third parties except as detailed below.
As part of our solution, we will retrieve order data from your Shopify store for the Shopping Mall's Daily GTO Report. The following data are collected daily for report generation:
| Data Field | Description |
|---|---|
| Order Datetime* | The date and time the order was placed. |
| Order ID* | The unique identifier for the order. |
| Order Total Amount* | The total amount of the order, excluding taxes. |
| Order Discount Amount | The discount applied to the order, if any. |
| Order Tax Amount | The tax amount applied to the order. |
| Order Refunded Amount | The amount refunded, if any. |
| Payment Gateway Used | The payment method used for the order. |
Note: Fields marked with an asterisk (*) are required by all mall GTO systems, while the remaining fields depend on the specific mall system requirements.
We do not permanently store the data retrieved from your Shopify store. Any data processed and sent to the shopping mall's GTO system will be retained only for the necessary and suitable duration.
We will not use or retain your personal data for any other purposes beyond the stated services.
We do not share your data with any third parties, except for:
We ensure that all necessary precautions are in place to protect the confidentiality and integrity of your data.
We take the protection of your personal data seriously. We implement appropriate technical and organizational measures to safeguard your data, including:
Under the Personal Data Protection Act 2010 (PDPA), you have the right to:
If you wish to withdraw our access, you can uninstall our custom app or let us know to stop our integration. If you have any questions regarding the use of your data, please contact us.
We may update this document from time to time to reflect changes in our data processing practices or legal requirements. We will notify you of any significant changes through our app or by email. Please review this page periodically for updates.
By using our solution, you acknowledge that you have read and understood this document and consent to the collection, use, and sharing of your data as described above.