Version 1.1 · Effective 14 July 2026
1. Scope and roles
This policy applies when a Shopify merchant installs or uses Navelis Invoice, when someone visits the Navelis Invoice website, and when a person contacts Navelis for support, privacy, security, or general enquiries.
For customer and order data, the merchant determines why the data is processed and acts as controller or business. Navelis processes that data on the merchant’s instructions as processor or service provider. Navelis is independently responsible for limited merchant-account, website, contact, security, and operational data used to provide and protect the service.
2. Data we process
From Shopify APIs and verified webhooks, Navelis Invoice processes only the fields needed for invoice and credit-note workflows:
- Shop domain, installation, authenticated session, and application configuration.
- Customer name, email address, billing address, and, where available, shipping address used for document or tax context.
- Order identifiers, line items, totals, currencies, taxes, discounts, payments, refunds, and timestamps.
- Invoice and credit-note content, delivery status, recipient, exact document history, and provider delivery identifiers or error codes.
Merchants provide company details, invoice designs, logos, document and email templates, automation choices, and export recipients directly through the app. Navelis also creates limited operational, protected-data access, security, and privacy-request records.
If someone contacts Navelis, we process the contact details and message they choose to provide. The marketing website does not use advertising cookies, behavioral analytics, or customer profiling. Hosting systems may create limited technical request logs needed for security and reliability.
Customer phone numbers, payment-card details, and advertising profiles are not required.
3. How we use data
We use this data to authenticate the merchant, load Shopify orders, generate and preview invoices or credit notes, deliver documents, preserve delivery history, run merchant-configured automation and exports, support the service, prevent abuse, respond to privacy requests, and meet legal obligations.
Navelis does not sell personal data, use it for advertising, build customer profiles, or make automated decisions that produce legal or similarly significant effects.
The merchant is responsible for selecting the appropriate legal basis for its invoicing and customer communications. Invoice and credit-note messages are transactional. Where Navelis acts independently, processing is based as applicable on providing the requested service or responding to enquiries, legitimate interests in operating and securing the service, and compliance with legal obligations.
4. Service providers
Navelis uses service providers for Shopify platform access, application hosting and database services, transactional email, monitoring, and encrypted backup storage. These providers may process only the data needed to perform their contracted service and are not authorized to use merchant customer data for advertising.
Questions about current providers can be sent to privacy@navelis.ai.
5. Retention and deletion
Order data is read from Shopify when needed and is not persistently cached merely for dashboard viewing. A copy is retained when necessary to preserve the exact invoice or credit note sent by the merchant. Merchant configuration is retained while the app is installed. Document history is rolling: if configured service capacity is exceeded, the oldest records are deleted first. Merchants remain responsible for exporting and retaining documents required by applicable law.
- Completed automation-job payloads are retained for up to 30 days; permanently failed job payloads for up to 90 days.
- Completed export-delivery metadata, privacy-request records, and protected-data access records are retained for up to 12 months.
- Pending jobs and privacy requests remain only while they are being processed or resolved.
- Application and container logs are retained for up to 30 days and are not intended to contain customer document content.
- Encrypted production-server backups expire after 30 days and encrypted off-site backups after 90 days.
Uninstalling the app triggers deletion of live shop sessions, settings, templates, automation data, invoice snapshots and history, export history, privacy requests, and access records. Shopify redaction webhooks provide an additional deletion path. Deleted records may remain in encrypted backups until their normal expiry and are not selectively restored into production. Service providers apply their own applicable deletion and retention processes.
6. Security
Navelis applies safeguards appropriate to the service, including HTTPS, restricted production access, encryption for sensitive stored fields, encrypted backups, protected secrets, operational monitoring, and Shopify privacy webhooks. Access is limited to authorized persons who need it to operate, secure, or support the service.
7. Privacy rights
Customers should normally contact the Shopify merchant from whom they purchased. Merchants may ask Navelis for reasonable assistance with access, correction, export, restriction, objection, or deletion requests. Navelis also processes Shopify’s mandatory customer data-request, customer-redaction, and shop-redaction webhooks.
8. International transfers
Providers may process data in countries other than the merchant’s or customer’s country. Navelis relies on the contractual and transfer mechanisms made available by its providers where required.
9. Changes
We may update this policy as the service or legal requirements change. Material changes receive a new effective date and, where appropriate, notice through the application or merchant contact details.
10. Contact
Privacy questions and requests: privacy@navelis.ai
Product support: support@navelis.ai
Security concerns: security@navelis.ai
