Email Popups

1. Overview

This Privacy Policy specifically governs the Email Popups app ("App") developed by Banify Apps. This policy explains how we collect, use, disclose, and safeguard visitor and subscriber information when using our email popup and lead generation system.

App Purpose: The Email Popups app enables Shopify merchants to capture visitor email addresses through customizable popup campaigns, grow their email subscriber lists, and increase customer engagement.

This policy applies to:

• Shopify store owners who install and use the app
• Store visitors who view popup campaigns
• Visitors who submit email addresses through popups
• Email subscribers captured through the app

2. Information We Collect

2.1 Merchant Information

• Store Details: Store name, URL, Shopify store ID, and contact information
• App Configuration: Popup designs, targeting rules, display settings, and campaign configurations
• Account Data: Subscription plan, billing information (processed by Shopify), and usage analytics
• Integration Settings: Email marketing platform connections (if applicable)

2.2 Visitor Interaction Data

• Page Views: URLs visited, time on page, and navigation patterns
• Popup Interactions: Views, clicks, dismissals, and submission events
• Session Data: Session duration, pages per session, and return visits
• Behavioral Triggers: Exit intent detection, scroll depth, and time-based triggers

2.3 Email Subscriber Information

• Email Address: Primary identifier for subscriber
• Name: First name, last name (if collected by popup form)
• Additional Fields: Any custom fields configured in popup forms (phone, birthday, preferences)
• Subscription Metadata: Date subscribed, popup campaign source, and consent timestamp
• Subscription Status: Active, unsubscribed, or bounced status

2.4 Technical Information

• Device Data: Device type, screen resolution, and browser information
• Location Data: Country, region, city (derived from IP address)
• Referral Source: Traffic source, UTM parameters, and referring URLs
• Performance Metrics: Popup load times, display errors, and conversion tracking

3. Popup Interaction Data

3.1 Display Tracking

We track when and how popups are displayed to visitors:

• Impression Tracking: Number of times popups are shown to visitors
• Timing Data: When popup displayed (page load, exit intent, after X seconds)
• Frequency Capping: Tracking to prevent showing popups too often to same visitor
• Display Rules: Page-specific targeting and conditional display logic

3.2 Engagement Metrics

We measure visitor engagement with popups:

• Conversion Rate: Percentage of viewers who submit email addresses
• Dismissal Rate: How many visitors close popups without subscribing
• Click-Through Rate: Clicks on popup elements (buttons, links)
• Interaction Time: How long visitors view popup before acting

3.3 A/B Testing Data

When merchants run A/B tests:

• Variant assignment for each visitor session
• Performance comparison between variants
• Statistical analysis of conversion differences
• Winner selection based on performance metrics

4. Email Subscriber Data Management

4.1 Subscriber Collection

When visitors submit email addresses through popups:

• Consent Recording: Timestamp and method of consent capture
• Double Opt-In: Confirmation email sent if enabled by merchant
• Source Attribution: Which popup campaign captured the email
• Marketing Preferences: Consent for marketing communications

4.2 Subscriber Synchronization

Email addresses are synchronized with:

• Shopify Customer Database: Added as customers or leads in merchant's Shopify store
• Email Marketing Platforms: Synced to merchant's email service provider (if integrated)
• Marketing Tags: Tagged for segmentation and targeting purposes

4.3 Unsubscribe Management

We respect unsubscribe requests:

• Unsubscribe links included in all marketing emails (merchant responsibility)
• Suppression list maintained to prevent re-subscription
• Unsubscribe status synchronized across platforms
• Compliance with CAN-SPAM, GDPR, and CASL requirements

5. How We Use Information

5.1 Core App Functionality

• Displaying popups to store visitors based on targeting rules
• Capturing and storing email subscriber information
• Preventing popup display to visitors who already subscribed
• Managing frequency capping and display rules
• Synchronizing subscribers with Shopify and email platforms
• Providing subscriber list management and export features

5.2 Analytics & Optimization

• Tracking popup performance and conversion rates
• Analyzing visitor behavior and engagement patterns
• Running A/B tests to optimize popup designs
• Identifying best-performing campaigns and strategies
• Generating merchant reports and dashboards

5.3 Targeting & Personalization

• Showing relevant popups based on visitor behavior
• Excluding returning visitors from subscription prompts
• Geographic targeting for location-specific campaigns
• Device-specific popup optimization

5.4 Communication

• Sending double opt-in confirmation emails (if enabled)
• Delivering welcome emails to new subscribers (merchant-configured)
• Providing app-related support and updates to merchants

6. Information Sharing and Disclosure

6.1 We DO NOT Sell Your Data

We never sell, rent, or trade visitor or subscriber email data to third parties for marketing purposes.

6.2 Sharing With Merchants

Email subscriber data is provided to the merchant whose store captured the subscription:

• Email addresses and subscriber information
• Popup interaction and conversion data
• Campaign performance analytics
• Subscriber preferences and consent records

Important: Merchants are responsible for compliance with email marketing laws and regulations when using collected email addresses.

6.3 Email Marketing Platform Integration

If merchants connect email marketing services (Mailchimp, Klaviyo, etc.):

• Subscriber data is transmitted to connected platforms via secure API
• Integration is controlled by merchant settings
• Data sharing follows each platform's privacy policy
• Merchants can disconnect integrations at any time

6.4 Service Providers

We may share data with trusted service providers for:

• Cloud hosting and data storage
• Email delivery infrastructure (for double opt-in emails)
• Analytics and monitoring services
• Customer support tools

6.5 Shopify Platform

As a Shopify app, we integrate with Shopify to:

• Add subscribers to merchant's customer database
• Access store visitor data for popup targeting
• Create customer profiles and marketing tags
• Process app billing through Shopify's system

7. Data Security

7.1 Security Measures

• Encryption: All data transmitted using TLS/SSL encryption (HTTPS)
• Secure Storage: Email data encrypted at rest in secure databases
• Access Controls: Strict authentication and authorization requirements
• Regular Backups: Automated backups with encryption
• Security Monitoring: Continuous threat detection and prevention

7.2 Email Data Protection

• Email addresses hashed for duplicate detection
• Prevention of email harvesting and scraping
• Rate limiting on form submissions
• CAPTCHA integration to prevent bot submissions

7.3 Compliance & Standards

• GDPR compliance for EU visitors
• CCPA compliance for California residents
• CAN-SPAM Act compliance for US email marketing
• CASL compliance for Canadian communications

8. Data Retention

8.1 Active Subscriber Data

• Email Addresses: Retained while merchant's app subscription is active
• Interaction Data: Maintained for analytics and targeting (up to 2 years)
• Consent Records: Retained to prove lawful collection and consent

8.2 Unsubscribed Users

For unsubscribed email addresses:

• Email address retained on suppression list to prevent re-subscription
• Associated personal data deleted within 30 days
• Unsubscribe status retained indefinitely for compliance

8.3 Post-Uninstallation

After app uninstallation by merchant:

• Subscriber data retained for 90 days for potential reinstallation
• Merchants can request immediate deletion of all data
• Aggregated, anonymized analytics may be retained
• Backup data purged within 30 days of deletion request

9. Your Privacy Rights

9.1 Email Subscriber Rights

Individuals who provided email addresses through popups have the right to:

• Access: Request information about stored email and associated data
• Correction: Update email address or personal information
• Deletion: Request deletion of email address and associated data
• Unsubscribe: Opt out of marketing communications at any time
• Portability: Request a copy of collected data in portable format
• Object: Object to processing for marketing purposes

9.2 Merchant Rights

Merchants have the right to:

• Access all subscriber data collected through their popups
• Export subscriber lists and analytics data
• Request deletion of all app data
• Control data sharing and integration settings
• Manage subscriber consent and preferences

9.3 Exercising Your Rights

For Subscribers: Contact the merchant whose store you visited, or email us at [email protected]

For Merchants: Access data management tools in the app dashboard, or contact [email protected]

10. Cookies and Tracking Technologies

10.1 Popup Tracking Cookies

We use cookies to manage popup display and prevent over-showing:

• Popup Display Cookie: Tracks popup views to implement frequency capping
• Subscription Cookie: Prevents showing popups to users who already subscribed
• Session Cookie: Maintains visitor session for targeting rules
• A/B Test Cookie: Assigns visitor to test variant for consistent experience

10.2 Analytics Cookies

• Track popup performance and conversion metrics
• Measure visitor engagement and behavior
• Analyze campaign effectiveness

10.3 Cookie Duration

• Session cookies: Expire when browser closes
• Display frequency cookies: 30-90 days (configurable by merchant)
• Subscription cookies: 1 year

10.4 Cookie Management

Visitors can control cookies through browser settings. Disabling cookies may affect popup display behavior but will not prevent subscription if forms are submitted directly.

11. Consent Management

11.1 Explicit Consent

We facilitate explicit consent collection:

• Checkbox options for marketing consent (configurable)
• Clear privacy policy links in popup forms
• Timestamp recording of consent
• Consent proof stored for compliance verification

11.2 GDPR Compliance

For EU visitors:

• Cookie consent banners (merchant responsibility)
• Pre-checked consent boxes disabled by default
• Clear explanation of data usage in popups
• Easy withdrawal of consent (unsubscribe)

11.3 Double Opt-In

Merchants can enable double opt-in for added security:

• Confirmation email sent to verify email address
• Subscriber not added to active list until confirmed
• Reduces spam and fake submissions
• Improves email deliverability

12. Children's Privacy

Our email popup app is not intended for children under 13 years of age. We do not knowingly collect email addresses from children under 13 without parental consent.

If we discover that we have collected information from a child under 13, we will delete it immediately. Parents or guardians who believe their child has provided information through a popup should contact us at [email protected].

13. Changes to This Privacy Policy

We may update this app-specific privacy policy to reflect changes in our practices or legal requirements. When we make significant changes:

• Update the "Last Updated" date at the top
• Notify merchants via email and in-app notification
• Post notices in the merchant dashboard
• Provide reasonable notice before changes take effect

Continued use of the app after changes indicates acceptance of the updated policy.

14. Contact Information

For questions, concerns, or requests regarding this privacy policy or the Email Popups app:

For general Banify Apps privacy matters, please refer to our main Privacy Policy.