StoreGuard

StoreGuard is a fraud protection and store security app for Shopify. It watches every visitor, customer, and order on your store, scores the risk in real time, and lets you block traffic you don't want before it turns into a problem. Built around three signals — IP intelligence (geolocation, VPN, proxy, threat history), customer history (order patterns, chargebacks, repeat offences), and a customisable rule engine — it stops bad orders before fulfilment so you don't have to chase refunds, chargebacks, or stolen-card disputes.

StoreGuard is in private testing now and we're working towards a Shopify App Store launch. We'll publish a launch date here as soon as it's confirmed. If you'd like to be notified when it goes live — or to join the early access list — drop us a line through the contact form below and we'll keep you in the loop.

StoreGuard targets the patterns that show up most in real merchant fraud, including:

• Stolen-card orders from VPN, proxy, or known-bad IP addresses
• Customers with high cancellation, refund, or chargeback rates
• Orders placed from countries you don't ship to or don't trust
• Repeat offenders attempting checkout under different names or emails
• Disposable / throwaway email domains
• Address mismatches between billing and shipping
• Bot traffic and credential-stuffing attempts at checkout

You decide what gets blocked, what gets flagged for review, and what just gets a tag on the order so your fulfilment team can decide.

Every signal feeds into a risk score (0–100) with a transparent breakdown — no black box. You'll see exactly which factors contributed: VPN detected (+20), repeat cancellation (+15), high-value first order (+10), country mismatch (+10), and so on. You can use the score directly, customise the thresholds for low / medium / high / critical risk, or build your own rules ("block if order over $500 from a VPN" or "flag if customer's cancellation rate is above 30%").

This is the question we've spent the most time on. Three layers of safeguards keep good customers moving:

• Test mode — every rule can run in test mode first. It logs what it would have blocked but doesn't actually block, so you can tune thresholds against real traffic before going live.
• Sensitivity presets — Low / Medium / High let you start conservative. Higher sensitivity catches more fraud but also raises the false-positive rate.
• Manual review queue — instead of blocking outright, you can flag risky orders for review. Your team confirms or releases them.

And every blocked checkout shows a clear reason, so a real customer who hits a false positive can contact you — they're not left guessing.

No. The storefront tracker runs asynchronously and never blocks page rendering. The checkout validation runs in parallel with Shopify's own checkout — typically under 200 ms — and is fail-open by design: if our service is unreachable, your checkout goes through. We'd rather miss one fraudulent order than make a paying customer wait for our backend.

Yes. StoreGuard implements the three mandatory Shopify GDPR webhooks (customers/data_request, customers/redact, shop/redact) and processes them automatically. Customer data export goes to your shop's contact email; redact requests strip personally identifiable information (IP address, geolocation) from any associated orders before deleting the customer record. We collect what's needed for fraud detection — order events, visitor IPs, customer history — and nothing more. We don't sell, share, or repurpose your data.

Yes — there's a Free plan that covers the basics: visitor tracking, country / IP / customer blocking, basic rules, and a daily fraud digest, up to 500 orders per month. Paid plans (Pro and Business) add VPN / proxy / threat detection, advanced rule actions, real-time alerts, checkout-time validation, and higher order limits. Pricing details will be on the Shopify App Store listing at launch, and a free trial is included on every paid plan.

Yes. StoreGuard adds a tag and a risk-score note to each order, so any other tool that reads order tags or notes (3PLs, fulfilment apps, accounting integrations) keeps working. Shopify's own fraud analysis isn't replaced — StoreGuard runs alongside it and gives you finer-grained control. If you already use a checkout firewall or bot-protection layer at your CDN, StoreGuard sits inside the Shopify admin and complements it rather than overlapping.

The admin UI ships with English and Turkish at launch. The checkout extension is localised to match your shop's locale. Risk scoring and rules are currency-agnostic — order amounts work in whatever currency your shop uses. We'll add more languages based on merchant demand.

No. Install from the Shopify App Store with one click, run through a short three-step setup wizard (pick your sensitivity preset, enable the storefront tracker in your theme, and you're protected), and you're done. The first blocked threat usually shows up within minutes of activation. No code changes, no theme edits, no custom configuration required.

Use the form below — pick "StoreGuard Support" as the topic and tell us a little about your store (size, current fraud pain points, anything you'd want to see day one). We'll add you to the launch announcement list and reach out about the early access program when there's a slot. We read every message ourselves, so there's no auto-responder loop to escape from.