Privacy Policy for SP Feed: Google, Meta & Tiktok

July 9, 2026

This Privacy Policy describes how Sellerportals ("we", "us", "our") collects, uses, shares, protects, retains, and deletes information when you install and use the SP Feed: Google, Meta & TikTok app (the "App") from the Shopify App Store. The App is developed and operated by Sellerportals and is available at https://productsfeed.sellerportals.com.

By installing or using the App, you agree to the collection and use of information in accordance with this policy.

1. Purpose of the App

The App helps Shopify merchants generate product feeds from their store catalog and publish or synchronize those feeds with sales and advertising channels, including Google Merchant Center, Meta (Facebook/Instagram) catalogs, Microsoft Advertising, Pinterest, TikTok, and ShareASale. To provide this service, the App accesses only the merchant information necessary to build and deliver these feeds.

2. Information We Collect

Merchant and store data

When you install the App, we receive from Shopify:

  • Store name, store URL (myshopify domain), and store contact email
  • Shopify store identifiers and API access tokens needed to operate the App
  • App configuration and settings you create (feed settings, field mappings, schedules, plan information)

Product data

To generate your feeds, we access and store a copy of your store's product catalog via the Shopify API (read_products scope):

  • Product titles, descriptions, images, product types, tags, and collections
  • Variants, SKUs, barcodes, prices, and inventory availability

The App does not request access to your customers' or orders' data. Product feeds contain product information only and never contain customer personal information.

Google user data

If you choose to connect a Google Merchant Center account, we ask you to authorize the App via Google sign-in (OAuth) with the Content API for Shopping scope (https://www.googleapis.com/auth/content). Through this authorization we collect and store:

  • An OAuth refresh token that lets the App act on your Merchant Center account on your behalf
  • Your Merchant Center account ID and basic account information needed to submit feeds
  • Product submission results and diagnostics returned by Google (for example, approval status and errors), which we show to you inside the App

We do not access your Gmail, Google Drive, contacts, or any other Google data. See Section 4 for how Google user data is used and protected.

Channel account data

If you connect a Meta Commerce catalog, we similarly store the access credentials and catalog identifiers needed to synchronize your products. For channels connected by feed URL (Microsoft, Pinterest, TikTok, ShareASale), we do not access your channel account at all — the channel fetches a feed file that you add yourself.

Technical and usage data

We automatically collect limited technical information when you use the App, such as IP address, browser type, pages viewed within the App, and diagnostic logs, used for security, debugging, and improving the service.

3. How We Use Information

We use the information described above solely to:

  • Provide and operate the App: generate feed files, publish them, and synchronize your catalog with the channels you connect
  • Authenticate your store and your connected channel accounts
  • Display sync status, product approval issues, and diagnostics inside the App
  • Provide customer support and respond to your requests
  • Detect, investigate, and prevent abuse, fraud, and security incidents
  • Improve the App's functionality and reliability

We do not use your data for automated decision-making or profiling, and we do not sell your data.

4. Google User Data — Use, Sharing, Protection, Retention

This section applies to data obtained through Google APIs and supplements the rest of this policy.

  • How we use it. Google user data (your OAuth token, Merchant Center account information, and product submission diagnostics) is used exclusively to provide and improve the App's user-facing feed synchronization features: uploading your products to your Merchant Center account, keeping them up to date, and reporting sync results back to you.
  • How we share it. We do not share, transfer, or disclose Google user data to third parties, except to our infrastructure sub-processors (hosting and database providers) as necessary to run the App, or where required by law.
  • What we never do. We do not use or transfer Google user data for serving advertisements (including targeted, personalized, or retargeted advertising); we do not sell it to data brokers or information resellers; we do not use it to train machine-learning or AI models; we do not use it for creditworthiness or lending purposes; and we do not use it for any purpose other than providing and improving the App's features.
  • How we protect it. OAuth refresh tokens are encrypted at rest and transmitted only over encrypted HTTPS/TLS connections. Access is restricted to the App's service components and to authorized personnel on a strict need-to-know basis.
  • How we retain and delete it. Google credentials are retained only while your Google connection is active. If you disconnect Google Merchant Center in the App, uninstall the App, or revoke access from your Google Account security settings (https://myaccount.google.com/permissions), the stored token is deleted. All associated Google user data is deleted within 30 days of uninstall or upon request.

The App's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

5. Internal Access

Access to merchant data within Sellerportals is limited to authorized personnel (engineering, infrastructure, support, and compliance) on a strict need-to-know basis, subject to internal access controls.

6. Third-Party Service Providers

We use trusted service providers for hosting, data storage, job processing, and analytics. These providers process data on our behalf, are bound by confidentiality and security obligations, and may not use your data for their own purposes. A current list of sub-processors is available on request.

When you connect a channel, your product data is transmitted to that channel (for example, Google Merchant Center or Meta) under that channel's own terms and privacy policy. Feed files you choose to expose by URL are fetched directly by the channels you configure.

We do not sell merchant data to any third party.

7. Cookies and Tracking

The App uses cookies and similar technologies to maintain secure sessions, remember preferences, and analyze performance and usage. You can adjust cookie behavior in your browser settings; some App features may not function without session cookies.

8. Data Security

We apply technical and organizational safeguards including encrypted HTTPS/TLS connections for all data in transit, encryption at rest for stored credentials, secure APIs, access controls, and monitoring. No method of transmission or storage is completely secure, and we cannot guarantee absolute security, but we work to protect your data using industry-standard measures.

9. Data Retention and Deletion

  • Store, product, and configuration data is retained while the App is installed on your store.
  • Generated feed files are retained while the App is installed and removed when the associated feed or store is deleted.
  • Diagnostic logs are retained for up to 90 days.
  • When you uninstall the App, or upon your request, we delete or anonymize your data within 30 days, unless a longer period is required by law.
  • We honor Shopify's mandatory privacy webhooks (customers/data_request, customers/redact, shop/redact) and process them automatically.

10. International Data Transfers

Your information may be processed and stored in countries other than your own. Where data is transferred internationally, we use appropriate safeguards, such as standard contractual clauses, and comply with applicable data protection regulations.

11. Your Data Protection Rights (GDPR and similar laws)

If you are located in the EEA, the UK, or another jurisdiction with similar protections, you have the right to access, rectify, or erase your personal data; restrict or object to its processing; receive a portable copy; and lodge a complaint with your supervisory authority. To exercise these rights, contact us using the details in Section 14.

12. Merchant Responsibilities

As a merchant, you are responsible for complying with the laws and channel policies applicable to your store, including obtaining any consents required for the data you publish to sales channels through the App.

13. Shopify Requirements and Protected Customer Data

The App is designed around data minimization: it requests only the read_products Shopify scope and does not access customer personal data. In line with Shopify's protected customer data requirements, we commit to purpose limitation, transparency, security protection, and retention limits, and we never sell store data or use it for marketing to your customers. Should any customer data ever reach us through Shopify's compliance webhooks, it is handled solely to fulfill the request and then deleted.

14. Contact Us

If you have questions about this Privacy Policy or how your data is handled, contact us:

15. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top reflects the latest revision. If we materially change how the App uses Google user data or other personal data, we will notify you through the App or by email before the change takes effect. Please review this page periodically.