Gatekeeper Privacy Policy

Last updated: June 6, 2026

Who we are

Gatekeeper is a Shopify app that helps merchants block card-testing bots at checkout. When a merchant installs Gatekeeper, we process customer data on the merchant's behalf as a data processor. The merchant remains the data controller.

What personal data we process

We process only the minimum data required to provide bot protection:

• Email address: Checkout risk scoring, velocity detection, blocklist matching, activity log. Retained 90 days or until redact/uninstall.
• Customer name: Bot name pattern detection at checkout. Retained 90 days or until redact/uninstall.
• Shipping address (country, zip, street, city): Geo/zip store-wide rules and checkout scoring. Retained 90 days or until redact/uninstall.
• Phone number: Blocklist matching when provided at checkout. Retained 90 days or until redact/uninstall.
• IP address (storefront sessions): Optional IP blocking and cart abuse rate limiting. Retained 24 hours for rate-limit counters; not stored long-term in activity log.
• Cart total & checkout metadata: Card-test amount detection and merchant analytics. Retained 90 days or until redact/uninstall.

Why we process it

Sole purpose: detect and block fraudulent checkout attempts, log protection activity for the installing merchant, and optionally flag bot-pattern customer accounts. We do not sell personal data, use it for advertising, or share it with third parties except infrastructure providers that host our app and our contracted fraud-scoring provider (checkout risk analysis only, under data processing terms).

Automated decisions

Gatekeeper may automatically block a checkout when risk signals exceed the merchant's configured threshold. If a customer believes they were blocked in error, they should contact the store directly. Merchants can allow-list customers via custom rules or the blocklist.

Retention

Activity logs are retained for up to 90 days, then deleted automatically. All shop data is deleted when the merchant uninstalls the app (after Shopify's 48-hour shop/redact webhook). Customer-specific data is deleted on customers/redact.

Security

Data is transmitted over HTTPS (TLS). Production data is stored on encrypted cloud infrastructure with encrypted backups. Test and production environments are separated.

Merchant GDPR webhooks

Gatekeeper implements Shopify mandatory webhooks: customers/data_request, customers/redact, and shop/redact.

Contact

Privacy questions: support@gatekeeper.app
Security incidents: see our Security & Incident Response Policy