← Back to Wayfinder

Privacy Policy

Last updated: May 31, 2026

Wayfinder (“we”, “our”, or “us”) is a Shopify app that helps merchants capture precise customer delivery locations using an interactive map. This policy explains what data we collect, why we collect it, and how we use it.

What we collect

Merchant data

When a merchant installs Wayfinder, we store the information needed to operate the app: delivery zone configurations, per-zone shipping rates, pickup store locations, and app settings such as map preferences and API keys. This data belongs to the merchant and is used solely to power the app’s functionality.

Customer location data

When a customer uses the map widget on a merchant’s storefront, they select or search for a delivery location. The address text they enter is sent to a geocoding service (Google Maps) to resolve it to GPS coordinates. We do not store customer names, email addresses, phone numbers, or any personally identifiable information.The resulting coordinates are saved as Shopify order attributes within Shopify’s own infrastructure — not in our database.

Checkout autofill

When the Wayfinder checkout extension is enabled, geocoded address components (street, city, state, zip, country) may be used to autofill the customer’s Shopify checkout shipping address fields. This data is passed directly to Shopify’s checkout API and is never stored or logged by Wayfinder.

How we use data

  • To determine whether a customer’s location falls within a merchant’s delivery zone
  • To calculate and return the appropriate shipping rate for that zone
  • To display delivery zone boundaries on the merchant’s map widget
  • To autofill shipping address fields in Shopify checkout (when the checkout extension is enabled)
  • To associate a precise GPS coordinate with a Shopify order for merchant fulfillment purposes

We do not sell, rent, or share customer data with third parties beyond what is necessary to provide the above functionality.

Third-party services

  • Google Maps / Geocoding API— used to convert address text to GPS coordinates. Address queries are sent to Google’s servers in accordance with Google’s Privacy Policy.
  • Shopify— order attributes and checkout data are stored and managed within Shopify’s infrastructure under Shopify’s Privacy Policy.
  • Heroku — our app backend is hosted on Heroku. Merchant configuration data is stored in a Heroku-managed Postgres database with encryption at rest and in transit.

Data retention

Merchant data (zones, settings, rates) is retained for as long as the app is installed. Upon uninstallation, merchant data is deleted within 48 hours. Customer location data is not retained by Wayfinder — it exists only within Shopify’s order records as controlled by the merchant.

Security

All data is encrypted in transit via HTTPS. Merchant data stored in our database is encrypted at rest. We limit internal access to merchant data to what is necessary to operate and support the app.

Merchants’ responsibilities

Merchants are responsible for informing their customers about the collection of location data through their own privacy policies and for ensuring their use of Wayfinder complies with applicable privacy laws in their jurisdiction.

Changes to this policy

We may update this policy from time to time. The “Last updated” date at the top of this page reflects the most recent revision. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

Questions about this privacy policy or how we handle data can be directed to: ryan@deploypulse.io

© 2026 Wayfinder. All rights reserved. — wayfinder.delivery