Tyslo

Privacy Policy

Last Updated: September 4, 2025

This Privacy Policy (“Policy”) explains how EasySell, owned and operated by Tyslo FZE–LLC (“Tyslo,” “we,” “us,” “our”), collects, uses, and shares information in connection with our websites (including https://tyslo.com and related pages), applications, and services we provide and/or host (collectively, the “Apps” or “Services”).

By installing or using any part of the Apps or Services, you acknowledge that your information and your customers’ information will be handled as described in this Policy. If you do not agree, please do not use the Apps.

1) Our Privacy Principles

  • Human-readable & accessible: We write our policy clearly and keep it easy to find.

  • Data minimization: We collect, store, and process only what we need to provide and improve the Services.

  • User expectations: We align our practices with reasonable expectations of merchants and end-users.

  • Security by design: We use technical, organizational, and physical safeguards appropriate to the data we process.

2) Information We Collect

A. Information You Provide Directly

We collect information you provide to us, including when you: install an App; contact support; subscribe to a newsletter; complete forms; or otherwise communicate with us. This may include name, business name, mailing address, email, phone number, billing/payment information, and other details you choose to share.

B. Information We Access from Shopify (upon install)

When you install an App, we are automatically able to access certain Shopify account data and scopes necessary to operate the App, which may include (as applicable to your configuration and plan):

  • Shopify objects & metadata: Shop email, store language, orders, products, translations.

  • App scopes (as required for EasySell’s features): write_customers, read_customers, write_orders, write_order_edits, write_draft_orders, read_products, read_themes, write_themes, write_script_tags, write_content.

We may also collect information about you and other authorized users who access the App for your store (e.g., name, address, email, phone). We collect personal information directly from the relevant individual and/or via your Shopify account as needed to provide the Service.

C. Information About Your Store Visitors (if enabled)

If you enable customer/visitor data collection in the Advanced settings of the App, we may process limited visitor data such as IP address, browser/user agent details, location by country/city. This data is used solely to create or pre-fill customer orders and improve fraud checks and is not retained longer than necessary to provide the Service (see “Data Retention”).

D. Information Collected Automatically (Devices/Usage)

We may automatically collect information about the computers/devices you use to access the Apps, such as IP address, city/country location, device identifiers (where available), network information, browser type/language, and information about your interactions with the Apps (referring/exit URLs, landing pages, pages viewed and order, time on page, click counts, error logs, dates/times, frequency of use, and other diagnostic or statistical data).

E. Cookies, Pixels, and Similar Technologies

We use cookies, tracking pixels (e.g., web beacons/clear GIFs), and server logs to:

  • recognize your device; store preferences;

  • understand pages you visited and referral sources;

  • perform analytics and improve the Apps;

  • enhance security and prevent abuse; and

  • tailor content to inferred interests.

    If you receive emails from us, we may use analytics (e.g., clear GIFs) to gauge open/click rates and optimize communications. Some widgets/badges you embed may report view and interaction counts. You can adjust cookie settings in your browser; blocking cookies may affect App functionality.

F. Information from Third Parties

Where permitted by law, we may receive information from public sources, social media platforms, marketing and market research firms, fraud-prevention providers, and other service partners, which may include contact details, demographic data, company/employer information, verification/fraud signals, and similar data used to operate and secure the Apps.

3) Information Collected Through the App – COD orders (If Enabled)

If you use EasySell features to generate Cash on Delivery (COD) orders, the App may collect data needed to create that order, such as recipient/customer name, address, and phone number.

  • Purpose: This information is used solely to generate and attach the COD order necessary for the delivery service to collect payment upon delivery.

  • Storage: We do not store COD order details beyond what is strictly necessary to generate and transmit the order;

  • Disclosure inherent to delivery: Due to the nature of COD, the information on the order may be visible to delivery personnel, the recipient, and possibly other parties involved in handling the package.

  • Your responsibility: By using COD features, you acknowledge the visibility of COD order data in the delivery chain. Tyslo is not responsible for any misuse of the information after it appears on the physical order outside our systems.

  • Transmission security: We use reasonable measures to protect data in transit; however, no transmission is 100% secure.

4) Google Sheets Integration (If Enabled)

If you activate the Google Sheets integration, we will request access to your Google Drive (read-only) to let you select a file, and to Google Sheets (read/write) to automatically import orders. We store the Google Sheets file ID and sheet name needed to provide the Service. We do not sell or share your Google Drive/Sheets data and use it solely to deliver the integration.

5) How We Use Information

We use the information we collect to:

  • Provide, operate, maintain, and improve the Apps and develop new features;

  • Process orders (including COD) and provide technical and customer support;

  • Secure the Apps, prevent fraud/abuse, and enforce policies;

  • Communicate with you about your account, transactions, updates, and newsletters (you may opt out of marketing);

  • Conduct analytics, research, and reporting, including deriving insights from use of the Apps;

  • Comply with law, protect the rights, property, or safety of Tyslo, our users, and the public; and

  • Enforce our Terms of Service and investigate potential violations.

We may combine information collected from you (including automatically-collected data) with information from affiliates and third parties and use it as described in this Policy. We may aggregate and/or de-identify information and use/share such data for any purpose, including research and marketing.

6) When We Share Information

We may disclose information as follows:

  • Service Providers: With trusted vendors performing services on our behalf (e.g., hosting, storage, analytics, support, SMS delivery, legal, and security).

  • Legal & Safety: To comply with legal process, enforce our Terms/this Policy, respond to support requests, or protect the rights, property, or safety of Tyslo, our users, or the public (including fraud/spam prevention).

  • Business Transfers: In connection with due diligence, financing, merger, sale, or transfer of assets; customer information may be transferred as a business asset.

  • Affiliates: With current or future affiliates/related companies.

  • Consent: With third parties when you have consented.

  • Aggregated/De-identified: With third parties for any purpose.

Customer Data & SMS providers: If you enable SMS features, we may share customer phone numbers and message content with our SMS providers solely to deliver the Service. We do not sell Customer Data.

7) Legal Bases for Processing (EEA/UK and similar frameworks)

Where applicable, we rely on the following legal grounds:

  • Contractual necessity (to provide the Apps/Services you request);

  • Legitimate interests (e.g., support, security, preventing fraud, improving the Apps, managing accounts, analytics, and legal management) where not overridden by your rights;

  • Legal obligations; and

  • Consent (e.g., certain marketing)—which you may withdraw at any time as allowed by law.

8) Online Analytics

We may use analytics services (e.g., Google Analytics) which process data described in Section 2D/2E to help us understand usage, detect anomalies, and improve performance. To opt out of Google Analytics, you may install Google’s official Analytics Opt-out Browser Add-on. Analytics providers may collect your IP address and usage data subject to their privacy terms.

9) Your Choices & Data Subject Rights

Depending on your jurisdiction, you may have rights to access, correct, delete, object to, or restrict processing of your personal data, and to withdraw consent where processing is based on consent.

  • EEA/UK residents: You may request confirmation of whether we process your data, request access, correction, deletion, or portability, and object to/seek restriction of certain processing.

    To exercise rights, contact [email protected] with details of your request. We may need to verify your identity and your relationship to a merchant account.

10) Roles & Customer Data

For Customer Data (your end-users’ data), you are typically the data controller/business and Tyslo acts as your processor/service provider, processing Customer Data strictly in accordance with your reasonable instructions and applicable law. You are responsible for establishing a lawful basis for processing and for providing any required disclosures or consents to your customers. We do not sell or share Customer Data except as required to provide the Services or by law.

11) International Data Transfers

We may transfer your information to countries other than your own (including the United Arab Emirates, United States, Canada, and others) where data protection laws may differ. Where required, we take appropriate measures to safeguard transfers (e.g., contractual protections). By providing information, you acknowledge such transfers as permitted by law.

12) Security Measures

We implement technical, organizational, and physical security measures appropriate to the nature of the data we process, including encryption in transit where applicable, access controls, and monitoring. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

13) Data Retention

  • We retain information only as long as necessary to fulfill the purposes in this Policy or as legally required/permitted.

  • Upon App uninstall, your personal information is deleted within 48 hours from our primary systems.

  • Other App activity data (e.g., logs/diagnostics) may be retained up to 30 days for backup and business continuity, after which it is deleted or de-identified.

  • Backups may persist for a limited time beyond deletion for disaster recovery.

  • COD order data is not stored beyond what is strictly necessary to generate and transmit the order.

14) SMS / Messaging Terms (If Enabled)

  • User responsibility: You are solely responsible for message content, recipient consent, and compliance with applicable laws and carrier rules (e.g., TCPA, CAN-SPAM, GDPR/ePrivacy, CTIA, TRAI, and local equivalents).

  • No endorsement: Tyslo does not control or endorse message content.

  • No liability for user content: You agree to indemnify and hold Tyslo harmless for claims arising from your messaging content or practices.

  • Monitoring & enforcement: We may monitor at our discretion and block, delay, or remove content or sending that violates these terms, carrier rules, or law.

  • Lawful use only: You agree not to use SMS for unlawful, harmful, abusive, or rights-violating purposes.

15) Third-Party Links & Services

The Services may include links to third-party websites/services (e.g., social platforms, plugins, carriers). Their collection and use of data are governed by their own policies, not this Policy. We encourage you to review the privacy statements of every site/service you visit or integrate.

16) Children’s Privacy

The Services are not directed to children under 16, and we do not knowingly collect personal information from them. If you believe a child has provided us data, please contact us so we can take appropriate action.

17) Changes to This Policy

We will continue to evaluate this Policy as we update and expand our Services and may make changes accordingly. We will post updates here and revise the “Last Updated” date. We recommend reviewing this page periodically to stay informed about our practices.

18) Contact Us

If you have questions about this Policy or our privacy practices, or wish to exercise your rights, contact:

Tyslo FZE–LLC (EasySell)

Email: [email protected]

For further details about the use of our services, please refer to our Terms of Service.