oMazons Logo
oMazons Ltd
Back to Home

Data Security

How we protect your information and maintain compliance with Amazon's requirements

At oMazons Ltd, we understand that data security is paramount, especially when handling sensitive Amazon seller information. Our comprehensive seller management platform is built with security as a fundamental principle, and we maintain the highest standards in protecting your data throughout our systems.

Data Encryption

All data is encrypted both in transit and at rest using industry-standard encryption protocols. We use TLS 1.3 for all data transmission and AES-256 encryption for stored data.

Secure Infrastructure

Our application runs on AWS infrastructure with strict network security controls, regular security patches, and multi-layered access controls to prevent unauthorized access.

Access Controls

We implement strict access controls following the principle of least privilege. Only authorized personnel with specific job requirements can access customer data, and all access is logged and audited.

Incident Response

We maintain a comprehensive incident response plan with 24/7 monitoring. In the unlikely event of a security incident, we have procedures in place to quickly identify, contain, and remediate any potential issues.

Amazon SP-API Data Handling

Our integration with Amazon's Selling Partner API (SP-API) adheres to all of Amazon's requirements for public developers seeking restricted API access. We implement the following specific measures:

API Security Measures

  • 1

    Minimal Access Requests

    We only request the specific API permissions required for our platform's functionality, including inventory management, analytics, and shipping operations. We follow the principle of least privilege in all our API integrations.

  • 2

    Secure Credential Management

    All API credentials are stored encrypted and are never exposed in client-side code, configuration files, or version control systems.

  • 3

    Throttling Compliance

    We strictly adhere to Amazon's API rate limits and implement intelligent retry mechanisms to avoid overwhelming the API endpoints.

  • 4

    Data Minimization

    We only store SP-API data that is necessary for our service to function. We implement automatic data purging processes for data that's no longer needed.

  • 5

    Regular Compliance Audits

    We conduct regular internal audits of our SP-API usage to ensure continued compliance with Amazon's Terms of Service and API policies.

Compliance & Certifications

SOC 2 Type II

Certified for security, availability, and confidentiality

GDPR Compliant

Full compliance with EU data protection regulations

CCPA Compliant

Adherence to California Consumer Privacy Act

Contact Our Security Team

If you have any questions or concerns about our security practices, or if you need to report a security vulnerability, please contact our dedicated security team at:

  • Email: [email protected]
  • Phone: +1 929 899-5900
  • Address: Ellados, 9 STELMIO BUILDING, 1st floor, Flat/Office 102 8020, Paphos, Cyprus

For urgent security matters, please mark your email as "URGENT: Security Matter" in the subject line.