Install on ShopifyLast updated: March 21, 2026
This page explains how ONDUTYOPS LLC handles personal data in connection with Tacey: AI Order Agent and how the service aligns with the General Data Protection Regulation. Tacey is a Shopify application that processes order data to help merchants identify and resolve issues with shipping addresses before fulfillment. The application operates entirely within the Shopify ecosystem and processes data only as required to provide its defined functionality.
This document is intended to provide clear and accurate information about how personal data is processed, what roles apply under GDPR, and how data subject rights are supported. It reflects the actual technical implementation of Tacey and does not include generalized or hypothetical practices.
Merchants who install Tacey remain responsible for their own compliance obligations. This page supports transparency by explaining how Tacey processes data on behalf of merchants and how that processing is limited in scope and purpose.
Under GDPR, the merchant who installs Tacey acts as the data controller. The merchant determines the purpose and means of processing customer data by choosing to use Tacey as part of their order handling workflow. This includes deciding how and when customer data is collected and how it is used within their store.
ONDUTYOPS LLC, as the provider of Tacey, acts as a data processor. Tacey processes personal data strictly on the merchant's instructions and only for the purpose of providing order validation and correction services. The application does not use personal data for any independent purpose outside of this defined scope.
The individuals whose data is processed are the end customers of the merchant's store. These data subjects interact with the merchant's storefront and may receive communications from Tacey when their order requires correction or escalation.
Tacey processes specific categories of personal data obtained directly from Shopify order and customer records. This includes shipping and billing addresses, customer email addresses, phone numbers, customer order counts, and customer tags. Each of these data points is used to assess order validity, detect potential issues, and enable communication when corrections are needed.
Shipping addresses are analyzed to determine whether they are deliverable, while billing addresses are compared as part of fraud signal evaluation. Customer email addresses are used to send secure fix page links when an address needs correction. Phone numbers are used for escalation through SMS or voice calls and are also validated for format accuracy.
Additional contextual data such as customer order count and customer tags are used as inputs into AI reasoning to assess risk and reliability. When customers access the fix page, standard web request information such as IP addresses is received as part of normal HTTP processing but is not stored or used beyond the immediate request.
The legal basis for processing personal data within Tacey is legitimate interest. The processing is necessary to support order fulfillment by ensuring that shipping addresses are accurate and that potential delivery issues are identified before fulfillment occurs. This directly benefits both the merchant and the customer by reducing failed deliveries.
Fraud prevention is also a legitimate interest that supports the use of billing address comparisons, customer history signals, and other contextual indicators. These checks help merchants identify potentially problematic orders and reduce operational risk.
Customer communication through email, SMS, or voice calls is carried out only when necessary to resolve issues with an order. These communications are directly related to completing a transaction initiated by the customer and are therefore consistent with the expectations of the order process.
Tacey uses a limited number of sub-processors to deliver its functionality. These providers support specific operational needs such as AI reasoning, address validation, email delivery, communication services, and infrastructure hosting. Each sub-processor processes data only to the extent required to perform its role within the service.
Anthropic is used for AI reasoning and receives structured order-related data without direct personal identifiers such as names, email addresses, or phone numbers. Geocodio processes address components for validation and geocoding. PlaceKit provides real-time address autocomplete on the fix page without storing personal data.
Resend is used to deliver transactional emails, while Telnyx handles SMS and voice communications. Render provides hosting and database infrastructure for the application. Each of these providers maintains its own data processing terms and agreements, which govern how they handle data within their respective services.
Tacey operates using infrastructure and service providers located in multiple regions. Personal data may be processed in the United States by providers such as Anthropic, Geocodio, Telnyx, Resend, and Render. Address autocomplete functionality provided by PlaceKit is processed within the European Union.
Where personal data is transferred outside the European Economic Area, appropriate safeguards are applied. This includes the use of Standard Contractual Clauses where required to ensure that data receives an adequate level of protection consistent with GDPR requirements.
These transfers are limited to what is necessary for the operation of the service. Tacey does not perform unnecessary or excessive data transfers and ensures that each transfer has a defined purpose tied directly to its functionality.
Tacey retains personal data only for as long as the merchant actively uses the application. All stored data, including order records and related processing logs, exists solely to support ongoing functionality and is not retained beyond the active lifecycle of the app within the merchant's store.
When a merchant uninstalls Tacey, Shopify sends a standardized deletion request. Upon receiving this request, Tacey permanently deletes all associated data within 48 hours. This includes shop settings, order records, transparency logs, and any related operational data.
When an individual customer requests deletion, Shopify sends a separate request that triggers removal of all records associated with that customer. This deletion is also completed within 48 hours. No backups are maintained that preserve deleted data beyond this timeframe.
Data subjects have rights under GDPR that are supported through Tacey's design and Shopify's infrastructure. Access to data is available to merchants through the Tacey dashboard, which provides visibility into order processing and decision logs.
Customers can correct inaccurate shipping information through the secure fix page link sent when an issue is detected. This allows direct rectification of data without requiring additional steps or delays. When deletion is requested, Tacey processes the request automatically through Shopify's webhook system.
Merchants can pause processing of new orders within the application settings, effectively restricting further data processing. They may also uninstall the application at any time, which results in full deletion of all data. Data portability features are supported through transparency logs, with additional export capabilities planned.
Merchants act as data controllers and are responsible for ensuring that their use of Tacey complies with applicable data protection laws. This includes having a lawful basis for processing customer data and providing appropriate disclosures in their own privacy policies.
Merchants must inform their customers that third-party applications may process order data as part of fulfillment and validation workflows. They are also responsible for handling customer inquiries, requests, and complaints related to personal data.
Tacey processes data only within the scope defined by the merchant's use of the application. The merchant retains full responsibility for how customer data is collected, how it is used within their store, and how legal obligations are met.
Tacey implements security measures designed to protect personal data throughout its lifecycle. Data transmitted between systems is encrypted using HTTPS and TLS, and all stored data is held within encrypted infrastructure hosted by Render. Access to data is limited to the processes required for application functionality.
Shopify access tokens are managed using Shopify's secure token system and are rotated automatically. This reduces the risk of unauthorized access and ensures that integrations remain secure over time. Sensitive data is minimized wherever possible to reduce exposure.
Fix page links sent to customers are signed, single-use, and expire after 48 hours. The transparency log records only the names of accessed data fields rather than their values, ensuring that personally identifiable information is not duplicated in logs. AI processing is conducted under policies that prohibit the use of input data for model training.
Tacey monitors its infrastructure using alerting systems provided by its hosting provider. In the event of a confirmed data breach that affects personal data, ONDUTYOPS LLC will notify affected merchants without undue delay using the contact information provided in their account settings.
Merchants are responsible for assessing the impact of the breach on their customers and for meeting their obligations under GDPR, including notifying supervisory authorities and affected individuals where required. Tacey supports this process by providing relevant information about the nature of the breach.
Notification timelines are aligned with GDPR requirements, including the expectation to report qualifying breaches within 72 hours. ONDUTYOPS LLC will cooperate with merchants to ensure that accurate and timely information is available.
This GDPR Compliance Page may be updated to reflect changes in the service, legal requirements, or processing practices. Any updates will be published on the Tacey website and will include a revised effective date.
Changes will describe the current state of data processing and will not retroactively alter how data was handled before the update. Merchants are encouraged to review this page periodically to stay informed about how Tacey operates.
Continued use of the application after updates are made indicates acceptance of the revised information. If a merchant does not agree with the changes, they may uninstall the application, which will trigger deletion of all associated data.
If you have questions about this GDPR Compliance Page or how Tacey processes personal data, you may contact ONDUTYOPS LLC using the details provided below. We aim to provide clear and accurate information about our data processing practices.
For legal or data protection inquiries, please use the designated contact email so that your request can be reviewed by the appropriate team.
Legal Contact: legal@tacey.app
Start Free Trial