Privacy Policy
This Privacy Policy explains how Formixx(“we”, “us”, a product of Zensbot LLC) collects, uses, discloses, and protects information when you (a Shopify merchant) install our app or when an end customer of a Shopify store using Formixx receives a call, message, or tag from our services.
1. What we collect
From the merchant via the Shopify OAuth install flow:
- Shop domain (e.g.
mystore.myshopify.com) and store email. - Offline Shopify access token (used only to read orders and write tags/notes).
- Team members’ email addresses (only if the merchant invites them).
From end customers via Shopify webhooks:
- Customer phone number (for IVR / WhatsApp).
- Order metadata: order number, amount, financial status, payment gateway.
- Shipping / billing address (for display in the dashboard only; not shared externally).
- DTMF responses and call-outcome metadata (answered, no-answer, cancelled, callback).
From everyone interacting with our services: IP address, user agent, timestamps — standard HTTP access logs, kept for security and abuse prevention.
2. How we use it
- Place outbound IVR calls via Robocall.pk to confirm cash-on-delivery orders.
- Send WhatsApp template messages (where enabled).
- Write outcome tags and notes back to the merchant’s Shopify order.
- Show the merchant a dashboard with their own store’s order + call history.
- Email merchant team members with digest, alert, and magic-link sign-in messages.
3. Who we share it with
We use the following sub-processors. Each only receives the minimum data needed for its function:
| Processor | Data shared | Purpose |
|---|---|---|
| Shopify | Order + tag data (already theirs) | Reading orders, writing tags/notes |
| Robocall.pk | Customer phone number, amount, order number | Placing IVR calls |
| Meta / WhatsApp Business API | Customer phone, template variables | WhatsApp confirmations (optional) |
| Cloudflare | IP, request metadata | TLS termination, DDoS + WAF |
| Vercel | IP, request metadata | Hosting the marketing + dashboard frontend |
| Resend | Recipient email, message body | Transactional emails (login, alerts, digest) |
We never sell personal data. We do not share it with advertisers or analytics brokers.
4. How long we keep it
- Active merchant data: retained while the app is installed.
- Uninstall: shop-level data marked inactive within 24 hours; purged within 30 days unless legal hold applies.
- Order + call-attempt records: up to 7 years (Pakistan tax/commercial-record requirement).
- Access logs: 90 days.
5. Your rights
You can request a copy, correction, or deletion of any personal data we hold about you at any time. Merchants can also trigger Shopify’s customers/data_request , customers/redact , and shop/redact compliance webhooks; we honor all three within 30 days.
Submit requests to privacy@zensbot.com.
6. Security
We use HTTPS end-to-end via Cloudflare, encrypt data in transit with TLS 1.2+, and restrict database access to production service accounts. See our Security statement for details.
7. Children
Formixx is not directed to children under 13. We do not knowingly collect data from them.
8. Changes
We’ll post material changes here and, when appropriate, notify merchants by email at least 30 days before they take effect.
9. Contact
Zensbot LLC, Karachi, Pakistan. privacy@zensbot.com.
v0 draft. Review with counsel before submitting the app to the Shopify App Store or relying on this page in a legal dispute.