Privacy Policy
Last updated: July 4, 2026
This Privacy Policy describes how Leonix ("we", "us", or "our") collects, uses, and handles data when you install and use the Leonix Fraud Engine Shopify app ("the App").
1. What Data We Collect
Order & Customer Data
- Order ID, order total, currency
- Customer email address
- Billing and shipping country
- Cart token and Shopify customer ID
Device & Session Data (via FingerprintJS Pro)
- Browser fingerprint (name, version, OS)
- IP address and approximate geolocation
- VPN / proxy / Tor usage indicators
- Bot detection signals, incognito mode detection
Store Data
- Your Shopify store domain
- OAuth access token (used only to inject the fingerprinting widget into your theme)
2. How We Use This Data
Solely to score orders for fraud risk and display results in your dashboard. We do not sell or share your data or your customers' data with any third party for marketing or advertising purposes.
3. Third-Party Services
| Service | Purpose | Policy |
|---|---|---|
| FingerprintJS Pro | Device fingerprinting and bot detection | fingerprint.com ↗ |
| Google Cloud Platform | Hosting and database (Cloud Run, Cloud SQL) | cloud.google.com ↗ |
| Google Gemini | AI-powered analyst chat feature | ai.google.dev ↗ |
4. Data Retention
- Order and fraud data — retained while the app is installed, plus 30 days after uninstallation.
- Device fingerprint data — 90 days.
- OAuth tokens — deleted immediately upon uninstallation.
5. Data Deletion (GDPR)
- Customer data request — We acknowledge receipt. Email info@leonix.io to request a copy of data held about a specific customer.
- Customer data erasure — All records deleted within 30 days of request.
- Shop data erasure — All store data deleted within 48 hours of uninstallation (triggered automatically).
6. Data Security
All data stored in Google Cloud SQL, encrypted at rest and in transit. Access is restricted to authenticated services within our GCP project. We never store raw payment card data.
7. Merchant Responsibilities
- Inform your customers that device fingerprinting is used on your storefront for fraud prevention.
- Include a reference to this in your own store's privacy policy.
8. Changes & Contact
We may update this policy from time to time. Merchants will be notified of significant changes via the App dashboard.
Questions or deletion requests: info@leonix.io
