Review us on Shopify and get up to ₹2,000 ads budget bonus!

DrpShippr — Privacy Policy

Last updated: May 10, 2026

1. Who We Are

DrpShippr ("we", "us", "our") operates the DrpShippr platform at drpshipr.com. We provide an all-in-one dropshipping management platform including Meta (Facebook/Instagram) ad campaign management, Shopify integration, order fulfilment, shipping, and payouts.

Contact: privacy@drpshippr.com

Address: DrpShippr, India

2. Data We Collect

When you install and use DrpShippr we collect:

  • Account information — Your name, email address, phone number, and business details when you register.
  • Store information — Shopify store domain, store name, currency, and timezone.
  • Order data — Order IDs, customer name, shipping address, phone number, email, order total, and product line items.
  • Product data — Product SKUs, titles, images, and pricing needed to fulfil orders.
  • Meta/Facebook data — When you connect your Facebook ad account, we collect your Facebook Ad Account ID, Page ID, Pixel ID, and an access token to manage ad campaigns on your behalf. We do NOT store your Facebook password.
  • Payment information — Bank account details for payout processing.
  • OAuth tokens — Shopify-issued token and Facebook-issued token to act on your behalf within the scopes you authorised.

3. How We Use Your Data

  • To sync and display your Shopify orders in your dashboard.
  • To create, manage, and optimise Facebook/Instagram ad campaigns (campaigns, ad sets, ads, creatives).
  • To route orders to suppliers for fulfilment.
  • To generate shipping labels and track shipments.
  • To calculate and process payouts/remittances.
  • To send operational notifications (order confirmed, shipped, NDR, ad performance).
  • To comply with legal obligations.

We do not sell your data or your customers' data to third parties.

4. Facebook / Meta Data Use

When you authorise DrpShippr to manage your Facebook ads:

  • We read your ad accounts, Pages, and Pixels to display them in our setup flow.
  • We create campaigns, ad sets, and ads using your chosen creative and budget.
  • We read ad performance insights (impressions, clicks, spend, conversions) to auto-optimise your campaigns.
  • We pause underperforming ads and scale winning ones based on ROAS thresholds.
  • We do NOT read your Facebook feed, friends list, messages, or any personal Facebook data.

You can revoke our access at any time from your Facebook Business Settings > Apps > DrpShippr. Revoking access will stop all active campaigns managed through our platform.

5. Data Sharing

We share data only as necessary for service delivery:

  • Suppliers — Receive shipping address and product details to fulfil orders.
  • Shipping providers — (Shiprocket, FShip, Delhivery) receive name, address, phone, and AWB number.
  • Payment gateways — (Cashfree) receive payee bank details for payout processing.
  • Meta / Facebook — Receive ad creative content, targeting parameters, and budget info to run campaigns.
  • Infrastructure — Vercel (hosting), Neon (PostgreSQL), Cloudinary (images), Google Cloud (AI). Data stored in India/US regions.

6. Data Retention

  • Order data is retained for 3 years for accounting and dispute resolution.
  • Meta ad campaign data is retained for the lifetime of your account.
  • Facebook access tokens are stored until you revoke or reconnect.
  • If you delete your account, all associated data is deleted within 30 days.
  • You may request full data deletion anytime by emailing privacy@drpshippr.com.

7. Data Deletion

You can request deletion of your account and all associated data at any time. Email privacy@drpshippr.com from your registered email address.

For Facebook-connected users: Revoking the app from Facebook Business Settings will automatically stop data access. Contact us to remove any stored Facebook data.

We will process all deletion requests within 30 days and send you a confirmation.

8. Security

  • All data transmitted over HTTPS/TLS.
  • Access tokens encrypted at rest in our database.
  • Webhook payloads verified using HMAC-SHA256 signatures.
  • Production access restricted to authorised team members.
  • Regular security audits of third-party integrations.

9. Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and associated data.
  • Port your data in machine-readable format.
  • Withdraw consent (e.g., disconnect Facebook integration).

To exercise these rights, email privacy@drpshippr.com.

10. Cookies

We use essential session cookies to keep you logged in. These are HTTP-only, secure cookies containing only your session ID. We do not use tracking, advertising, or third-party cookies.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be notified via email or in-app notification at least 7 days before they take effect.

12. Contact Us

Questions about this policy? Email us at privacy@drpshippr.com.