Nista
Contact us

Easy Checkout Rules - Privacy Policy

  • Effective date: 24 May 2026
  • Last updated: 24 May 2026

1. Who we are

Easy Checkout Rules is a Shopify app provided by Nista Consulting (ABN 47 919 865 088) (Nista, we, us, or our).

You can contact us about privacy at:

Email: [email protected]

2. What this Privacy Policy covers

This Privacy Policy explains how we handle personal information in connection with Easy Checkout Rules (the App), including information relating to:

  • Shopify merchants who install or use the App;
  • staff or authorised users acting on behalf of those merchants;
  • merchant customers whose checkout may be affected by rules configured by the merchant; and
  • people who contact us about the App, including for support or privacy enquiries.

This Privacy Policy applies only to Easy Checkout Rules. It does not replace a merchant’s own privacy policy. Merchants are responsible for explaining their own privacy practices to their customers, including how their Shopify store and installed apps are used to operate checkout.

3. What Easy Checkout Rules does

Easy Checkout Rules allows Shopify merchants to configure checkout rules for their Shopify store.

Merchants may use the App to apply checkout, shipping, delivery, or address restrictions. For example, a merchant may configure rules to restrict checkout or delivery based on country, region, postcode or ZIP code, address content, PO Box indicators, delivery option, cart information, or other rule conditions available within Shopify.

The merchant decides which rules to create, enable, disable, and apply. The App provides the Shopify-based functionality that evaluates those merchant-configured rules.

4. Shopify-hosted operation

Easy Checkout Rules is designed to operate within Shopify.

The App does not use an external Nista-hosted server, external Nista database, external Nista admin dashboard, or external Nista logging system to receive or store merchant customer checkout data.

Merchant rule settings are stored within Shopify. Checkout-rule evaluation occurs within Shopify’s environment. Nista does not independently receive, store, copy, export, or retain merchant customer checkout data through the App.

This means that while checkout information may be processed within Shopify to determine whether a merchant-configured rule applies, that information is not sent to Nista for independent storage or processing.

5. Information processed within Shopify

Depending on the rules configured by a merchant, Shopify may make checkout, cart, delivery, address, or customer-related information available within Shopify so the rule can be evaluated.

This may include information such as shipping destination, address content, postcode or ZIP code, country, region, delivery option, cart details, or other checkout information relevant to the merchant’s configured rule.

This information is processed within Shopify for the purpose of applying the merchant’s checkout rule. Easy Checkout Rules does not independently store that information outside Shopify.

6. Merchant account and App information

When a merchant installs or uses Easy Checkout Rules, limited App-related information may be available through Shopify, such as:

  • the merchant’s Shopify store name or domain;
  • App installation status;
  • App configuration and rule settings stored in Shopify;
  • Shopify plan, billing, or subscription status where made available by Shopify;
  • App permissions approved by the merchant; and
  • communications the merchant sends to us for support or privacy enquiries.

We use this information only to provide, maintain, support, and administer Easy Checkout Rules.

7. Information we do not independently collect or store outside Shopify

Easy Checkout Rules does not independently collect or store outside Shopify:

  • merchant customer names;
  • merchant customer email addresses;
  • merchant customer phone numbers;
  • merchant customer shipping addresses;
  • checkout evaluation logs;
  • order histories;
  • payment details;
  • product, inventory, or marketing data, unless required by a future App feature and disclosed in an updated policy; or
  • customer data for advertising, profiling, resale, or unrelated product development.

We do not sell personal information.

We do not share personal information for cross-context behavioural advertising.

We do not use merchant customer data for Nista marketing.

8. How we use information

We use information only as reasonably necessary to:

  • provide and operate Easy Checkout Rules;
  • allow merchants to configure and apply checkout rules;
  • maintain App functionality within Shopify;
  • administer App installation, billing, and subscription status through Shopify;
  • respond to support, privacy, or legal enquiries;
  • comply with Shopify requirements and applicable laws;
  • protect the security, integrity, and proper operation of the App; and
  • enforce our rights and agreements.

9. Automated checkout-rule evaluation

Easy Checkout Rules may automatically evaluate checkout information against rules configured by the merchant.

For example, if a merchant configures a rule that restricts PO Box delivery, Shopify checkout information may be evaluated within Shopify to determine whether the address appears to contain a PO Box. If the rule applies, Shopify may display a checkout restriction, warning, or error message according to the merchant’s configuration.

Nista does not decide which customers a merchant should accept, reject, or restrict. The merchant is responsible for deciding which rules to configure and for ensuring those rules are lawful, accurate, fair, non-discriminatory, and properly disclosed to customers.

Customers affected by a checkout rule should contact the merchant operating the store.

10. Shopify protected customer data

Some checkout information processed within Shopify may be considered protected customer data under Shopify’s requirements, depending on the merchant’s configuration and the Shopify functionality used.

Easy Checkout Rules is designed to minimise access to customer information and to process only what is needed within Shopify to apply the merchant’s configured checkout rules.

We do not independently store protected customer data outside Shopify through Easy Checkout Rules.

11. Shopify privacy and compliance requests

Shopify may require apps to support privacy and compliance processes relating to customer data requests, customer data deletion, and shop data deletion.

Because Easy Checkout Rules does not independently store merchant customer checkout data outside Shopify, we generally will not have external customer records to provide, delete, or redact.

Where we receive a valid Shopify privacy or compliance request, we will take reasonable steps to respond in accordance with Shopify requirements and applicable law.

12. Disclosure of information

We do not disclose merchant customer checkout data to third parties because Easy Checkout Rules does not independently receive or store that data outside Shopify.

We may disclose limited merchant or App-related information where necessary to:

  • Shopify, in connection with App operation, installation, billing, and compliance;
  • the merchant that installed the App;
  • professional advisers, such as lawyers or accountants, where reasonably necessary;
  • regulators, courts, government agencies, or law enforcement where required or permitted by law; or
  • another party with consent or as otherwise required or permitted by law.

13. Service providers and subprocessors

Easy Checkout Rules does not use external subprocessors to independently receive, store, or process merchant customer checkout data.

The App operates within Shopify, and Shopify’s own handling of personal information is governed by Shopify’s terms, policies, and privacy documentation.

If we later change the App so that merchant customer data is sent to, stored by, or processed through external infrastructure or service providers, we will update this Privacy Policy where required by law.

14. International transfers

Easy Checkout Rules is operated through Shopify. Shopify may process personal information in countries where Shopify or its service providers operate, in accordance with Shopify’s own privacy and data-processing arrangements.

Nista does not independently transfer merchant customer checkout data outside Shopify through Easy Checkout Rules.

If you contact us directly by email, your communication may be processed by email systems used to receive and respond to that message.

15. Data retention

Easy Checkout Rules does not independently store merchant customer checkout data outside Shopify.

Merchant rule settings are stored within Shopify and may remain available while the App is installed or as otherwise handled by Shopify.

If a merchant uninstalls Easy Checkout Rules, the App will no longer apply new checkout rules for that merchant’s store. Any data retained within Shopify will be handled according to Shopify’s systems, policies, and the merchant’s Shopify account configuration.

Support and privacy communications sent directly to Nista may be retained for as long as reasonably necessary to respond to the enquiry, maintain business records, resolve disputes, comply with legal obligations, and enforce our rights.

16. Security

Easy Checkout Rules is designed to reduce privacy risk by operating within Shopify and avoiding independent external storage of merchant customer checkout data.

We take reasonable steps to protect information we handle, including by limiting access to App-related information and using Shopify’s app platform and security controls where applicable.

No system is completely secure. Merchants are responsible for maintaining the security of their own Shopify accounts, staff permissions, and store configuration.

17. Cookies and tracking

Easy Checkout Rules does not use third-party advertising cookies to track merchant customers through checkout.

The App does not use merchant customer checkout data for advertising tracking.

18. Marketing communications

We may send merchants service-related communications about Easy Checkout Rules, such as important App, billing, security, legal, or operational notices.

We may send product updates or marketing communications to merchants where permitted by law. Merchants may opt out of marketing communications, but we may still send non-marketing service communications where necessary.

We do not use merchant customer data for marketing.

19. Merchant responsibilities

Merchants are responsible for:

  • maintaining their own privacy policy and customer notices;
  • explaining how their store uses Shopify and installed apps to operate checkout;
  • ensuring they have a lawful basis to collect and use customer information in their store;
  • configuring Easy Checkout Rules appropriately;
  • ensuring checkout rules are lawful, accurate, fair, non-discriminatory, and consistent with their customer terms and shipping policies;
  • responding to customer questions about checkout restrictions, shipping limitations, and store policies; and
  • managing staff access and permissions within Shopify.

20. Individual rights and requests

Depending on where you are located, you may have rights to request access to, correction of, deletion of, or restriction of personal information about you.

If you are a merchant or App user and want to contact us about information we handle, email [email protected].

If you are a customer of a Shopify merchant that uses Easy Checkout Rules, you should contact the merchant directly. Because Easy Checkout Rules does not independently store merchant customer checkout data outside Shopify, Nista may not hold the information needed to respond directly to your request.

21. Australian privacy

If the Australian Privacy Act 1988 (Cth) applies to our handling of personal information, you may have rights under the Australian Privacy Principles, including rights to request access to and correction of personal information we hold about you, subject to legal exceptions.

If you believe we have mishandled your personal information, contact us at [email protected]. We will review your complaint and respond within a reasonable period.

If you are not satisfied with our response, you may be able to complain to the Office of the Australian Information Commissioner.