Custory Timeline ExporterPrivacy policy
Custory Timeline Exporter processes protected customer data and uses the minimum customer data required for support timeline export.
Data processed
- Customer ID, customer name if approved, and customer email if approved.
- Customer tags and customer notes.
- Recent orders, order names, order statuses, totals, order notes, and line item summaries.
- Return statuses, return reasons where available, and return line item summaries.
- Internal support notes created inside the app.
- Timeline export artifacts, billing status, sync job status, and operational logs.
Data not processed by default
- Phone numbers.
- Billing addresses.
- Shipping addresses.
- Geolocation.
- Payment details.
Data security
Customer name, email, notes, and timeline details are encrypted at rest. Search indexes use HMAC tokens instead of plaintext customer identifiers. Export artifacts are short-lived and protected by authenticated Shopify Admin sessions.
Deletion workflow
Shopify privacy webhooks are implemented for customers/data_request, customers/redact, and shop/redact. Customer redact deletes or anonymizes cached customer timeline records, search tokens, internal notes, and export artifacts. Shop redact purges shop-specific app data according to this policy.