Commercial Invoices logo

Privacy Policy

Last updated: November 21, 2025

1. Who we are

Commercial Invoices (the “App”) is a Shopify app that helps merchants generate and print commercial invoices for international shipments. The App is provided by Shop Mods (“we”, “us”, or “our”).

This Privacy Policy explains how we access, use, and protect data when a merchant installs or uses the App in their Shopify store. For customers of Shopify stores, the merchant is the primary controller of your data; we act as a service provider / processor acting on the merchant’s instructions.

2. What data we access

When a merchant installs and uses the App, Shopify shares certain information with us via Shopify’s APIs, based on the permissions (scopes) the merchant approves. To generate commercial invoices, we may access:

  • Store information – shop domain, store name, contact email, and configuration details needed to operate the App.
  • Order data – order IDs, order names, dates, line items, quantities, prices, currencies, PO numbers, payment terms, and fulfillment details.
  • Customer and shipping details – recipient name, company, shipping address, email, and phone number, as provided in the Shopify order, to display on commercial invoices.
  • Product and customs details – product titles, SKUs, weights, HS codes, and country of origin, where available, to populate customs-related fields.
  • App usage data – basic data about when the App is opened and when an order is printed, so we can apply plan limits and billing correctly.

We do not access or store payment card numbers or full payment details. Those are handled by Shopify and its payment providers.

3. How we use the data

We use the data we access to:

  • Generate and display commercial invoices based on the merchant’s orders and templates.
  • Allow merchants to customize templates (for example, which fields to show, hide, or fill automatically).
  • Track how many orders have been printed in a billing period, so we can apply the correct plan limits.
  • Operate, secure, and improve the App (for example, diagnosing errors, logging performance issues, and preventing abuse).

We do not use your customer data for our own marketing, profiling, or resale. We only process data as needed to provide the App’s functionality to the merchant who installed it.

4. Where and how data is stored

We primarily rely on Shopify to store order and customer data. The App:

  • Reads order, customer, and product data directly from Shopify when a merchant opens the App or prints an invoice.
  • Stores template configurations, billing history, and print history in Shopify metafields and our app database so that merchants can reuse templates and we can correctly enforce usage-based plans. These records may include order IDs, template IDs, and timestamps, but we aim to keep sensitive customer data primarily inside Shopify’s own order records.
  • Stores Shopify session information (such as shop domain and access tokens) so the App can stay connected to the store.

We also use cloud infrastructure and database providers to host the App and store session data and logs. These providers process data on our behalf under contractual agreements and appropriate security measures.

5. Data retention

We retain data only for as long as is reasonably necessary to:

  • Provide the App and its features to the merchant.
  • Maintain accurate billing and usage records.
  • Comply with legal, accounting, and audit obligations.

When a merchant uninstalls the App, we lose ongoing access to new store data. We may retain limited records (for example, shop domain, historical usage/billing information, and technical logs) for billing, security, and compliance purposes. Merchants can contact us to request deletion of remaining data where applicable.

6. Sharing and transfers of data

We do not sell or rent personal data. We may share data only with:

  • Shopify, as the platform that provides your store and the APIs we use. How Shopify handles data is covered in Shopify’s own terms and privacy policy.
  • Infrastructure and service providers that host the App, store session data, or provide error logging and analytics, strictly as processors acting on our behalf.
  • Legal authorities if required to comply with applicable law, legal process, or enforceable government requests.

Our infrastructure may be hosted in data centers located in the United States or other regions. Where applicable, we take reasonable steps to ensure that data transfers comply with relevant data protection laws.

7. Security

We use reasonable technical and organizational measures to protect data processed by the App, including:

  • Encryption in transit via HTTPS for communication.
  • Limited access to production systems and databases.
  • Use of Shopify’s OAuth and session mechanisms for access.

No system can be completely secure, but we continuously work to keep the App reasonably protected and up-to-date.

8. Your rights and choices

For merchants using the App, you can:

  • Uninstall the App at any time from your Shopify admin to revoke our access to your store’s data.
  • Request information about how we process data related to your store and your use of the App.
  • Request deletion of data we control about your store where legally permitted and technically feasible.

Customers of a Shopify store (shoppers) should direct any privacy requests (such as access, correction, or deletion) first to the merchant operating the store, since they are the primary controller of your data.

9. Contact & resources

If you have questions about this Privacy Policy or how the App handles data, you can reach us at:

Email: support+printcommercialinvoices@shopmods.co

Additional resources:

  • Commercial Invoices app homepage (inside Shopify admin) – for setup help and FAQs.
  • Shopify’s Privacy Policy – for information on how Shopify handles store and customer data.