At PayoutWatch, we respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our services.

By using PayoutWatch, you consent to the data practices described in this policy. We may update this policy periodically, and we encourage you to review it regularly.

We collect several types of information from and about users of our platform, including:

• Personal identifiers (name, email address) supplied through the Shopify install handshake
• Subscription and billing state (plan, trial status) — actual payment is processed by Shopify, we never see your payment method
• Your Shopify store identifier and an offline access token used solely to call the Shopify Billing API
• Stripe Connect account ID (you grant this through OAuth) and the payout summaries we read from it
• Bank statement CSV files you upload, parsed into transaction rows (amount, date, description)
• Usage data and analytics

We use the information we collect to:

• Provide, maintain, and improve our reconciliation services
• Match Stripe payouts to bank deposits and surface variance explanations
• Process subscriptions and manage your account through the Shopify Billing API
• Communicate with you about your account or our services
• Analyze usage patterns to improve functionality
• Protect against unauthorized access and identify potential security issues

Server-side storage: Unlike browser-only tools, PayoutWatch stores your payout summaries and bank transaction rows server-side on Google Cloud SQL (US-Central, encrypted at rest and in transit). This is required to run the matching engine across uploads and to power historical reconciliation reports.

What we don't store: customer names, emails, addresses, card numbers, bank account numbers, or routing numbers. The Stripe scope we request is read-only at the payout level — we never touch customer-level transaction details.

We may share your information in the following situations:

• With third-party service providers who perform services on our behalf (Google Cloud Platform for hosting, Sentry for error monitoring, Shopify for billing, Stripe for the data we read on your behalf)
• To comply with legal obligations
• To protect and defend our rights and property
• With your consent or at your direction

We do not sell your personal information to third parties.

Depending on your location, you may have certain rights regarding your personal information:

• Access to your personal data
• Correction of inaccurate data
• Deletion of your data (subject to certain exceptions)
• Restriction or objection to certain processing activities
• Data portability
• Withdrawal of consent

When you uninstall the app, Shopify sends us a shop/redact webhook 48 hours later. On receipt, we mark your shop as redacted and delete all associated data within 30 days.

We use cookies and similar tracking technologies to track activity on our platform and hold certain information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

Our services are not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected personal information from a child under 16, we will take steps to delete such information from our systems as soon as reasonably possible.

If you have any questions about this privacy policy or our data practices, please contact us at:

Email: sup@payoutwatch.org