FEI Checkout Upsell

FEI Checkout Upsell

Privacy Policy

Effective date: June 7, 2026

FEI Checkout Upsell is a Shopify app for merchant-defined add-on services. This policy explains what information the app processes, which Shopify permissions it uses, and how that information supports the service.

Information we process

  • Shop information such as shop domain, installation state, approved app scopes, app settings, and language preference.
  • Authentication and session records needed to connect the embedded app to Shopify.
  • Merchant-configured service data, including categories, groups, options, prices, terms, display settings, and matching rules.
  • Product, variant, collection, and tag identifiers needed to match service offers to storefront products.
  • Service line item identifiers and properties needed to help merchants recognize purchased add-on services in Shopify orders.

Shopify permissions used by the app

  • read_products: used to read product, variant, collection, and tag information so merchants can target service offers to the correct products.
  • write_products: used to create and update the merchant's hidden FEI service product and service variants, including price and active state, so selected services can be sold as Shopify line items.
  • write_app_proxy: used to operate the Shopify App Proxy endpoint that securely provides storefront service configuration to theme app blocks.

How we use information

  • To operate the embedded Shopify app, merchant settings, and App Proxy endpoints.
  • To show merchant-defined add-on service options on product and cart surfaces.
  • To sync merchant-defined service options with Shopify product variants.
  • To attach service identifiers to cart and order line items for merchant reporting and fulfillment workflows.
  • To maintain security, debug errors, comply with Shopify requirements, and respond to support requests.

Buyer and customer data

  • The app is designed to avoid unnecessary customer data access and does not sell buyer personal information.
  • The current app permissions do not request protected customer data for advertising or resale.
  • If a future reporting feature requires additional Shopify permissions, the app will request only the permissions needed for that feature and update its disclosures before using them.

Merchant responsibilities

  • Merchants define their own service content, pricing, terms, fulfillment process, and customer support obligations.
  • Merchants are responsible for making their service terms accurate, lawful, and visible to buyers where required.

Data sharing and processors

  • The app may use hosting, database, logging, and deployment providers to operate the service.
  • Information is shared with Shopify APIs only as needed for app functionality and according to permissions approved by the merchant.

Retention and deletion

  • Installation sessions and shop settings are retained while the app is installed.
  • When the app receives Shopify uninstall, scope update, customer data request, customer redact, or shop redact webhooks, it processes those requests according to Shopify requirements.

Security

  • The production website and app use HTTPS.
  • Secrets, private keys, access tokens, and environment files are not committed to source control or exposed publicly.

Contact