Privacy Policy

Effective date: April 7, 2026

Who we are

LedgerBridge is operated by LedgerBridge LLC, a Utah limited liability company. LedgerBridge is a Shopify app that syncs Shopify Payments payout data to accounting platforms as balanced journal entries. This policy describes how LedgerBridge collects, uses, and protects your information.

LedgerBridge LLC, 295 E 760 N, Orem, UT 84057. Contact: privacy@ledgerbridge.app

What data we collect

Data collected from merchants directly

  • Shopify store information (shop name, domain, timezone) obtained via the Shopify Admin API during app installation
  • Accounting platform credentials obtained via OAuth authorization flow (access tokens and refresh tokens, encrypted at rest)
  • Merchant configuration choices (posting method, account mappings, sync preferences)

Data collected automatically

  • Shopify Payments payout data (payout amounts, dates, balance transactions) received via Shopify webhooks and the Shopify Admin API
  • Chart of accounts from the connected accounting platform
  • Server logs (IP addresses, request timestamps, error details) for debugging and security
  • Sync history records (payout processing status, timestamps, journal entry references)

Data we do not collect

  • Customer personal data (names, emails, addresses)
  • Order line-item details
  • Payment card information

We do not use third-party analytics, tracking pixels, or advertising cookies.

How data is used

Data is used primarily to sync Shopify payout summaries as journal entries to your accounting platform. Server logs are used for debugging, security monitoring, and service reliability.

We do not sell or use merchant data for advertising purposes.

Data is disclosed to: (1) the accounting platform you explicitly connect (currently Zoho Books; QuickBooks Online and Xero when available), at your direction; and (2) infrastructure service providers (hosting, error monitoring) who process data on our behalf under contractual obligations. We do not sell data or share it with advertisers or data brokers.

Data storage and security

  • OAuth tokens are encrypted at rest
  • Database hosted on secured infrastructure with access controls
  • All communication occurs over HTTPS
  • Credentials are never logged or exposed in error messages

Data retention and deletion

  • Sync history and configuration are retained while the app is installed
  • Server logs are retained for up to 90 days
  • On app uninstall, LedgerBridge processes Shopify's compliance webhooks and deletes shop data, connection credentials, and sync history within 30 days, unless retention is required by law
  • Merchants can request data deletion at any time by contacting the address above. Requests are fulfilled within 30 days.

International data transfers

Data may be processed and stored in the United States. By using LedgerBridge, you consent to this transfer.

Your rights

GDPR (EU/EEA): You have the right to access, correct, port, and delete your personal data. You also have the right to restrict or object to processing.

CCPA (California): You have the right to know what personal information is collected, the right to delete it, and the right to opt out of its sale. LedgerBridge does not sell personal information.

To exercise any of these rights, contact the email address above. We will respond within 30 days.

Changes to this policy

We may update this policy from time to time. Changes take effect when posted to this page. If changes are material, we will notify merchants via the app or email.