How do I install CustomerGenius in my Shopify store?

Click Install app in the Shopify App Store, approve the requested permissions, and our onboarding wizard pops up inside Shopify Admin to guide you through threshold settings and a one-time data sync for the past 60 days.

Does CustomerGenius start refunding orders the moment I install it?

No. Auto-refund is disabled by default. During onboarding you choose your auto-refund thresholds. You can either manually review the orders for some time to see how it works, or turn on auto-refunding from the start.

What signals feed the fraud score?

CustomerGenius compares every new order's email, phone number, billing and shipping addresses (fuzzy and exact), and name against prior orders that used the same discount code. Each matching field adds points to the fraud score.

What exactly happens when an order is refunded?

CustomerGenius issues a full refund via the Shopify API, and optionally sends you and the customer an email alert. If you use Recharge or ShipStation and have connected them in the settings tab, the order will also be cancelled there.

Will CustomerGenius slow down my checkout?

No. CustomerGenius processes orders post-checkout via Shopify's webhooks, so your storefront performance is completely unaffected.

Is there a free trial for CustomerGenius?

Yes, there is a 14-day free trial for all pricing tiers. CustomerGenius does not currently offer a permanent free tier, but you can use the trial period to determine whether there is enough discount fraud in your store to justify the subscription cost.

How do I get help if something looks wrong?

Email the CustomerGenius support team at support@customergenius.io.

How to Stop Abuse on Shopify Automatic Discounts

Two Ways Shopify Stores Run Discounts

Shopify gives merchants two distinct mechanisms for discounting an order, and the difference between them matters for fraud detection.

The first is the manual discount code. The merchant creates a coupon in Shopify Admin, the customer types it into the checkout's promo code field, and Shopify validates and applies the discount. The redemption event is explicit. Every order using the code carries the code value in its discount_applications data, and any fraud detection tool watching that code sees a clean signal.

The second is the automatic discount. The merchant creates a discount under Shopify Admin → Discounts → Create discount → Automatic, defines the conditions that trigger it (cart total above a threshold, specific products in the cart, customer segment, BFCM dates, first-order eligibility, anything Shopify lets you configure), and the discount applies at checkout without the customer doing anything. There is no code to enter, no redemption event from the customer's perspective, and no code value attached to the order in the way a manual coupon would attach. The discount_application is present, but its type is "automatic" rather than "discount_code."

Both mechanisms move money. Both can be abused. Until recently, only one of them was monitored by most fraud detection tools — including, until this update, CustomerGenius itself.

Why Automatic Discounts Have Grown in Popularity

Three things have pushed merchants toward automatic discounts over the last few years.

Conversion friction. Asking a customer to find, copy, and paste a discount code is a friction point at checkout. Customers abandon carts when codes do not work, when the field is hard to find, when they suspect a better code exists somewhere else they have not looked yet. Automatic discounts remove that friction entirely. The customer sees the savings applied before they hit the payment step, and the merchant captures the conversion lift that comes from a frictionless checkout.

Marketing simplicity. With an automatic discount, the merchant does not have to communicate a code through ads, emails, social posts, and influencer placements. The offer is the same regardless of how the customer arrived. That simplicity makes automatic discounts attractive for store-wide promotions, BFCM events, free-shipping thresholds, and any campaign where the goal is "everyone shopping right now gets this offer."

Better mobile experience. On mobile, finding and entering a coupon code is meaningfully harder than on desktop. Automatic discounts sidestep that entirely. The pricing the customer sees on the product page is closer to the price they pay at checkout, which reduces drop-off in the most volume-heavy traffic channel.

The result is that more discount value is now flowing through the automatic discount path than ever before. For some merchants, automatic discounts are the larger share of their total promotional spend.

The Abuse Pattern Is Identical

The customer does not care about the technical distinction between a manual code and an automatic discount. From their perspective, both are "first order is 20% off" or "first subscription is half price." If the offer can be claimed once per email address — and Shopify enforces that constraint just as it does for codes — the same multi-email abuse pattern that runs against manual codes runs against automatic discounts.

A customer creates an account, places an order, and triggers the automatic discount. They cancel the subscription or take the one-time benefit. They come back later under a different email address — same shipping, same phone, same card if they bother to keep it consistent — and trigger the automatic discount again. Repeat.

The mechanics of the abuse are identical. The shape of the loss is identical. The reason it has not been visible to most fraud tools is that those tools were architected to monitor coupon codes, and the data they were monitoring did not contain a coupon code.

Why Code-Based Monitoring Could Not See It

Discount fraud detection tools, including earlier versions of CustomerGenius, work by attaching scoring to a discount code value. The merchant tells the system "watch SUMMER25" and the system inspects every order where SUMMER25 appears in discount_applications, then scores those orders against prior orders that also used SUMMER25.

That model assumes the discount has a code value. For an automatic discount, the data structure looks different. Shopify exposes the discount through the same discount_applications array, but the application type is "automatic," and instead of carrying a code field, it carries a title and a numeric ID. The "title" might be something the merchant set like "First Order — 20% Off Free Shipping" — descriptive, but not a coupon code in the sense a code-watching system was designed to monitor.

So the existing scoring model had no key to anchor against. There was no code to flag in the merchant's settings, because there was no code. There was an automatic discount, identified by its title and ID, that the fraud detection layer had no concept of.

Earlier versions of CustomerGenius did not address this. The product was built around code monitoring and it covered the code-based abuse case well. For merchants whose entire promotional structure ran through manual codes, that was sufficient. For merchants who had moved any meaningful share of their promotions to automatic discounts, there was a gap.

What Has Changed

CustomerGenius now monitors automatic discounts using the same identity-based scoring that it has always applied to manual codes. The configuration model has been extended so that merchants can flag an automatic discount for monitoring exactly the way they would flag a manual code.

In the CustomerGenius dashboard, the discount monitoring page now lists both types side by side. Manual codes appear with their code value. Automatic discounts appear with their Shopify discount title and ID. The merchant ticks a checkbox to enable monitoring on either type, and the same five-signal scoring runs on every incoming order that triggers a monitored discount:

Email address — exact match plus fuzzy matching for plus-addressing and minor variations

Phone number — exact and near-exact matching

Shipping address — exact and normalized fuzzy comparison

Billing address — compared independently from shipping

Customer name — fuzzy matched against prior records to catch initials, abbreviations, and transpositions

When an automatic discount triggers on an incoming order, CustomerGenius pulls the merchant's history of orders that triggered the same automatic discount, scores the new order against that history across the five signals, and applies the configured action — flag for review, auto-cancel, or both — when the threshold is met.

From the merchant's perspective, the experience is the same as monitoring a manual code. The difference is entirely under the hood.

How CustomerGenius Identifies Automatic Discounts

The technical detail worth understanding is that automatic discounts are identified by their Shopify discount ID, not by their title. Titles can change. Merchants rewrite them, A/B test different framings, edit them across seasons. A title-based monitoring scheme would lose continuity every time a merchant updated the wording.

Shopify assigns a stable numeric ID to every automatic discount, and CustomerGenius anchors monitoring to that ID. Once a merchant enables monitoring on a specific automatic discount, the system tracks it across any title changes for as long as the discount exists in the merchant's Shopify admin. The history of redemptions accumulates against the ID continuously, and the scoring works the same way it does on a long-running manual code.

This is also how cross-evaluation discount groups extend to automatic discounts. The discount group feature, which groups multiple discounts into a single eligibility pool, works identically across manual codes and automatic discounts. A merchant running a manual welcome code on email signups alongside an automatic first-order discount on the storefront can put both into a single group, and a customer redeeming one cannot then redeem the other without being flagged. The mechanism is indifferent to whether the discounts are manual or automatic — the eligibility pool is what matters.

Configuring Monitoring on an Automatic Discount

The setup steps for monitoring an automatic discount mirror the manual code flow:

1. Open CustomerGenius in your Shopify admin. The discount monitoring page lists every active discount in the store, separated by type.

2. Locate the automatic discount. It appears with its current title and the discount ID. The list refreshes whenever Shopify reports a change to the discount catalog.

3. Enable monitoring. A toggle on the row activates scoring for that discount. The default action is flag-for-review; auto-cancel and threshold settings are configurable.

4. Optionally add it to a discount group. If the automatic discount belongs to an eligibility pool — for example, alongside other first-order incentives — adding it to a group enables cross-evaluation against the rest of the group.

That is the entire configuration. From the moment monitoring is enabled, every order that triggers the automatic discount runs through the same scoring engine that processes manual code orders. The merchant's existing rules, thresholds, whitelists, and action configuration apply uniformly across both discount types.

Use Cases Where This Matters Most

Some categories of merchant carry more exposure on automatic discounts than others. The pattern is more or less proportional to how much promotional volume the merchant has shifted to automatic discounts versus codes.

Subscription brands using automatic first-month discounts. A subscription brand that automatically discounts the first month of any new subscription has the highest-stakes version of this exposure. The economics of subscription acquisition usually mean the first-month discount sits close to product margin, and any duplicate redemption of that discount is a direct margin loss on a customer who was never going to convert to a profitable subscription. Monitoring that automatic discount with multi-signal scoring is functionally identical to monitoring a manual subscription discount code.

Apparel and lifestyle brands running BFCM-style automatic promotions. During concentrated promotional events — Black Friday, Cyber Monday, holiday sales — a meaningful share of merchants run their promotions as automatic discounts to remove checkout friction during the peak conversion window. The volume of orders during these events is high enough that even a small percentage of duplicate-identity abuse compounds into a significant absolute dollar loss. Monitoring keeps the promotion clean during the window where the merchant has the least time to manually review orders.

Beauty and wellness brands with first-order automatic discounts. A new-customer percentage off, applied automatically based on the customer's order history with the store, is a common acquisition structure in beauty and wellness. The same multi-account abuse pattern that runs against new-customer discount codes runs against this automatic version, and the per-order cost can be higher because beauty AOVs tend to be relatively high.

Food and beverage brands with free-shipping thresholds. Free shipping above a cart total is a common automatic discount. Customers building exactly-at-threshold carts repeatedly under different identities can cumulatively cost the merchant thousands per month in shipping subsidies. Monitoring the automatic free-shipping discount, especially with a tighter threshold for fuzzy address matching, is the right shape of intervention.

Any brand that has migrated from coupon codes to automatic discounts. Merchants that used to run a coupon-based promotion and migrated it to an automatic discount for conversion reasons often inherit the same fraud exposure, but lose the monitoring infrastructure they had on the code. Re-enabling monitoring on the automatic version closes that gap immediately.

Calibration and Rollout

The standard rollout pattern that applies to manual codes applies cleanly to automatic discounts.

Start with observation only. For the first ten to fourteen days, run monitoring without any action attached. Every triggering order is scored, matches are logged, but no orders are cancelled. This produces a real-data view of the volume of duplicate patterns hitting the discount, which is usually higher than merchants expect and is essential for sizing the impact of full-action mode.

Move to flag-for-review. Once the observation window confirms the scoring is accurate, switch to a flag-for-review configuration. Suspected duplicates land in the CustomerGenius review queue, and the support team confirms or releases each one. This stage is short — typically a week or two — and serves to validate that the false positive rate is acceptable before handing the system autonomy.

Enable auto-cancel for high-confidence matches. With the calibration complete, auto-cancel can be turned on for orders that match on two or more signals, with single-signal matches continuing to flow through the review queue. From this point on, duplicate-identity orders triggering the automatic discount are refunded within seconds of being placed, before the warehouse can pick the shipment.

The pattern is intentional. Going straight from off to auto-cancel is technically possible, but the calibration period exists for a reason: every store has its own household, gift, and edge-case patterns, and the threshold tuning that gets to near-zero false positives is store-specific. The phased rollout is what produces the high-precision configuration that protects revenue without hassling legitimate customers.

What This Does Not Change

It is worth being explicit about what does not change with this update. Manual code monitoring continues to work exactly as it did. Existing merchant configurations are unaffected. The same scoring model, the same threshold logic, the same action configuration, the same review queue, the same dashboard — all of it carries forward unchanged.

The update is additive. Automatic discounts are now a first-class object in the system alongside manual codes. Merchants who only use codes do not need to do anything. Merchants who only use automatic discounts can now monitor them where previously they could not. Merchants who use both can monitor both, and can group them together using cross-evaluation if the discounts share an eligibility pool.

The Takeaway

The discount fraud problem does not care which Shopify mechanism a merchant chose to deliver the offer. Multi-email abuse runs against any structure that can be redeemed once per identity, and the only thing the technical mechanism affects is whether the existing fraud detection layer can see the redemption.

For most of the past few years, automatic discounts have been a blind spot. Merchants who moved promotions to the automatic flow for conversion reasons unknowingly took those promotions outside the scope of their fraud monitoring. That gap is now closed. CustomerGenius scores incoming orders on automatic discounts using the same multi-signal identity model it applies to manual codes, with the same configuration interface and the same cross-evaluation grouping.

If your store runs any promotion through Shopify's automatic discount system — first-order incentives, free shipping thresholds, subscription discounts, BFCM promotions, segment-specific offers — duplicate-identity abuse is almost certainly running against it right now without surfacing in your existing fraud reporting. See how monitoring works across both manual codes and automatic discounts on the CustomerGenius pricing page, or install CustomerGenius from the Shopify App Store for a 14-day free trial.