Effective: 3 May 2026
This Privacy Policy explains how Shoppego collects, uses, and shares your personal information when you use our platform — including our website, merchant dashboard, mobile apps (iOS and Android), and related services.
If we change our privacy practices, we may update this policy. If any changes are significant, we will let you know through the Shoppego admin, by email, or through an in-app notice.
Trust is the foundation of the Shoppego platform, and that includes trusting us to do the right thing with your information. Three values guide us as we build and improve our products.
We carefully analyze what types of information we need to provide our services, and we try to limit collection to only what we really need. Where possible, we delete or anonymize this information when we no longer need it. When building features, our engineers work closely with our privacy and security teams. The goal is simple: only use your information to your benefit.
If a third party requests your personal information, we will refuse to share unless you give us permission or we are legally required to. When we are legally required to share, we will tell you in advance, unless we are legally forbidden from doing so.
Many of the merchants using Shoppego do not have a dedicated privacy team. We try to build our products so they can easily be used in a privacy-friendly way.
We collect different types of information depending on how you use Shoppego.
When you sign up for Shoppego or log into our mobile apps, we collect:
Name
Email address
Phone number
Password (stored encrypted, never readable by us)
Business name and details (for merchants)
When you use the Shoppego Dashboard mobile apps (iOS and Android), we collect:
Device identifier (unique to your device installation)
Operating system and version (iOS or Android)
App version
Push notification tokens (Apple Push Notification Service tokens for iOS, Firebase Cloud Messaging tokens for Android)
Authentication tokens to keep you logged in
Crash and error reports if the app encounters a problem
Basic usage analytics (which screens you visit, how often, for how long)
We do not use Apple's Advertising Identifier (IDFA). We do not track your activity across other apps or websites. We do not sell your data to advertisers.
The app does not request access to your camera, photos, contacts, or location.
When you operate a store on Shoppego, we collect data related to your store's operations:
Products you list (titles, descriptions, prices, images)
Orders received from your customers
Payment transaction records
Shipping and fulfillment data
Customer information your buyers provide (names, addresses, phone numbers)
For customer information stored in your store, Shoppego is the data processor and you (the merchant) are the data controller. Your customers' information is held on your behalf for the purpose of running your store.
When you contact us via email, livechat, or support channels, we keep records of those communications to provide support and improve our service.
If you opt in to receive marketing emails or product updates, we keep a record of your preference and your interactions with our communications.
We process your information for the following purposes.
These uses fall under what privacy law calls legitimate interests. We only process information for these purposes after considering the potential risks to your privacy. We provide clear transparency, offer you control where appropriate, limit what we collect, limit who we send it to, and limit how long we keep it.
Authenticating your account and keeping you logged in
Sending push notifications about new orders, customer messages, and store activity
Displaying your dashboard, orders, products, and analytics
Processing payments through our payment partners
Sending transactional emails (order confirmations, password resets, receipts)
Analyzing how merchants use the platform so we can improve features
Debugging crashes and performance issues
Testing new features with subsets of users
Understanding which features are valuable
Customer support
Product updates and new feature announcements
Marketing communications (only if you've opted in)
Important policy or security updates (these are sent regardless of marketing preferences)
Preventing fraud and abuse
Complying with Malaysian law including the Personal Data Protection Act 2010
Tax and financial recordkeeping
Responding to legal requests where required
To run Shoppego, we work with trusted third parties. Each handles a specific function and has its own privacy practices, which you should review.
Firebase Cloud Messaging (Google) — Push notifications on Android
Apple Push Notification Service (Apple) — Push notifications on iOS
Firebase Analytics (Google) — App usage analytics
Firebase Crashlytics (Google) — Crash reporting
Google Cloud Platform (Google) — Hosting infrastructure
Payment processor name — Securepay, Billplz, Bizappay, Lekirpay, Chip, Stripe, Paypal, Atome
Email service provider — Mailerlite, Omnisend, Brevo, Sender, Resend
We share only the minimum information needed for each service to do its job. We do not sell your information to any third party.
Shoppego Dashboard is available as a mobile app on both iOS App Store and Google Play Store.
Mobile apps connect to our servers using encrypted connections (TLS). Your login session is maintained using secure tokens stored on your device. When you receive a push notification, your device's notification system displays it. The notification payload itself is small and contains only what's needed to inform you (e.g., "New order received").
The app stores the following on your device:
Authentication tokens (so you don't have to log in every time)
Recent orders and dashboard data (for offline access)
Your app preferences (haptic feedback settings, notification preferences)
Cached images for faster loading
You can clear all of this by signing out of the app or uninstalling it.
The mobile apps may request the following permissions:
Push notifications — to send you alerts about new orders and store activity. You can disable in your device settings.
Internet — required for the app to function.
We do not request access to your contacts, location, microphone, or other sensitive data.
Shoppego is a Malaysian company, but we work with infrastructure providers around the world. To operate our service, we may send your personal information outside Malaysia, including to:
Singapore (for some hosting and CDN services)
United States (for Firebase services and Google Cloud)
Other regions where our service providers operate
When we transfer your information across borders, we take steps to protect it. We try to work only with providers that have strong data protection standards. If you would like more information about where your information might be sent, please contact us.
We keep different types of information for different lengths of time.
Account information: While your account is active, then up to 90 days after you request deletion
Order and transaction records: 7 years (required by Malaysian tax and accounting law)
Backup copies: Up to 1 year, then anonymized or deleted
Push notification tokens: Until you uninstall the app or disable notifications
Marketing preferences: Until you withdraw consent
Customer support records: 3 years from last contact
Crash and analytics data: 2 years, then anonymized
When you ask us to delete your account, we remove your personal information within 90 days, with these exceptions:
Records we are legally required to retain (tax, financial, fraud prevention)
Anonymized aggregated data that no longer identifies you
Information stored in disaster recovery backups (deleted in routine backup rotation)
You have the right to access and control your personal information. Depending on how you use Shoppego, you may have the right to:
Access the personal information we hold about you
Correct information that is inaccurate or incomplete
Delete your information (subject to legal retention requirements)
Port your information to another service
Restrict how we use your information
Object to certain uses such as direct marketing
Withdraw consent for any processing based on consent
We will not charge you more or provide you with a different level of service if you exercise any of these rights.
Email us at [email protected]. Please include enough information to identify yourself and the specific right you want to exercise.
If you send us a request, we have to verify it is actually you. We may ask for documentation to verify your identity, which we discard after verification.
If you would like to designate an authorized agent to exercise your rights on your behalf, please email us from the email address we have on file for you. If you email from a different address, we cannot determine if the request is coming from you, and will not be able to accommodate.
If you are not happy with our response, you can contact us to resolve the issue. You also have the right to contact your local data protection authority.
If you are a customer who bought something from a Shoppego-powered store and want to exercise rights over your purchase information, please contact the merchant directly. Shoppego is the processor on their behalf — we do not decide how to handle their customer data. We can forward your request to them, but the merchant must respond.
We do help merchants fulfill these requests by giving them the tools to do so and by answering their questions.
We work to protect your information through:
Encryption in transit using TLS for all API connections
Encryption at rest where applicable
Limited employee access on a need-to-know basis
Regular security reviews and updates
Monitoring for unauthorized access
That said, no method of transmission over the internet, and no method of electronic storage, can be 100 percent secure. We cannot guarantee absolute security, but we work hard at it.
If we ever experience a data breach affecting your information, we will notify you and the relevant authorities as required by Malaysian law.
Shoppego is not intended for users under 13 years old. We do not knowingly collect personal information from children under 13.
If you believe a child under 13 has provided us with personal information, please contact us at [email protected] and we will delete it promptly.
If we discover that we have collected personal information from a child under 13 without verified parental consent, we will delete that information.
We use cookies and similar tracking technologies on our website and when providing our services.
Essential cookies for login sessions, security, and basic functionality
Preference cookies to remember your settings
Analytics cookies from Google Analytics to understand how the site is used
Marketing cookies if you've consented to them, used for retargeting and ad measurement
You can manage cookie preferences through your browser settings. Some essential cookies cannot be disabled without breaking core functionality.
Mobile apps don't use cookies. Instead they use:
Device identifiers for analytics and crash reporting
Authentication tokens for login sessions
Cached data for offline access
You can opt out of analytics by uninstalling the app or contacting us at [email protected] to request deletion of your analytics data.
Because there is no common understanding of what a "Do Not Track" signal is supposed to mean, we don't respond to those signals in any particular way.
If you are in Malaysia, the Personal Data Protection Act 2010 (PDPA) applies to how we handle your personal data.
Under the PDPA, you have specific rights including:
The right to access your personal data
The right to correct inaccurate personal data
The right to withdraw consent for data processing
The right to limit processing in certain circumstances
The right to lodge a complaint with the Personal Data Protection Department of Malaysia
To exercise PDPA rights, contact us at [email protected].
For complaints you cannot resolve with us, you can contact the Personal Data Protection Department at www.pdp.gov.my.
We may update this Privacy Policy from time to time. When we do:
For material changes, we will notify you by email or through an in-app notification at least 30 days before the change takes effect
For minor changes, we update this page and revise the effective date at the top
Continued use of Shoppego after a policy update means you accept the updated policy
You should review this policy occasionally to stay informed about how we protect your information.
If you have any questions, concerns, or requests about this Privacy Policy or your personal information, please reach out.
Email: [email protected]
Livechat: Available on shoppego.my during office hours
Mailing address:
Shoppego Sdn. Bhd. (1377508-W)
Suite 4812, 2-53, CBD 2
63000 Cyberjaya, Selangor
Malaysia
Last updated: 3 May 2026
Not sure what to look for or need further clarification? We are ready to help you through Livechat channel or email.