Privacy Policy

Effective Date: April 21, 2026

1. Introduction

This Privacy Policy describes how our internal application (“the Application”) collects, uses, and protects information obtained through the Amazon Selling Partner API (SP-API). This policy is designed to ensure compliance with Amazon’s Data Protection Policy (DPP) and Acceptable Use Policy (AUP).

2. Information We Collect

Through the Amazon SP-API, we collect and process data necessary to manage our Amazon selling operations. This includes:

  • Order Information: Order ID, purchase date, and status.
  • Personally Identifiable Information (PII): Customer names, shipping addresses, and phone numbers (processed only for fulfillment and tax purposes).
  • Inventory and Pricing Data: SKU details, stock levels, and pricing.

3. Purpose of Data Processing

We process Amazon Information solely for the following internal business purposes:

  • Fulfilling customer orders and managing shipping logistics.
  • Calculating and filing applicable sales taxes.
  • Analyzing sales performance and inventory forecasting.
  • Generating internal financial reports.

4. Data Retention and Storage

In compliance with Amazon’s security requirements:

  • PII Retention: We do not retain PII for more than 30 days after order fulfillment, except where required by law (e.g., for tax or regulatory audits).
  • Security: All data is encrypted at rest using industry-standard encryption (e.g., AES-256) and encrypted in transit using TLS 1.2 or higher.
  • Access Control: Access to Amazon Information is strictly limited to authorized personnel who require it to perform their job functions.

5. Data Sharing and Disclosure

  • No Third-Party Sales: We do not sell, rent, or trade Amazon Information to any third parties.
  • Service Providers: We may share data with trusted sub-processors (e.g., AWS for hosting or shipping carriers) only as necessary to fulfill orders. These partners must adhere to strict data protection standards.
  • Legal Compliance: We may disclose information if required to do so by law or in response to a valid legal request.

6. Data Security Measures

We maintain a secure technical environment to protect Amazon Information:

  • Encryption: All PII is encrypted both at rest and in transit.
  • Monitoring: We maintain logs of access to the Application to detect unauthorized activity.
  • Incident Response: We have established procedures to identify and respond to potential data security incidents.

7. Your Rights and Contact Information

Since this application is for internal use, data subjects (customers) wishing to exercise their data rights (such as access or deletion) should do so through the Amazon platform. For inquiries regarding our internal data handling practices, contact:

M07 V2/amazoncs@tradingmadeeasy.co.uk