Checkout Essentials

Loading...

Privacy Policy

Last updated: December 22, 2025

1. Introduction

Welcome to Checkout Essentials ("we," "our," or "us"). We are committed to protecting your personal data and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Shopify checkout optimization application and related services.

This Privacy Policy complies with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws. By using our services, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller

The data controller responsible for your personal data is:

Company: EvoSolve Solutions sp. z o.o.

Address: UL. SKWIERZYŃSKA 2, 04-853 WARSZAWA, Poland

VAT ID: PL9522254715

Email: info@checkoutessentials.com

3. Data We Collect

We collect different types of information depending on how you interact with our services:

3.1 Information You Provide

  • Account information (email address, store name, business name)
  • Contact information (name, email, phone number when contacting support)
  • Payment information (processed securely through Shopify's billing system)
  • Communication data (support tickets, emails, feedback)

3.2 Information Collected Automatically

  • Device information (browser type, operating system, device type)
  • Usage data (features used, settings configured, interaction patterns)
  • Log data (IP address, access times, pages viewed, referral URLs)
  • Performance data (load times, errors, crash reports)

3.3 Information from Third Parties

  • Shopify store data (store name, domain, plan type, required for app functionality)
  • Analytics data (aggregated usage statistics)
Important: We do NOT collect or store your customers' personal payment information, credit card numbers, or sensitive personal data. All checkout transactions are processed directly by Shopify.

4. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide our services as per your subscription agreement
  • Legitimate Interests: Processing for service improvement, security, fraud prevention, and analytics
  • Legal Obligation: Processing required to comply with applicable laws and regulations
  • Consent: Processing based on your explicit consent (e.g., marketing communications)

5. How We Use Your Data

We use the collected information for the following purposes:

5.1 Service Delivery

  • Providing and maintaining our checkout optimization features
  • Processing your subscription and billing
  • Authenticating your access to the application
  • Syncing settings across your store's checkout

5.2 Service Improvement

  • Analyzing usage patterns to improve features
  • Identifying and fixing bugs and errors
  • Developing new features based on user needs
  • Conducting A/B testing for feature optimization

5.3 Communication

  • Sending important service notifications
  • Responding to support requests
  • Providing product updates and announcements
  • Sending marketing communications (with your consent)

5.4 Security and Compliance

  • Detecting and preventing fraud and abuse
  • Ensuring compliance with Shopify's requirements
  • Maintaining audit logs for security purposes
  • Complying with legal obligations

6. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

6.1 Essential Cookies

These cookies are necessary for the website and application to function. They include session cookies for authentication and security.

6.2 Analytics Cookies

We use analytics cookies (such as Google Analytics) to understand how visitors interact with our website and application. These help us improve our services.

6.3 Preference Cookies

These cookies remember your preferences and settings, such as language preferences and dashboard configurations.

You can control cookies through your browser settings. However, disabling essential cookies may affect the functionality of our services.

7. Third-Party Services

We integrate with the following third-party services to provide our application:

7.1 Shopify

Our application is built on Shopify's platform. When you install our app, Shopify shares necessary store information with us. Shopify's privacy practices are governed by their own Privacy Policy.

7.2 Analytics Services

We may use Google Analytics, Mixpanel, or similar services to analyze usage patterns. These services collect anonymized data about how you use our application.

7.3 Hosting and Infrastructure

Our application is hosted on secure cloud infrastructure (e.g., Vercel, AWS) that complies with industry security standards including SOC 2 and GDPR.

7.4 Communication Services

We may use email service providers (e.g., SendGrid, Mailchimp) to send transactional and marketing emails. These providers are GDPR compliant.

8. Data Sharing and Disclosure

We do not sell your personal data. We may share your data in the following circumstances:

  • Service Providers: With trusted partners who help us operate our services (hosting, analytics, support), under strict confidentiality agreements
  • Legal Requirements: When required by law, court order, or governmental authority
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate notice to you
  • With Your Consent: When you explicitly authorize us to share your information

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

Data Type
Retention Period
Account Information
Duration of subscription + 30 days
Billing Records
7 years (legal requirement)
Support Communications
3 years after last contact
Usage Analytics
26 months (anonymized)
Log Files
90 days
Marketing Preferences
Until consent is withdrawn

After the retention period, data is securely deleted or anonymized.

10. Your Rights (GDPR)

Under GDPR and other applicable laws, you have the following rights regarding your personal data:

10.1 Right of Access

You have the right to request a copy of the personal data we hold about you.

10.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

10.3 Right to Erasure ("Right to be Forgotten")

You have the right to request deletion of your personal data, subject to certain legal exceptions.

10.4 Right to Restriction of Processing

You have the right to request that we limit how we use your data.

10.5 Right to Data Portability

You have the right to receive your data in a structured, commonly used, machine-readable format.

10.6 Right to Object

You have the right to object to processing based on legitimate interests or for direct marketing purposes.

10.7 Right to Withdraw Consent

Where processing is based on consent, you have the right to withdraw that consent at any time.

To exercise any of these rights, please contact us at info@checkoutessentials.com. We will respond to your request within 30 days.

You also have the right to lodge a complaint with your local data protection authority. In Poland, this is the UODO (Urząd Ochrony Danych Osobowych).

11. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • SSL/TLS encryption for all data in transit
  • AES-256 encryption for sensitive data at rest
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Employee security training and confidentiality agreements
  • Incident response and breach notification procedures
  • Regular backups with secure offsite storage

While we strive to protect your data, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

12. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Transfers to countries with adequate data protection (as determined by EU)
  • Binding Corporate Rules where applicable
  • Your explicit consent for specific transfers

13. Children's Privacy

Our services are intended for businesses and are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by:

  • Posting the updated policy on our website with a new "Last Updated" date
  • Sending an email notification for significant changes
  • Displaying an in-app notification when you next use our service

We encourage you to review this Privacy Policy periodically.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Company: EvoSolve Solutions sp. z o.o.

Address: UL. SKWIERZYŃSKA 2, 04-853 WARSZAWA, Poland

Email: info@checkoutessentials.com

Support: support@checkoutessentials.com

Response Time: We aim to respond within 24-48 hours

For data protection inquiries, you may also contact our Data Protection Officer at dpo@checkoutessentials.com.

← Back to Home