Privacy Policy

Last updated: March 14, 2026

What Data We Access

Dunning Engine Pro ("DEP") accesses the following data from your Shopify store and connected subscription providers:

• Charge and subscription billing data (charge status, decline codes, amounts)
• Customer email addresses (used solely to send recovery emails on your behalf)
• Store name and domain (for app configuration)

How Data Is Stored

All data is stored in encrypted PostgreSQL databases hosted on Railway. Provider API credentials are encrypted at rest using AES-256. We do not store raw payment card numbers or sensitive authentication data.

Email Processing

Recovery emails are sent through Resend, a transactional email service. Resend processes recipient email addresses and delivery metadata (opens, clicks, bounces) on our behalf. Resend does not use this data for any purpose other than email delivery.

Data Sharing

We do not sell, rent, or share your data with third parties. Data is only shared with the service providers necessary to operate the app (Railway for hosting, Resend for email delivery).

Data Retention

Sequence and recovery data is retained for the lifetime of your subscription to DEP. When you uninstall the app, your data is deleted within 30 days. GDPR redaction requests are processed automatically via Shopify's mandatory webhooks.

GDPR Compliance

DEP supports Shopify's mandatory GDPR webhooks for customer data redaction and shop data erasure. If you or your customers request data deletion, we process it automatically. To make a data request, contact us at dunning-support@storme.dev.

Contact

For privacy questions, contact dunning-support@storme.dev.