Data Handling & Privacy
Nudge is designed to be privacy-friendly by default. Here's exactly what data is used and how it's handled.
What Data Nudge Uses
Nudge reads from your store's recent order history to display notifications. Only the following fields are used:
| Data field | Example | Used for |
|---|---|---|
| Product title | "Classic T-Shirt" | Displayed in notification text |
| City | "New York" | Displayed in notification text |
| Country | "United States" | Available via {country} token |
| Order timestamp | (calculated) | Powers the {time_ago} token |
| Customer first name | "Sarah" | Only shown if Anonymous Mode is off |
No payment information, email addresses, or full names are ever accessed or displayed.
Anonymous Mode
Anonymous Mode is on by default. When enabled:
- The
{name}token is suppressed — notifications show "Someone from {city}" instead of a real name - No personally identifiable information is displayed to visitors
- This is the recommended setting for GDPR compliance
To use real customer first names, you must explicitly disable Anonymous Mode in Settings → Message.
Data Retention Window
You control how far back Nudge pulls order data:
| Window | Plans |
|---|---|
| 7 days | Free |
| 30 days | Starter |
| 60 days | Growth, Pro |
Orders older than your configured window are never fetched or displayed.
Excluded Emails
You can add specific customer email addresses to an exclusion list. Orders from those emails will never be shown in notifications — useful for excluding your own test orders or staff purchases.
GDPR Compliance
- Anonymous Mode is on by default — no PII displayed without explicit opt-in
- Data is read from Shopify's order API only at display time; Nudge does not store customer records independently
- You can configure shorter data windows to limit exposure to recent orders only
- Exclusion lists let you honor individual opt-out requests
Nudge operates entirely within Shopify's data access framework. All data access is governed by the permissions you granted during installation.