Privacy and Data Handling Policy
CustomHub.io
Effective Date: 1/1/2025
Last Updated: 1/1/2025
1. Introduction
CustomHub.io is committed to protecting the privacy and security of our users’ data. This Privacy and Data Handling Policy outlines how we collect, store, process, and delete data, including Personally Identifiable Information (PII) and Amazon Information, in compliance with Amazon’s Selling Partner API (SP-API) security requirements and applicable data protection laws.
2. Data Collection
We collect and process the following types of data from sellers using our platform:
- Seller Account Information: Name, email, and business details.
- Order Information: Order ID, product details, fulfillment status.
- Customer PII (limited to order fulfillment): Customer name, shipping address, and contact information.
- Inventory and Sales Data: Stock levels, pricing, and order trends.
3. Purpose of Data Collection
We collect data solely for the following purposes:
- Facilitating order processing, shipping, and fulfillment.
- Synchronizing inventory across integrated e-commerce platforms.
- Generating sales and performance reports for sellers.
- Ensuring compliance with Amazon’s API usage policies.
4. Data Retention & Deletion
- We retain Amazon PII only as long as necessary to complete order processing and fulfillment.
- All PII is automatically deleted or anonymized within 30 days of order completion, in accordance with Amazon’s SP-API policy.
- Non-PII data, such as sales reports, may be retained for analytical purposes unless the user requests deletion.
- Users can request data deletion at any time by contacting support@customhub.io.
5. Data Security Measures
To protect Amazon Information and user data, we implement:
- Encryption: All data is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption.
- Access Controls: Only authorized personnel have access to sensitive data.
- Network Security: We use firewalls, Virtual Private Networks (VPNs), and Kubernetes network policies to prevent unauthorized access.
- Monitoring & Alerts: We continuously monitor for suspicious activity and implement intrusion detection systems.
6. Data Sharing & Third-Party Access
- We do not sell, rent, or misuse Amazon seller or customer data.
- Data is shared only with Amazon-approved third-party services when necessary for order fulfillment.
- Any third-party service providers must comply with Amazon’s security policies and applicable laws.
7. Compliance with Regulations
CustomHub.io complies with:
- Amazon’s Selling Partner API (SP-API) Data Protection Policy.
- General Data Protection Regulation (GDPR) for EU-based users.
- California Consumer Privacy Act (CCPA) for California-based users.
- Other applicable data protection laws as required.
8. User Rights and Control
- Sellers can access, update, or request deletion of their data by contacting support@customhub.io.
- Users have the right to restrict processing or request a copy of their stored data.
9. Policy Updates
We may update this policy periodically to reflect changes in data handling practices or legal requirements. We will notify users of significant changes via email or a notice on our website.
10. Contact Information
For questions about this policy or data handling practices, contact us at:
Email: support@customhub.io
Address: 1911 East Ball Rd, Anaheim, CA, 92805