'%20stroke-width='14'%20stroke-linecap='round'%20stroke-linejoin='round'%20fill='none'%3e%3cpath%20d='M%20105%2026.7%20A%2050%2050%200%201%200%20105%20113.3'/%3e%3ccircle%20cx='165'%20cy='70'%20r='50'/%3e%3ccircle%20cx='229'%20cy='70'%20r='50'/%3e%3cpath%20d='M%20304%2025%20L%20304%2095%20A%2030%2030%200%200%200%20364%2095%20L%20364%2025'/%3e%3cpath%20d='M%20399%20120%20L%20399%2025%20L%20424%2025%20A%2025%2025%200%200%201%20424%2075%20L%20399%2075'/%3e%3c/g%3e%3c/svg%3e)
Privacy Policy
We keep this short, clear, and focused on what actually matters: what we collect, why, and how to control it.
Last updated · May 1, 2026
1. About COOUP
COOUP is an affiliate marketplace that connects Shopify merchants with independent promoters who share products with their audience. When a sale happens through a tracked link, the promoter earns a commission and the merchant gets a verified, attributable order.
This Privacy Policy applies to cooup.co, the COOUP web app, and the COOUP Shopify app.
2. Data we collect
We collect only what we need to operate the platform:
- Account information — email address, name, profile handle, profile photo, and the role you choose (merchant or promoter).
- Merchant store data — Shopify store domain, products you choose to list, and order data limited to attributed orders (order ID, total, currency, line items tied to a COOUP referral).
- Click & attribution data — referral identifier, timestamp, country, and the product or store the click landed on.
- Cookies — a single first-party cookie (
coo_ref) used to attribute a sale back to the promoter who referred the buyer. No advertising cookies, no cross-site tracking. - Payout information — only what is required to pay promoters (handled by our payment processor, not stored by us in full).
3. How we use your data
- To attribute sales to the correct promoter and pay commissions.
- To show merchants accurate analytics on traffic and orders.
- To operate, secure, and improve the COOUP platform.
- To send essential service emails (account, payouts, security).
We do not sell your data. We do not use your data to train third-party advertising models.
4. Third-party services
COOUP relies on a small set of trusted providers:
- Shopify — to connect merchant stores, sync products, and receive order webhooks for attribution.
- Stripe — to process merchant billing and creator payouts. Card data is handled directly by Stripe.
- Supabase — our managed database and authentication provider, hosted in the EU.
Each provider has its own privacy policy and applies industry-standard security to data they process.
5. Data storage & security
Data is stored in encrypted databases with row-level security. Access is restricted to the account owner, and to COOUP staff only when required for support or platform integrity. All traffic is served over HTTPS.
6. Your rights
You can at any time:
- Request a copy of the data we hold about you.
- Correct or update your account information.
- Delete your account and associated personal data.
- Disconnect your Shopify store, which removes future syncing.
To exercise any of these rights, email privacy@cooup.co. We respond within 30 days.
7. Contact
Questions about this policy? Reach us at privacy@cooup.co.