Your expansion team wants to know: where are the gaps in your competitor’s store network? Which zip codes have population density but no nearby flagship? Which corridors are being quietly filled by a rival that opened 12 stores in the last eight months?
That data lives on the public internet, spread across hundreds of store locator pages. The problem is it is not sitting in a tidy CSV waiting for you. It is locked inside map widgets, JavaScript-rendered endpoints, and geo-restricted API calls that only return results for the coordinates you ask about. Scraping retail store locations means understanding that architecture well enough to extract it cleanly, at scale, and without getting blocked.
This guide walks through the full pipeline: how store locators are built, how to find their underlying data feeds, how to handle the common blockers (geo-restrictions, JavaScript rendering, rate limiting), what fields to collect, and how the resulting dataset actually feeds a site-selection or competitor analysis workflow. There is also a frank section on legality, because that question is real and the answer is nuanced.
Why Store Locator Data Is the Starting Point for Retail Intelligence
Before a retailer commits to a new lease, analysts want to answer three questions: where are customers already concentrated, where is there demand but no supply, and where has a competitor already staked a claim? All three questions depend on having a complete, current map of existing store locations, both yours and theirs.
The conventional approach is to buy a point-of-interest (POI) dataset from a data broker. That works, but POI data has two persistent problems: lag and cost. Commercially licensed POI files are typically updated quarterly at best, and full national datasets for a single retail category can run into thousands of dollars per license. By the time the file arrives, a fast-growing rival may have opened 15 more stores.
Store locator pages, on the other hand, are updated by the retailer in near real-time: a new location goes live on the locator the week it opens. Scraping retail store locations from those pages gives you a data feed that is structurally the same as what the retailer’s own apps use, because in most cases it is the same feed.
Consider the kind of intelligence this makes possible. ALDI announced plans to open more than 225 new US locations in 2025, a record for their US business, as part of a five-year plan to reach approximately 3,200 stores by 2028, per their own press releases. A competitor monitoring that expansion through a live location feed sees exactly where each new cluster is opening, which regional markets are being prioritized, and which of their own stores are suddenly facing a new proximity threat. That is not something a quarterly data license tells you in time to act.
The same logic applies to any retail location data use case: franchise developers mapping white-space markets, real estate analysts identifying high-traffic retail corridors, supply chain planners routing distribution to minimize last-mile costs, or ecommerce players deciding where a physical presence would convert the most existing online customers.
How Store Locators Are Actually Built
Understanding the architecture is what separates a scraper that works from one that returns empty results for 80% of queries.
Most modern store locators follow the same three-layer pattern:
Layer 1: The map widget. The page renders a map (usually Google Maps or Mapbox) and a search input. None of the store data is in the initial HTML.
Layer 2: A proximity API call. When you enter a zip code or allow geolocation, the page fires an XHR or Fetch request to a backend endpoint with latitude, longitude, and radius parameters. That endpoint returns JSON containing the stores within range.
Layer 3: The store objects. Each store in the JSON response typically carries: a store ID, name, full address, coordinates (lat/lng), phone, hours, and a list of services or features.
The practical implication: for most chains, you do not need Playwright or Selenium to scrape the data. You can query the proximity API directly with a plain HTTP client. Finding that API takes about two minutes with browser DevTools.
Finding the Hidden API
Open the store locator page in Chrome. Open DevTools (F12), go to the Network tab, and filter by XHR or Fetch. Now interact with the map: enter a zip code, pan the map, or click “Find Stores.” Watch the network requests that fire. You are looking for a request that:
- Goes to an endpoint with a path like
/api/stores,/storelocator/search,/locations/nearby, or/v1/stores - Takes query parameters like
lat=,lng=,radius=,zip=, orpostalCode= - Returns JSON with an array of store objects
When you find it, right-click the request in DevTools and copy it as cURL. Paste it into your terminal to confirm it works independently of the browser session. Then translate it to Python:
import requests
import pandas as pd
# Example of a retailer proximity API call # parameters vary by chain
endpoint = "https://www.example-retailer.com/api/v2/stores"
params = {
"lat": 40.7128,
"lng": -74.0060,
"radius": 50, # miles or km depending on the chain
"limit": 100
}
headers = {
"User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36",
"Referer": "https://www.example-retailer.com/store-locator",
"Accept": "application/json"
}
response = requests.get(endpoint, params=params, headers=headers, timeout=15)
response.raise_for_status()
stores = response.json()["stores"] # key name varies # inspect the response shapeThe Referer header matters. Many store locator APIs validate that requests appear to originate from the parent domain. Missing it is a common reason you get a 403 on a direct API call that works fine in the browser.
When There Is No Clean API
Some retailers render their store data server-side or embed it directly in the page HTML as a JSON blob inside a <script> tag. In that case, BeautifulSoup can parse the embedded JSON without needing a browser:
import requests
from bs4 import BeautifulSoup
import json
import re
url = "https://www.example-retailer.com/store-locator"
response = requests.get(url, headers={"User-Agent": "Mozilla/5.0"})
soup = BeautifulSoup(response.text, "html.parser")
# Store data is often embedded in a script tag as JSON
scripts = soup.find_all("script")
for script in scripts:
if script.string and "storeData" in script.string:
# Extract the JSON object # pattern varies, adjust the regex to match
match = re.search(r"storeData\s*=\s*(\[.*?\]);", script.string, re.DOTALL)
if match:
stores = json.loads(match.group(1))
breakIf the page requires full JavaScript execution (React/Vue/Angular apps where the store list only appears after a client-side render), you need a headless browser. Playwright is the current practitioner preference over Selenium for this:
# Prerequisites: pip install playwright && playwright install chromium
from playwright.sync_api import sync_playwright
import json
with sync_playwright() as p:
browser = p.chromium.launch(headless=True)
page = browser.new_page()
# Intercept the API call and capture its response directly
api_response_data = {}
def handle_response(response):
if "/api/stores" in response.url and response.status == 200:
try:
api_response_data["stores"] = response.json()
except Exception:
pass
page.on("response", handle_response)
page.goto("https://www.example-retailer.com/store-locator")
page.fill("#zip-input", "10001")
page.click("#find-stores-button")
page.wait_for_timeout(2000)
browser.close()
stores = api_response_data.get("stores", [])Intercepting network responses inside the browser is generally more reliable than parsing the rendered DOM, because the DOM structure changes with UI updates while the API response schema tends to be more stable.
Getting National Coverage: The Grid Query Problem
The proximity API approach has a fundamental limitation: it only returns stores within a specified radius of the coordinates you provide. Ask for stores near New York and you get results for the Northeast. To build a complete national dataset, you need to query every region.
The standard approach is to generate a grid of latitude/longitude points covering your target geography and query the API for each point. The grid density should be set so that your query radius fully overlaps between adjacent grid cells with no gaps.
import requests
import pandas as pd
import time
def generate_us_grid(lat_step=2.0, lng_step=2.5):
"""Generate a coarse grid covering the contiguous US."""
lats = [round(lat, 2) for lat in frange(24.5, 49.5, lat_step)]
lngs = [round(lng, 2) for lng in frange(-125.0, -66.5, lng_step)]
return [(lat, lng) for lat in lats for lng in lngs]
def frange(start, stop, step):
current = start
while current < stop:
yield current
current += step
def scrape_stores_at_point(lat, lng, endpoint, radius=80):
params = {"lat": lat, "lng": lng, "radius": radius, "limit": 200}
headers = {
"User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64)",
"Referer": "https://www.example-retailer.com/store-locator"
}
try:
r = requests.get(endpoint, params=params, headers=headers, timeout=15)
r.raise_for_status()
return r.json().get("stores", [])
except requests.RequestException:
return []
all_stores = {}
grid = generate_us_grid()
endpoint = "https://www.example-retailer.com/api/v2/stores"
for lat, lng in grid:
stores = scrape_stores_at_point(lat, lng, endpoint)
for store in stores:
store_id = store.get("id") or store.get("storeNumber")
if store_id and store_id not in all_stores:
all_stores[store_id] = store
time.sleep(0.5) # Respect the server, do not hammer it
df = pd.DataFrame(list(all_stores.values()))
df.to_csv("store_locations.csv", index=False)
print(f"Collected {len(df)} unique stores")The deduplication step (keyed on store ID) is critical. Grid cells overlap, so the same store will appear in multiple queries. Without deduplication you end up with 3-5x the actual store count.
The Geo-Restriction Problem
This is the most common reason a store locator scraper returns empty results despite correct code.
Many store locators use your IP address’s location to pre-filter results. Send a request from a server IP in Frankfurt and ask for stores in Phoenix, the locator may return zero results because its geolocation logic assumes you want stores near Frankfurt. This is not anti-scraping; it is the same localization logic that powers the user experience for a regular visitor.
The fix is geo-targeted residential proxies, route requests through IP addresses in the target region. For a national US coverage project, this means using proxies distributed across US cities. For a UK competitor analysis project, you need UK residential IPs.
Proxy rotation also matters for the second reason: rate limiting. Most store locator APIs set rate limits per IP. A grid query across the contiguous US might involve 1,000+ individual API calls. From a single IP, that pattern triggers a block within the first few hundred requests. Rotating across a pool of residential IPs keeps each IP’s request rate well below the threshold.
The practical distinction: datacenter proxies are cheaper but are easily fingerprinted as non-residential traffic and blocked by sophisticated anti-bot layers. Residential proxies appear as regular user traffic. For store locator scraping specifically, where the anti-bot posture is usually moderate, datacenter proxies often work. For chains that have deployed Cloudflare or Akamai bot management, residential proxies are worth the premium.
What to Collect: The Minimum Viable Schema
Not all store location data is equally useful for analysis. Here is the field schema that covers most use cases without over-collecting:
| Field | Notes |
|---|---|
store_id | Chain’s internal ID, use as deduplication key |
name | Store name or branch identifier |
address_line_1 | Street address |
city | City |
state / region | State, province, or equivalent |
postal_code | Zip or postal code, critical for demographic overlay |
country | Two-letter ISO code |
latitude | Decimal degrees, required for spatial analysis |
longitude | Decimal degrees, required for spatial analysis |
phone | For validation, helps verify the record is active |
hours | Opening and closing times by day |
services | Click-and-collect, pharmacy, fuel, etc. |
store_type | Format label if available (flagship, express, outlet) |
scraped_at | ISO timestamp, essential for data freshness tracking |
The scraped_at field is frequently omitted and almost always regretted. Store locations change, closures, relocations, format conversions. Without a timestamp you cannot tell whether a record is current or eight months stale.
Building a Competitor Location Intelligence Feed
The most direct application of retail location scraping is competitor analysis. The workflow:
1. Map their network. Run the grid query against each competitor’s store locator. Output: a complete coordinate dataset of every competitor location.
2. Compute proximity metrics. For each of your own stores, calculate the nearest competitor location and the count of competitors within defined radius bands (1 mile, 3 miles, 5 miles). Stores with no competitor within 5 miles are operating in low-competition zones; stores with 4+ competitors within 3 miles need a differentiation case.
3. Identify gaps. Overlay competitor density against population data. Postal codes with high population density and low competitor presence are your candidate markets. This is the core logic behind most white-space analysis in retail site selection.
4. Monitor expansion patterns. Re-run the scrape on a defined cadence, weekly for fast-growing chains, monthly for stable ones. Diff against the previous snapshot to extract new openings and closures. An expansion team watching a rival open 20 new locations in a single quarter, all in similar suburban corridor profiles, can reverse-engineer their site-selection criteria.
DataFlirt builds managed competitor intelligence scraping pipelines that deliver this kind of structured diff feed on a recurring schedule. The technical architecture, grid queries, deduplication, proxy rotation, schema normalization, is solved infrastructure; the value is that it keeps running reliably after the first delivery, which DIY scrapes typically do not.
Specific Retail Chains Worth Monitoring
The retailers worth building location feeds for depend on your market, but some consistently appear in competitive intelligence projects:
For general merchandise and grocery, the key US chains are Target, Kroger, CVS, Walgreens, and Best Buy. In UK general retail, the Argos and John Lewis networks are frequently tracked for catchment area analysis. In fashion and apparel, Zara, H&M, Gap, Nordstrom, and Macy’s are the chains most commonly pulled for comparable store density analysis. For value retail, Forever 21 location data is relevant to off-price strategy benchmarking.
In home furnishings, IKEA, Home Depot, Lowe’s, and Dunelm are the key chains. In beauty, Sephora location data is a standard input for beauty retail site selection.
Global beauty and apparel brands with multi-market presence, Gymshark, Uniqlo, are tracked by expansion teams entering new markets. In South and Southeast Asia, Myntra, Flipkart, Nykaa, and AJIO have physical touchpoints worth mapping for omnichannel competitive analysis.
Enriching Location Data Beyond the Locator
Raw coordinates and addresses are the starting point. The analytical value comes from enrichment.
Demographic overlay. Postal code-level census data (household income, age distribution, population density) is publicly available in most markets. Joining your location dataset to census tables by postal code converts a list of addresses into a market-characterization dataset. A store in a postal code with median household income above $80k and population density above 10,000 per square mile has a fundamentally different competitive context than one in a rural $40k-median area.
Competitor proximity. Discussed above, but worth noting that Google Shopping and Yelp data can supplement pure locator scraping for category-specific competitor mapping, especially for independent retail competitors that are not part of a national chain with a structured locator.
Directory cross-referencing. DataFlirt’s directory scraping service covers these sources. Yellow Pages, Foursquare, and BBB data can be used to validate and fill gaps in locator data, particularly for older stores that may have address discrepancies across sources. This is worth doing before loading a dataset into a site-selection model, a single wrong coordinate can skew trade area calculations.
Traffic patterns. Foot traffic data from mobile panel providers (SafeGraph, Placer.ai) can be merged with location data by coordinate proximity. This is typically purchased separately, but it transforms a location dataset into a performance indicator, you are not just mapping where stores are, but understanding which ones are pulling volume.
For a deeper look at how location intelligence feeds business decisions, see geolocation data and brand decisions and directory website scraping use cases.
Real Estate and Franchise Applications
Two other functions commonly pull retail location data:
Commercial real estate analysis. Brokers and developers building retail leasing models want to know: what is the existing retail density in a target corridor, which anchor tenants are present, and how far is the nearest comparable chain? Scraping store locator data answers the first two questions for any national chain. For a broker evaluating a strip mall in a secondary market, running locator scrapes against 10 relevant chain retailers takes an afternoon and produces a competitive context map that would otherwise require a commercial data license. DataFlirt’s real estate scraping service supports exactly this kind of corridor analysis. For more on the broader workflow, see real estate data scraping use cases.
Franchise territory analysis. Franchisors use location data to map existing franchisee territories and identify areas with population thresholds that are not yet served. A prospective franchisee, conversely, may scrape competitor locations to evaluate whether a given territory is already saturated. The same data feed, read from different sides of the table.
The Legal Question: What Scraping Retail Locators Actually Exposes You To
Store locator pages display their data publicly, no login, no paywall. That is the most important baseline fact.
The US legal landscape for scraping publicly accessible data has shifted in the scraper’s favor over the last several years. The Ninth Circuit’s 2022 ruling in hiQ Labs v. LinkedIn held that accessing publicly available data does not violate the Computer Fraud and Abuse Act (CFAA). That case involved LinkedIn’s public profile data, but the underlying principle, that the CFAA requires unauthorized access to a protected computer, and public data is not protected in that sense, applies broadly to store locator pages.
For more context on the overall legal framework, see is web crawling legal.
That said, three risk factors remain real:
Terms of Service. Most retail websites include ToS language prohibiting automated access. Violating ToS does not automatically create CFAA liability after hiQ, but it can still ground a breach-of-contract or state unfair competition claim, particularly in commercial-scale operations. The risk level depends on jurisdiction, the scale of scraping, and how the data is used.
Rate and volume. A scraper that sends 10,000 requests per minute to a retailer’s store locator API is not just a legal risk, it is a denial-of-service concern that will get you blocked and potentially result in a cease-and-desist. Scraping at a respectful rate (a few hundred requests per hour, with delays between grid cells) is both technically more robust and legally cleaner.
Data privacy. Store location data itself, addresses, hours, coordinates, contains no personal data. But if your pipeline also collects employee names, customer reviews tied to identifiable individuals, or any data that could be classified as personal under GDPR or CCPA, that changes the analysis. Stick to location and operational data and the privacy risk is minimal.
The honest summary: scraping public store locator data for competitive intelligence is lower-risk than most people assume, but “lower-risk” is not “zero-risk.” Have a legal review if you are building a commercial product on the data or scraping at large scale. Consult qualified counsel, this guide is technical orientation, not legal advice.
Build vs. Buy: When to Do It Yourself and When to Use a Managed Provider
The decision depends on three variables: how many chains you need to cover, how frequently you need refreshes, and how much engineering time you can allocate.
| Scenario | DIY | Managed service |
|---|---|---|
| 1-3 chains, one-time dataset | Practical, a few hours of engineering | Unnecessary overhead |
| 5-20 chains, monthly refresh | Starts getting complex, proxy management, schema drift | Worth evaluating |
| 20+ chains, weekly or more | Full-time infrastructure problem | Strong buy argument |
| Any chain with aggressive anti-bot | Significant engineering lift | Clear buy |
Schema drift is the underappreciated cost of DIY. Retailers update their store locator APIs and page structures without notice. A scraper that worked in January may silently return wrong data by March because the JSON key for latitude changed from lat to latitude, or the endpoint URL was versioned. A managed provider absorbs that maintenance cost. DataFlirt’s retail scraping service includes monitoring for schema changes and automatic pipeline repair, which for a 20-chain coverage requirement represents a substantial avoided maintenance burden.
If you do build in-house, the essential infrastructure components are: rotating proxy pool, deduplication by store ID, scraped_at timestamps, async scraping for parallel grid queries, and a change-detection diff process to identify new openings and closures between runs.
For more on how to evaluate the build vs. buy decision, see ecommerce web scraping use cases and alternative data for ecommerce.
Data Quality: The Silent Failure Mode
A dataset with 5,000 store records sounds comprehensive. A dataset with 5,000 store records where 8% have wrong coordinates, 12% have stale addresses, and 200 are duplicates produces systematically wrong analysis. This is a more common problem than most teams expect before they run their first locator scrape.
Three quality controls every retail location pipeline needs:
Coordinate validation. After collection, plot all coordinates on a map and look for outliers, stores that appear in the ocean, in wrong countries, or at coordinates of (0,0). These indicate parsing errors or placeholder data. Validate that each coordinate falls within the expected country bounding box.
Address standardization. Raw addresses from different chains use inconsistent formats: “St” vs “Street,” directionals like “N” vs “North,” suite numbers in different positions. Before any cross-chain comparison or geographic join, run addresses through a standardization layer. For US data, USPS CASS-certified geocoding tools are the most reliable. For more on this discipline, see data quality.
Cross-source validation. For high-stakes decisions (a lease commitment, a territory acquisition), validate locator data against at least one secondary source, Yelp listings, Foursquare venue data, or Google Places. A store that appears in your locator scrape but has no Yelp listing and zero check-ins may be temporarily closed, in construction, or an error record.
Frequently Asked Questions
Is it legal to scrape retail store location data?
Most store locator pages display location data publicly, and courts in the US have consistently held that scraping publicly accessible data is not copyright infringement (see hiQ Labs v. LinkedIn, Ninth Circuit 2022). That said, a site’s Terms of Service may prohibit automated access, and violating ToS can expose you to breach-of-contract or CFAA claims depending on jurisdiction. The legal posture depends on what the ToS says, how the scraper accesses the site, and whether you are using the data commercially. Treat this as an orientation, not legal advice; consult qualified counsel before running a commercial-scale pipeline against any site that explicitly prohibits bots.
How do I find the hidden API behind a retail store locator?
Most modern store locators load via JavaScript and query a backend API with latitude/longitude parameters. Open browser DevTools, go to the Network tab, filter by XHR or Fetch, then interact with the map by zooming, panning, or entering a zip code. Look for requests returning JSON with arrays of store objects containing address, coordinates, and hours fields. If a clean JSON endpoint exists, you can query it directly with requests in Python, bypassing the need for a headless browser entirely. If no clean API is exposed, use Playwright or Selenium to automate the page interaction and parse the rendered HTML.
What data fields should I collect when scraping retail store locations?
At a minimum: store name, full street address, city, state/province, postal code, country, latitude, longitude, phone number, and trading hours. Beyond those basics, enrich with: in-store services (click-and-collect, pharmacy, fuel), store format (flagship, express, outlet), opening date if available, and any proximity signals you can overlay, including nearby competitor locations, population density by zip code, average household income from census data, and drive-time catchment area. The richer the schema, the more questions the dataset can answer without a second data pull.
Why does a store locator return no results when I scrape it, and how do I fix it?
Many store locators return different results based on the IP address’s country or city. When your server’s IP is in a different region from the stores you are trying to map, the locator either shows no results or returns only nearby locations. The fix is geo-targeted residential proxies. Route your requests through IPs in the target region so the locator’s geolocation logic treats them as local traffic. For national coverage, divide the country into a grid of latitude/longitude bounding boxes and query the locator API for each cell, collecting and deduplicating results.
How can DataFlirt help with scraping retail store locations at scale?
DataFlirt builds and maintains managed scraping pipelines for retail clients, covering store locators, business directories, and competitor location feeds. Unlike a one-time DIY build, a managed pipeline handles schema changes when retailers update their locator, rotates proxies to prevent IP bans, and delivers structured data on a recurring schedule (weekly, daily, or on-demand) in JSON or CSV format ready for your analytics stack. Contact DataFlirt to scope a retail location data project.
