Amazon SP-API Application Service Statement

Dear Amazon Sellers, this statement outlines the SP-API application services we provide as an Amazon Public Developer, with a particular emphasis on our pricing policy, core functionalities, and stringent data security and privacy safeguards.

Application Pricing (Fees) Plan: Transparent, Flexible, with a 30-Day Free Trial

We offer a simple and transparent subscription model to help you manage your Amazon business efficiently and worry-free.

Developer Application and Service Introduction

Our company has developed an innovative Amazon sales management platform, deeply integrated with the Amazon Selling Partner API (SP-API), designed to provide Amazon selling partners with a one-stop, intelligent operational solution. We are committed to leveraging big data analytics and artificial intelligence technologies to help individual sellers improve operational efficiency, optimize sales performance, reduce costs, and achieve continuous business growth.

Our core functionalities cover the following aspects:

1. Smart Order Management & Fulfillment

a. Deep Integration with Order APIs: We efficiently retrieve and process Amazon order details (including buyer PII, such as buyer name, shipping address, and contact phone number). This PII will be strictly handled in compliance with Amazon's Data Protection Policy, encrypted, and used for accurate order records, shipment generation, label printing, comprehensive order tracking, and providing customer service support to authorized users.

b. Unified Order Management: Whether it's Amazon FBA orders, seller-fulfilled orders, or multi-channel fulfillment orders, the platform can synchronize and centrally manage your (referring to a single seller's) order data, ensuring its completeness and accuracy.

c. AI-Assisted Order Processing Optimization:

i. Abnormal Order Identification: Utilizes AI models to analyze your (seller's) order data, automatically identify potential abnormal orders (e.g., incorrect addresses, high-risk fraud), provide timely warnings, and reduce fulfillment risks.

ii. Optimal Fulfillment Path Recommendation: Combines inventory, logistics costs, and delivery timeliness to intelligently recommend the optimal shipping solution for seller-fulfilled orders, even automating the creation of compliant shipments.

d. Core Value: Significantly improves order processing efficiency, reduces manual errors, ensures the accuracy and timeliness of order fulfillment, and optimizes the customer shopping experience.

2. Comprehensive Product & Smart Listing Management

a. Efficient Product Information Management: Supports bulk creation, editing, and updating of Amazon product listings (Listing), including core attributes such as price, inventory, product descriptions, images, keywords, and variation information.

b. Product Type Definition (PTD) Application: We leverage the Product Type Definitions API to obtain the latest product type definitions (JSON Schema), ensuring that sellers' listed product attributes comply with Amazon's requirements, thereby significantly improving listing success rates and accuracy.

c. AI-Assisted Listing Optimization:

i. Intelligent Copywriting Generation & Optimization: Based on big data and AI, assists sellers in generating engaging product titles, bullet points, and product details, optimizing keyword placement to improve search rankings and conversion rates.

ii. Competitor Analysis & Pricing Strategy: By analyzing publicly available data on similar products in the market, provides intelligent pricing suggestions to help sellers formulate more competitive pricing strategies.

iii. Compliance Risk Warning: Automatically identifies potential compliance risk words or images in listing content, provides early warnings, and offers modification suggestions to reduce the risk of listings being removed or suppressed.

d. Core Value: Shortens product launch cycles, improves listing quality and visibility, and enhances product competitiveness.

Data Management and Policy Commitment

We hereby solemnly commit that we strictly adhere to all Amazon policies and regulations, ensuring full compliance when using the Amazon Selling Partner API (SP-API). We deeply understand the importance of protecting data security and user privacy and fully comply with multiple clauses in Amazon's Acceptable Use Policy (AUP), Data Protection Policy (DPP), and all other relevant policies:

• Regarding Transparency (AUP Sections 2.2 and 2.4): We always maintain transparency with authorized users, clearly and accurately informing them about the type, content, and specific use of the Amazon data accessed. If using AI or other models for data analysis, prediction, or decision support (e.g., inventory forecasting, sales trend analysis), we will clearly explain the model's purpose, main data sources, core calculation methods, and data recency, ensuring users have a clear understanding of the services we provide and achieving full transparency in data usage.
• Regarding Legal and Regulatory Compliance (AUP Section 2.5): We commit to complying with all applicable laws, regulations, and industry standards, including but not limited to data privacy and protection regulations (such as the GDPR in the EU, the Cybersecurity Law in China, etc.), strictly adhering to legal requirements at every stage of data processing to fully protect users' personal information and business data security.
• Regarding Data Collection Minimization (AUP Section 3.8): We only collect data obtained through the Amazon SP-API that is necessary to implement the functionalities of this application and provide services to authorized users. We will never request or obtain any information beyond this scope, ensuring the principle of data collection and use minimization to maximally reduce the impact on user privacy.
• Regarding Data Aggregation and Sharing Restrictions (AUP Section 4.4): We fully recognize the importance of protecting Amazon selling partner data. We solemnly commit that we will never aggregate data obtained through the Amazon SP-API across authorized user businesses or customer scopes, nor will we provide, sell, or share this data in any form with any third party, including entities that compete with this application or authorized users. We adopt strict technical and management measures to ensure that data usage is strictly limited to serving the authorized user's own business, preventing improper use or leakage of data, and safeguarding the legitimate rights and commercial secrets of data subjects.
• Regarding Amazon Business Insights Confidentiality (AUP Section 4.5): We deeply understand the sensitivity and value of Amazon business insights. We commit that we will not promote, publish, or share any insights, data analysis reports, or other internal information obtained from the SP-API about Amazon's business, nor to use these insights or data for our own application's business operations, market research, or any unauthorized decision-making, resolutely maintaining the confidentiality and integrity of Amazon data.

Data Security Management Measures

In terms of data security management, we adopt multi-layered, comprehensive technical and management measures to ensure the integrity, confidentiality, and availability of data, strictly adhering to Amazon's policies and best practices regarding Vulnerability Management, Network Protection Guidance, Key Security Controls Guidance, Logging and Monitoring, Data Encryption and Recovery, Incident Response, and Safeguarding Sensitive Credentials:

• Strict Data Access Control Mechanisms: We have established strict data access control mechanisms, implementing unique identification, multi-factor authentication (MFA), and adhering to the Principle of Least Privilege, ensuring that only authorized personnel with a "need-to-know" basis can access relevant data, and each employee can only access the minimum data necessary to perform their duties. All access activities are meticulously logged and audited, with regular reviews of access permissions.
• Data Storage and Encryption: For data storage, we employ industry-standard strong encryption technologies (e.g., AES-256), ensuring the security of data during storage (at rest) and transmission (in transit), preventing unauthorized access. All data is stored in cloud service environments that meet high security standards, possessing robust physical and network security protection. We implement a key management strategy to ensure the secure generation, storage, rotation, and destruction of encryption keys.
• Data Classification and Tiered Management: We perform data classification and tiered management, adopting differentiated protection measures based on the importance and sensitivity of various data types. Concurrently, we regularly review and cleanse data to ensure its accuracy, completeness, and timely deletion in accordance with policies.
• Data Backup and Recovery: We conduct regular automated backups or archiving of Amazon information, securely storing it in encrypted cold storage services to prevent data loss or corruption. All backup data is also encrypted with AES-256. We regularly test data recovery processes to ensure prompt and complete data recovery in the event of data loss.
• Comprehensive Data Security Incident Response Plan: We have developed a comprehensive data security incident response plan, incorporating vulnerability management, penetration testing, code security reviews, real-time monitoring, anomaly detection, and automated threat protection mechanisms (such as WAF, IDS/IPS) to prevent, identify, and respond to potential security threats. In the event of any data security incident (e.g., database intrusion, unauthorized access, data breach), we will immediately activate the incident response process, taking containment, eradication, and recovery measures, and will immediately notify Amazon within 24 hours as required (notification to sp-api-security@amazon.com), minimizing the impact. We regularly conduct security drills and employee security training to enhance overall security awareness and response capabilities.
• Network Protection Measures: Our application is deployed in a protected network environment, implementing firewalls, intrusion detection/prevention systems (IDS/IPS), and utilizing network segmentation to isolate data of different security levels. All communication with the Amazon SP-API is conducted through encrypted TLS 1.2 or higher channels, ensuring the confidentiality and integrity of data transmission.
• Safeguarding Sensitive Credentials: We strictly adhere to Amazon's guidelines for safeguarding sensitive credentials. All API credentials, keys, and other sensitive information are stored using strong encryption technologies in a secure environment, and strict access controls are implemented. We prohibit hardcoding credentials in codebases, configuration files, or publicly accessible locations. Credential rotation and management processes are automated and subject to strict auditing.

Personally Identifiable Information (PII) Retention and Deletion Policy

PII data is collected and retained solely for the purpose of order fulfillment. In accordance with Amazon's Data Protection Policy, all PII data will be securely deleted within 30 days after the order has been shipped and successfully delivered. If extended data retention is mandated by legal or regulatory requirements, the data will be encrypted and stored in a secure and compliant cold storage service, accessed and used only within the bounds permitted by law. We have established strict data deletion processes to ensure PII data is thoroughly and irreversibly destroyed.

Statement on Sharing Amazon Information with External Parties

Our company does not share Personally Identifiable Information (PII) obtained from Amazon with any external parties.

For our smart logistics tracking service, we may share non-PII order information (e.g., order ID, tracking number, and carrier name) with selected third-party logistics tracking service providers. This sharing occurs via secure encrypted channels and is solely for the purpose of providing real-time shipment status updates to authorized users. All such data sharing strictly adheres to the Principle of Least Privilege and is limited to what is necessary for the application's functionality, fully complying with Amazon's Data Protection Policy. We have signed strict data protection agreements with all third-party service providers to ensure they also adhere to high standards of data security and privacy protection.

Contact Us

Should you have any questions about our business, please feel free to contact us via the contact information on our official website. We look forward to contributing to the Amazon seller community and helping sellers achieve greater success.