GateIQ is a full access-control platform for Shopify — 29 condition types across 8 resource types, composed with AND / OR / NOT, reinforced by a server-side Shopify Function that a bot can't bypass. Plus an AI engine that watches churn and fraud so you don't have to.
Most "gating" apps stop at password-protect-page. GateIQ lets you compose sophisticated access rules across every resource type on your storefront, then enforces them server-side so they actually stick.
Customer tags, spend thresholds, country, passcode, secret links, custom Liquid expressions, age verification with signed cookie, email domain, UTM parameters, engagement score — all 29 compose with AND / OR / NOT in nested groups.
Lock products, collections, pages, blog posts, variants, prices, cart, or the whole store. Each lock has its own conditions, its own branded lock screen, its own translations, and its own A/B-testable copy.
The only gating app on Shopify with a server-side checkout enforcement layer. Our gateiq-cart-validation Function runs inside Shopify's sandbox — a bot direct-posting to /cart/add.js still gets rejected at checkout.
Enable the app embed once in the theme editor and padlock badges appear on every gated product card across collections and search pages. Works on Dawn, Debut, Impulse, Brooklyn, Minimal, and most custom themes — no liquid edits.
B2B mode replaces .price selectors with "Log in to see price" and neutralizes Add-to-cart / Buy-it-now across Dawn, Debut, Impulse, Brooklyn, Minimal, and most third-party theme ATC patterns.
Four-stage drops (scheduled → teaser → live → ended) with a theme-extension countdown block that syncs from admin in real time. Pair with a lock so VIPs get early access while everyone else watches the timer.
Locksmith, Appstle, Conjured, Bold, BSS — every top competitor ships static rule builders. GateIQ ships a RandomForest churn model, real fraud detection, and a natural-language rule builder that turns English into structured conditions.
Type "VIP-tagged customers from the US who spent over $500" and GateIQ generates the structured condition tree. Lower the barrier for merchants who know what they want but not how to build it.
RandomForestClassifier trained on engagement signals: login frequency, access count, days since last access, purchase cadence, and membership age. Heuristic fallback when you're still accumulating labeled data.
Flags credential sharing (3+ distinct IPs on the same customer in 30 minutes) and bot patterns (100+ requests in 5 minutes or sub-0.5-second request intervals). Device fingerprinting and behavioral analysis included.
Lock views, access granted / denied, new members, and revenue — each with week-over-week trend and a 7-day sparkline. "This week at a glance" on the dashboard means you spot anomalies before they become incidents.
GateIQ is a full monetization surface — not just a door.
Unlimited tiers billed through Shopify Subscriptions — no Stripe setup. Monthly / yearly / weekly / one-time. 7-, 14-, or 30-day trials per tier with auto-transition to paid.
Wholesale and affiliate tiers with a Pending Approval queue. One-click Approve / Reject with server-side resolution and audit-ready member list.
Unified Email hub — Campaigns, Templates, Providers. Native SendGrid & Klaviyo (real SDK calls, AES-256 encrypted keys). Seven system templates, AI-generated copy, chi-square A/B tests on subject lines.
On-demand AI translation per entity, per locale, per field — with an auto_translated flag so merchants can override. Language pack scales with your plan.
Redis-cached with configurable TTL. Cache keys are semantically fingerprinted — customer_id, tags, spend, country, session — so different requests never share cache. Cache-bust on lock change, so stale grants never outlive a policy update.
Fernet (PBKDF2HMAC-SHA256) on all Shopify access tokens and third-party API keys (SendGrid / Klaviyo). Multi-store isolation verified at every query — Store A cannot read Store B's data under any access pattern.
All three Shopify GDPR webhooks (customers/data_request, customers/redact, shop/redact) subscribed. Redact task hard-deletes PII across all related tables. IP anonymization, data retention controls, and DPA on request.
Hard caps per tier — no fake "unlimited." 30-day trial on every paid tier. 20% off annual billing.
Drop us your email and we'll ping you the day GateIQ goes live. Early-access merchants get a 60-day free trial on any paid tier.