Privacy Policy

Last Updated: October 8, 2025

1. Introduction

SellerCopilot ("we," "our," or "us") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Amazon Selling Partner API integration services and analytics platform.

This policy complies with the Amazon SP-API Data Protection Policy and Acceptable Use Policy, including sections 4.4 and 4.5, as well as GDPR, CCPA, and other applicable data protection regulations.

2. Information We Collect

2.1 Amazon Seller Data

Through our Amazon SP-API integration, we collect and process the following data from your Amazon Seller account:

• Sales Data: Order information, transaction details, revenue metrics
• Inventory Data: Product listings, stock levels, SKU information
• Performance Metrics: Seller ratings, customer feedback, performance indicators
• Brand Analytics Data: Search term reports, market basket analysis, item comparison data
• Account Information: Seller ID, marketplace identifiers, account settings

2.2 Account and Profile Information

• Name, email address, phone number
• Business name and address
• Payment and billing information
• Account credentials and authentication tokens

2.3 Usage and Technical Data

• IP address, browser type, device information
• Log data and analytics regarding your use of our services
• Cookies and similar tracking technologies

3. How We Use Your Information

We use the collected information for the following purposes:

• Service Delivery: To provide analytics, insights, and recommendations for your Amazon selling business
• Brand Analytics: To deliver competitive analysis, market trends, and search performance data
• Account Management: To manage your account, process payments, and provide customer support
• Service Improvement: To enhance our platform features and user experience
• Communications: To send service updates, security alerts, and support messages
• Compliance: To comply with legal obligations and Amazon SP-API requirements

4. Data Protection and Security

4.1 Security Measures

We implement industry-standard security measures to protect your data:

• Encryption: All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption
• Access Controls: Role-based access control (RBAC) with multi-factor authentication
• Network Security: Firewall protection, intrusion detection systems, and DDoS mitigation
• Regular Audits: Quarterly security assessments and penetration testing
• Monitoring: 24/7 security monitoring and incident response procedures
• Data Backup: Regular encrypted backups with disaster recovery capabilities

4.2 Amazon Data Protection Compliance

In accordance with Amazon's Data Protection Policy, we:

• Store Amazon Information only for as long as necessary to provide services
• Do not use Amazon customer data for purposes other than providing our services
• Maintain incident response procedures with 24-hour notification to Amazon
• Implement anti-malware controls and network segmentation
• Conduct regular vulnerability assessments and remediation

5. Data Sharing and Disclosure

5.1 Third-Party Service Providers

We may share your information with trusted third-party service providers who assist us in:

• Cloud hosting and infrastructure (AWS, Google Cloud)
• Payment processing
• Analytics and monitoring
• Customer support tools

All third-party providers are contractually bound to protect your data and use it only for specified purposes.

5.2 Legal Requirements

We may disclose your information when required by law, court order, or government regulation, or to:

• Comply with Amazon SP-API policies and requirements
• Protect our rights, property, or safety
• Prevent fraud or security threats
• Respond to legal process

5.3 No Sale of Personal Data

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

6. Data Retention

We retain your information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce agreements

Amazon seller data is retained for a maximum of 24 months unless required by law or at your explicit request. Upon account termination, we securely delete all data within 30 days unless retention is legally required.

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request access to your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Portability: Request a copy of your data in a portable format
• Objection: Object to certain processing activities
• Restriction: Request restriction of data processing
• Withdrawal: Withdraw consent at any time

To exercise these rights, contact us at privacy@sellercopilot.com.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your residence. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs)
• Adequacy decisions by relevant authorities
• Privacy Shield certification (where applicable)

9. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Maintain your session and preferences
• Analyze platform usage and performance
• Improve user experience

You can control cookie preferences through your browser settings.

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children.

11. Amazon SP-API Specific Provisions

11.1 Brand Analytics Access

Our use of Amazon Brand Analytics data is strictly limited to:

• Providing analytical insights to authorized Amazon sellers
• Generating market reports and competitive intelligence
• Improving product listing performance

11.2 Data Use Restrictions

In compliance with Amazon SP-API Acceptable Use Policy sections 4.4 and 4.5:

• We do not use Amazon Information to directly compete with sellers
• We do not disclose Amazon customer personal information to third parties
• We maintain confidentiality of all seller data
• We promptly delete data upon request or service termination

12. Incident Response

In the event of a data breach or security incident:

• We will notify Amazon within 24 hours at sp-api-data-protection@amazon.com
• Affected users will be notified within 72 hours
• We will take immediate steps to contain and remediate the incident
• A full incident report will be provided

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or platform notification. Your continued use of our services after changes constitutes acceptance of the updated policy.

14. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us at:

SellerCopilot Data Protection Officer
Email: privacy@sellercopilot.com
Email: musman@horizonsellers.com
Address: 6 Village Dr, Jericho, NY 11753
Phone: +1 (425) 985-3975

15. Regulatory Compliance

We comply with:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• Amazon SP-API Data Protection Policy
• Amazon SP-API Acceptable Use Policy
• SOC 2 Type II Standards

By using SellerCopilot's services, you acknowledge that you have read and understood this Privacy Policy.