Tajo only requests the access it needs to sync data into Brevo. Here is exactly what each scope does.
Why Tajo Needs Access
To keep Brevo current, Tajo reads your customers, orders, and products and listens for changes. It does not modify your storefront or process payments.
Permissions Requested
| Permission | Used for | Notes |
|---|---|---|
| Read customers | Sync contacts and marketing consent to Brevo | Consent is respected, not overridden |
| Read orders | Trigger post-purchase and cart flows | Order value and items power segmentation |
| Read products | Product recommendations and catalog context | Read-only |
| Webhooks | Real-time updates on new orders and customers | Keeps sync near real-time |
Tajo requests read access for data and does not need write access to customers, orders, or your theme.
Reviewing Access
In Shopify Admin, go to Settings > Apps and sales channels > Tajo to see the granted scopes at any time.
Revoking Access
Uninstalling Tajo from Shopify immediately revokes all access and stops the sync. Your already-synced Brevo contacts remain in Brevo; Tajo simply stops sending new updates.
Privacy
Tajo passes data from Shopify to your own Brevo account. It does not sell data. Marketing consent set in Shopify is honored, so customers who did not opt in are not synced as marketing contacts. See contacts missing in Brevo for how consent affects which customers appear.
Next: connect Shopify to Brevo.