Privacy Policy — Discount Anti-Abuse
Last updated: 2026-07-10
This policy describes what the Discount Anti-Abuse app (“the app”, “we”, “us”) stores and why.
What we store
For each store that installs the app:
- The store's
myshopify.comdomain and an API access token (required to operate the app). - Merchant-entered configuration: blocking windows (labels, dates), the custom checkout message, a timezone, an optional list of allowed discount codes, and the app's subscription status.
What we do not store
- No customer data. The app never reads, receives, or stores information about your customers, their carts, or their orders. Discount-code enforcement runs inside Shopify's infrastructure (Shopify Functions); cart contents never reach our servers.
- No payment information (billing is handled entirely by Shopify).
How data is used
Configuration is used solely to decide whether discount codes should be blocked at a given moment and to display your custom message at checkout. We do not sell, share, or use the data for any other purpose.
Data retention and deletion
- Uninstalling the app deletes the store's data (triggered by Shopify's
app/uninstalledandshop/redactwebhooks). - Shopify's mandatory privacy webhooks (
customers/data_request,customers/redact) are acknowledged; since no customer data is stored, there is never anything to return or redact.
Contact
Questions or data requests: support@lstil.de