Privacy & Data Protection

Privacy Policy

Last Updated: March 30, 2026

01 Overview

This Privacy Policy describes how Bancoresy Innovation Inc collects, uses, stores, and protects information in connection with its SaaS-based operational platform for Amazon sellers and vendors.

Our platform integrates with the Amazon Selling Partner API (SP-API) only after explicit authorization from the account owner. We use Amazon data solely to provide approved operational features for the authorized account.

Important Commitment: We do not sell Amazon data, do not use Amazon-acquired data for advertising, and do not use it for unrelated profiling, marketing, or any purpose outside the authorized business workflow.

02 Information We Collect

We apply data minimization and access only the data necessary to support approved features for an authorized Amazon account.

Category Source Examples
Account & Authorization Data Amazon SP-API / OAuth authorization Seller account identifiers, marketplace context, authorization tokens
Product & Listing Data Amazon SP-API Catalog details, listing content, item attributes, product metadata
Order & Inventory Data Amazon SP-API Order identifiers, SKUs, quantities, fulfillment status, inventory records
Financial & Reporting Data Amazon SP-API Settlement records, transaction information, financial and business reports
Restricted Data / PII Amazon SP-API Buyer name, shipping address, and contact details when required for approved restricted workflows
Technical & Security Data Application and infrastructure logs Access timestamps, user identifiers, request metadata, security events, IP address

03 How We Use Amazon Data

Amazon data is used only to deliver platform features requested by the authorized seller or vendor account. Depending on the approved roles and enabled features, our platform may use authorized data for:

Product & Pricing Operations

Managing listing content, product data, catalog updates, pricing review, and approved pricing workflows.

Fulfillment & Order Workflows

Synchronizing orders, tracking inventory, supporting FBA-related operations, and handling direct-to-consumer shipping workflows.

Buyer Interaction

Supporting approved buyer communication and buyer solicitation workflows through controlled account operations.

Finance, Tax & Reporting

Preparing financial views, generating tax invoices, supporting tax calculation and reconciliation, and processing operational reports.

Analytics & Business Insights

Providing account performance analysis, business reporting, brand analytics, Amazon Business analytics, and operational dashboards.

Compliance & Notifications

Supporting sustainability certification workflows, Seller Central notification display, and other approved compliance-related processes.

We do not use Amazon data for advertising, audience building, resale, or unrelated commercial exploitation.

04 Restricted Data and PII Handling

We request access to personally identifiable information (PII) only for approved restricted workflows and only after explicit account authorization.

  • Direct-to-Consumer Shipping: Buyer name, shipping address, and contact details may be used to generate shipping labels, prepare shipment records, and support order delivery.
  • Tax Invoicing: Relevant buyer and order data may be used to generate compliant tax invoices where required by local invoicing or recordkeeping rules.
  • Tax Remittance: Relevant order and customer-related data may be used to support tax calculation, reconciliation, and filing workflows for authorized accounts.

Restricted data is never used beyond the approved business function and is limited to the minimum necessary data required for that workflow.

05 Sharing and Disclosure

We do not sell, rent, broker, or trade Amazon data or personal information to third parties.

Information may be disclosed only in the following limited circumstances:

  • To provide services requested by the authorized account owner;
  • To trusted infrastructure or service providers acting on our instructions and subject to confidentiality and security controls;
  • To comply with applicable law, regulation, legal process, or enforceable governmental request;
  • To protect the security, integrity, or lawful operation of our platform and systems.

06 Security Safeguards

We maintain administrative, technical, and organizational safeguards to protect Amazon data and other information processed by our platform.

  • Encryption in Transit: Data is transmitted over secure HTTPS using TLS.
  • Encryption at Rest: Sensitive data is protected using industry-standard encryption controls.
  • Access Control: Access is restricted to authorized personnel based on business need and least-privilege principles.
  • Monitoring & Logging: Security events, access activities, and suspicious behavior are logged and monitored.
  • Credential Protection: Authentication and privileged access are controlled through managed security processes.
  • Review & Response: Security alerts are reviewed, investigated, and remediated through formal operational procedures.

07 Data Retention and Secure Deletion

We retain data only as long as necessary to support authorized workflows, meet contractual obligations, comply with legal requirements, and maintain security records.

1

Order or workflow completed

2

Retention policy applied

3

Secure deletion or archive control

  • Order-related PII: Retained only for the period necessary to support the approved business function and generally removed within 30 days after fulfillment or completion of the related workflow, unless a longer retention period is required by law or a documented compliance need.
  • Standard logs: Retained for 3 years.
  • Critical security logs: Retained for 5 years.
  • PII in logs: We do not store full PII in logs.

When deletion is required, records are removed through controlled deletion procedures and standard secure disposal practices appropriate to the storage system in use.

08 Monitoring, Incident Handling, and Compliance

We monitor for suspicious activities and investigate security-relevant events through centralized logging and monitoring processes. When a confirmed security incident affects Amazon data, we follow our internal response procedures for containment, investigation, remediation, and notification in accordance with applicable contractual and security obligations.

09 Your Rights and Requests

Where applicable by law, individuals may request access to, correction of, or deletion of personal information that we process. Requests will be reviewed and handled in accordance with applicable legal, contractual, and operational requirements.

10 Contact Us

Bancoresy Innovation Inc - Privacy Contact

740 Vintage Ave, Ontario, CA 91764, USA

Email: mendizhang@bancoresy.com

Tel: +86 18928406660