NoomuaNoomua

StockAlert

Privacy Policy

Last updated: March 15, 2026

1. Introduction

This privacy policy describes how Noomua handles data collected through StockAlert, our Shopify inventory monitoring and alert app. By installing StockAlert, you agree to the practices described in this policy.

2. Data we collect

When you install and use StockAlert, we collect the following:

  • Store information. Your Shopify store domain and merchant email address, provided by Shopify during installation.
  • Product and inventory data. Product titles, variant names, SKUs, and current inventory levels from your store. This data is used to evaluate thresholds and trigger alerts.
  • Alert settings and thresholds. The minimum inventory levels you configure per product or catalog-wide. Retained for as long as the app is installed.
  • Notification preferences. The email address(es) you configure to receive alerts and daily summaries.
  • Alert history. A log of alerts sent by the app, retained for 90 days for display in the dashboard.

3. How we use your data

  • To monitor inventory. Product and inventory data is checked against your configured thresholds to determine when to send an alert.
  • To send notifications. When inventory drops below your thresholds, we send email alerts and daily summaries to your configured notification address via Resend.
  • To display the dashboard. Current inventory status and alert history are shown within the StockAlert app interface.
  • To maintain and improve the app. Aggregate usage patterns help us improve reliability and features.

4. Third-party services

StockAlert relies on the following third-party services to operate. Each has its own privacy policy:

  • Shopify. Product and inventory data is read from your store via the Shopify Admin API. App installation, authentication, and billing are managed by the Shopify platform.
  • Resend. We use Resend to deliver transactional email notifications — low-stock alerts and daily inventory summaries — to your configured notification address.
  • Supabase. We use Supabase as our database provider to store alert settings, thresholds, and alert history.
  • Fly.io. StockAlert runs on Fly.io infrastructure. Application data in transit and at rest is handled within Fly.io's security environment.

We do not sell your data or share it with third parties for advertising or marketing purposes.

5. Data retention

  • Alert settings and threshold configurations are retained while your app subscription is active.
  • Alert history is retained for 90 days.
  • When you uninstall StockAlert, all store data is deleted from our systems within 48 hours.

You may request immediate deletion of your data by contacting us at hello@noomua.com.

6. Data security

  • All data in transit is encrypted using HTTPS/TLS.
  • Supabase provides encrypted-at-rest storage for all app data.
  • Shopify API access tokens are managed by Shopify's OAuth infrastructure — we do not store raw API credentials.
  • Billing is handled by Shopify Billing — we do not handle payment data directly.

7. Your rights

Depending on your location, you may have rights to access, correct, delete, or restrict the processing of personal data we hold about your store. To exercise any of these rights, contact us at hello@noomua.com and we will respond within a reasonable timeframe.

8. GDPR compliance

StockAlert registers the mandatory GDPR compliance webhooks required by Shopify: customers/data_request, customers/redact, and shop/redact. These webhooks ensure that customer and shop data deletion requests are handled in accordance with Shopify's GDPR requirements.

StockAlert does not collect personal data from your customers — only store-level merchant data and product/inventory information.

9. Children's privacy

StockAlert is intended for Shopify merchants operating businesses. It is not directed at children under 13, and we do not knowingly collect personal data from children.

10. Changes to this policy

We may update this policy as the app evolves or as legal requirements change. Material changes will be noted with an updated date at the top of this page. Continued use of StockAlert after changes are posted constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or data requests regarding StockAlert, contact us at hello@noomua.com. Please include “StockAlert Privacy” in the subject line.