oMazons Logo
oMazons Ltd
Back to Home

Privacy Policy

Last Updated: June 20, 2025

1. Introduction

oMazons Ltd ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at https://sp.omazons.com and use our comprehensive Amazon seller management platform ("Application").

Please read this Privacy Policy carefully. By accessing or using our Application, you acknowledge that you have read, understood, and agree to be bound by all the terms of this Privacy Policy. If you do not agree with our policies and practices, please do not use our Application.

2. Information We Collect

We collect several types of information from and about users of our Application, including:

  • Personal Data: Name, email address, postal address, phone number, and other identifiers that you voluntarily provide when registering for or using our Application.
  • Amazon Seller Information: When you connect your Amazon Seller account, we access certain seller data through Amazon's SP-API, including but not limited to order information, product listings, and fulfillment data necessary to provide our shipping services.
  • Usage Data: Information about how you interact with our Application, including access times, pages viewed, links clicked, and other actions taken within the Application.
  • Device Information: Information about the device you use to access our Application, including IP address, device type, operating system, and browser type.

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain our Application
  • Process and facilitate direct-to-consumer shipping for Amazon orders
  • Improve, personalize, and expand our Application's features
  • Understand and analyze how you use our Application
  • Develop new products, services, features, and functionality
  • Communicate with you, including for customer service, updates, and marketing purposes
  • Find and prevent fraud, security issues, and technical issues
  • Comply with legal obligations

4. Amazon SP-API Data Usage

Our Application integrates with Amazon's Selling Partner API (SP-API) with restricted access permissions to provide comprehensive seller management capabilities, including inventory management, analytics, business automation, and direct-to-consumer shipping. We adhere strictly to Amazon's API Terms of Service and handle all data obtained through SP-API with the highest standards of security and confidentiality.

4.1 Amazon Data Collection

When you connect your Amazon Seller account to our platform, we collect the following types of data through Amazon's SP-API:

  • Order Information: Order IDs, order dates, order status, shipping status, and related metadata
  • Product Information: SKUs, ASINs, product titles, descriptions, prices, and inventory levels
  • Customer Information: Names, shipping addresses, phone numbers, and email addresses solely for order fulfillment purposes
  • Fulfillment Data: Shipping options, carrier information, tracking numbers, and delivery status
  • Performance Metrics: Sales analytics, inventory performance, and seller account health metrics
  • Financial Data: Order values, refund information, and settlement reports (we never collect payment information from customers)

4.2 Amazon Data Processing

We process Amazon data for the following specific purposes:

  • Facilitating direct-to-consumer shipping and order fulfillment
  • Providing inventory management tools and analytics
  • Generating business insights and performance reports
  • Automating routine seller tasks and workflows
  • Optimizing product listings and inventory levels
  • Identifying operational efficiency opportunities
  • Providing customer service tools for order management

All data processing occurs on secure servers with strict access controls. We employ industry-standard encryption during data transfer and storage. Our processing systems are designed to minimize manual handling of sensitive data.

4.3 Amazon Data Storage

We implement the following practices for storing Amazon data:

  • Storage Location: All data is stored in secure cloud infrastructure within the European Economic Area (EEA) with appropriate safeguards
  • Encryption: Data at rest is encrypted using AES-256 encryption standards
  • Access Controls: Access to stored data is limited to authorized personnel only, based on the principle of least privilege
  • Segregation: Customer data is logically separated to prevent cross-contamination
  • Backup Procedures: Regular, encrypted backups with strict retention policies
  • Monitoring: 24/7 monitoring for unauthorized access attempts

4.4 Amazon Data Usage

We use Amazon data exclusively for:

  • Providing the core functionalities of our Amazon seller management platform
  • Improving our Application's performance and features based on aggregated, anonymized usage patterns
  • Troubleshooting technical issues and responding to customer support requests
  • Sending service-related notifications about your account or orders
  • Generating aggregated analytics to improve platform functionality

We strictly prohibit the following uses of Amazon data:

  • Selling or renting data to third parties
  • Using data to compete with Amazon or its selling partners
  • Direct marketing to Amazon customers
  • Creating derivative databases for commercial exploitation
  • Any purpose not explicitly disclosed in this Privacy Policy

4.5 Amazon Data Sharing

We limit sharing of Amazon data to the following circumstances:

  • Service Providers: We share data with carefully vetted third-party service providers who perform services on our behalf, such as cloud storage providers and shipping carriers. All service providers are bound by strict confidentiality agreements and data processing terms.
  • Legal Requirements: We may disclose data when required by law, regulation, legal process, or governmental request.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, data may be transferred as part of the transaction, subject to the same privacy protections.

We maintain detailed records of all data sharing activities and conduct regular reviews of our service providers' security practices.

4.6 Amazon Data Retention and Disposal

We implement the following data retention and disposal policies:

  • Active Accounts: We retain Amazon data as long as necessary to provide our services and as required by law.
  • Account Termination: Upon termination of your account, we will delete or anonymize your Amazon data within 90 days, except where retention is necessary for legal or regulatory requirements.
  • Disposal Methods: When data is no longer needed, we use secure deletion methods to ensure it cannot be recovered.
  • Archival Data: Some data may be retained in encrypted backups for limited periods as required by law or for legitimate business purposes, subject to the same security controls.

You may request deletion of your Amazon data at any time by contacting our support team.

We only request access to the minimum necessary data required to provide our services. This typically includes order information, shipping details, and customer contact information related to fulfillment.

Data obtained through SP-API is:

  • Never sold to third parties
  • Never used for competitive marketing purposes
  • Never used to contact customers directly for marketing purposes
  • Stored securely with encryption and strict access controls
  • Retained only as long as necessary to provide our services

5. Data Security

We implement comprehensive technical, administrative, and physical safeguards to protect your data:

  • Encryption: All data in transit and at rest is encrypted using industry-standard protocols (TLS 1.2+ for data in transit, AES-256 for data at rest)
  • Access Controls: Role-based access controls limit data access to authorized personnel only
  • Authentication: Multi-factor authentication for all staff accessing sensitive systems
  • Network Security: Firewalls, intrusion detection systems, and regular security scanning
  • Monitoring: 24/7 automated monitoring for unusual activities or potential security breaches
  • Vulnerability Management: Regular security assessments, penetration testing, and prompt patching of vulnerabilities
  • Security Training: Regular security awareness training for all staff members
  • Physical Security: Data centers with multiple layers of physical security controls
  • Incident Response: Documented incident response procedures for prompt action in case of any security events
  • Compliance: Regular security audits and compliance with relevant industry standards

Despite our best efforts, no method of electronic transmission or storage is 100% secure. If you have reason to believe that your interaction with us is no longer secure, please contact us immediately using the contact information provided in this Privacy Policy.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Correct inaccurate or incomplete information
  • Erasure: Request deletion of your personal data ('right to be forgotten')
  • Restriction: Limit how we process certain aspects of your data
  • Data Portability: Receive your data in a structured, commonly used format
  • Objection: Object to processing based on legitimate interests or for direct marketing
  • Withdraw Consent: Revoke previously given consent for data processing
  • Complaint: Lodge a complaint with a supervisory authority
  • API Connection: Disconnect your Amazon Seller account from our platform at any time

To exercise any of these rights, please contact us using the contact details provided below. We will respond to your request within 30 days.

For Amazon-specific data:

  • You can revoke SP-API access to your Amazon Seller account at any time through your Amazon Seller Central account
  • Upon revocation of access or account termination, we will delete or anonymize your Amazon data within 90 days, except where retention is required by law
  • You can request a full export of all your data maintained in our systems

7. Data Compliance

Our data handling practices comply with applicable laws and regulations, including:

  • General Data Protection Regulation (GDPR): For users and data subjects in the European Economic Area
  • California Consumer Privacy Act (CCPA): For California residents
  • Amazon SP-API Terms and Conditions: For all Amazon data accessed through the SP-API

We maintain records of our data processing activities and conduct regular compliance assessments. Our data protection officer oversees our compliance efforts and serves as your point of contact for privacy-related inquiries.

7.1 International Data Transfers

Our primary data processing operations take place within the European Economic Area (EEA). However, in some cases, your data may be transferred to, stored, or processed in locations outside the EEA. When this occurs, we implement appropriate safeguards to ensure your data receives an equivalent level of protection, including:

  • Standard Contractual Clauses approved by the European Commission
  • Binding Corporate Rules for transfers within our corporate group
  • Consent mechanisms where appropriate
  • Adequacy decisions where applicable

You can request information about these safeguards by contacting us using the details provided in this Privacy Policy.

8. Children's Privacy

Our Application is not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons.

When we make material changes to this Privacy Policy, we will:

  • Notify you via email if we have your contact information
  • Display a prominent notice on our website before the changes take effect
  • Update the "Last Updated" date at the top of this Privacy Policy
  • Provide a version comparison highlighting key changes upon request

We encourage you to review this Privacy Policy periodically to stay informed about our data practices. Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the revised policy.

For historical versions of our Privacy Policy, please contact us using the details provided in this document.

10. Transparency and Incident Notification

We are committed to transparency in our data handling practices:

  • Security Incidents: In the event of a data breach that affects your personal information, we will notify you and relevant authorities without undue delay, typically within 72 hours of discovery, as required by applicable law
  • Processing Changes: Material changes to how we collect, use, or share your data will be communicated through updates to this Privacy Policy with appropriate notice
  • Third-Party Requests: We will inform you of any legally binding requests for disclosure of your personal data unless prohibited by law
  • Automated Decision-Making: We will disclose any automated decision-making processes that significantly affect you and provide options for human intervention where appropriate

We maintain logs of access to Amazon SP-API data and conduct regular reviews to ensure compliance with our privacy commitments.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact us:

oMazons Ltd
Address: Ellados, 9 STELMIO BUILDING, 1st floor, Flat/Office 102 8020, Paphos, Cyprus
Email: [email protected] (for privacy-specific inquiries)
Support Email: [email protected]
Phone: +1 929 899-5900
Registration Number: HE 458619