EcomStride

Legal

Privacy Policy

Last updated: April 6, 2026

1. Who We Are

EcomStride (“we”, “our”, or “us”) is an Amazon account management and e-commerce services agency. We provide services including product research, sourcing, listing optimisation, PPC management, brand registry, A+ content, case management, freight forwarding, and full account management to Amazon sellers worldwide.

This Privacy Policy explains how we collect, use, and protect information about visitors to our website and clients who engage our services.

2. Information We Collect

Information you provide directly:

  • Contact details (name, email address, phone number) when you submit our contact form or book a strategy call
  • Business information (Amazon Seller Central account details, product categories, revenue data) provided during onboarding
  • Communications you send us via email, WhatsApp, or our website contact form

Information collected automatically:

  • Browser type, IP address, and device information when you visit our website
  • Pages visited, time spent on site, and referral sources via analytics tools
  • Cookies and similar tracking technologies (see Section 6)

3. How We Use Your Information

We use the information we collect to:

  • Respond to enquiries and provide requested services
  • Manage your Amazon account on your behalf under agreed service contracts
  • Send service updates, reports, and performance summaries
  • Improve our website and service offerings
  • Comply with legal obligations including tax and financial record-keeping
  • Prevent fraud and maintain the security of our systems

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. Amazon Selling Partner API (SP-API)

EcomStride is an authorized Amazon Selling Partner API developer. The following subsections describe in detail how we access, use, store, and delete data obtained through the Amazon SP-API.

4.1 Authorization Basis

EcomStride operates as an authorized Amazon Selling Partner API developer. We access SP-API on behalf of clients only after receiving explicit written authorization through our Service Agreement and the client’s grant of API access through Amazon Seller Central. No SP-API data is accessed without the client’s prior, informed consent documented in a signed service contract.

4.2 SP-API Roles We Access

The following table details the specific SP-API roles accessed for each service category, together with the precise purpose of that access:

Listing & Catalog Management

Catalog Items API  ·  Listings Items API

Used to create and update product listings (titles, bullets, descriptions, keywords, images) on behalf of clients.

Advertising & PPC Management

Amazon Advertising API

Used to create, manage, and optimize Sponsored Products, Sponsored Brands, and Sponsored Display campaigns.

Account Health & Seller Insights

Account Information API  ·  Selling Partner Insights

Used to monitor account health dashboard, respond to performance notifications, and maintain seller standing.

Inventory Management

FBA Inventory API  ·  Inventory API

Used to monitor FBA stock levels, create inbound shipments, and manage inventory placement across fulfillment centers.

Order Monitoring

Orders API

Used to track order status, monitor fulfillment metrics, and identify late shipment risks to maintain seller performance standards.

Reporting & Analytics

Reports API

Used to pull Sales reports, Traffic reports, and Advertising reports for client performance dashboards and strategic review.

FBA Reimbursements

Reports API (Reimbursement reports)

Used to identify FBA lost or damaged inventory and file reimbursement cases with Amazon Seller Support on behalf of clients.

A+ Content

A+ Content API

Used to upload and manage Enhanced Brand Content for brand-registered clients, improving listing conversion rates.

Brand Management

Brand API

Used to monitor brand-registered listings, detect unauthorized third-party sellers, and report intellectual property violations.

4.3 Data Minimization

We request only the specific SP-API roles needed to deliver contracted services. Clients who only use our PPC management service, for example, only grant us Advertising API access — not inventory or order data. Each client’s API permission scope is explicitly defined in their Service Agreement and is limited to the minimum access required for the services engaged.

4.4 Data Retention & Deletion

SP-API data is retained only for the duration of the service contract plus 30 days for final reporting. Upon contract termination, all Selling Partner data is permanently deleted within 14 days. Clients may request early deletion of their data at any time by contacting us at hello@ecomstride.com. We will confirm deletion in writing within 5 business days of the request.

4.5 Security Standards

All SP-API data is stored with AES-256 encryption at rest and in transit. Access is limited to authorized EcomStride team members assigned to the specific client account. Role-based access controls ensure that team members can only access client data relevant to their assigned service responsibilities. We conduct quarterly security audits of all SP-API data access logs and immediately revoke access credentials upon staff departure or role change.

5. Data Sharing

We may share your information with:

  • Service providers: Third-party tools used to deliver our services (e.g., CRM software, email platforms, analytics tools), who are contractually bound to handle your data securely
  • Amazon: As required to operate your seller account and comply with Amazon’s policies
  • Legal authorities: Where required by law, court order, or regulatory request

6. Cookies

Our website uses cookies to improve your browsing experience. Cookies are small text files stored on your device. We use:

  • Essential cookies: Required for the website to function properly
  • Analytics cookies: Help us understand how visitors use our site (e.g., Google Analytics)

You can disable cookies through your browser settings. Disabling essential cookies may affect the functionality of our website.

7. Data Retention

We retain personal data for as long as necessary to provide our services and comply with legal obligations. Client business data is retained for a minimum of 7 years for accounting and legal purposes. Upon termination of a service contract, we will securely delete or anonymise any personal data that is no longer required within 90 days, unless legally required to retain it. For SP-API-specific retention, please refer to Section 4.4 above.

8. Your Rights

Depending on your location, you may have rights including:

  • The right to access personal data we hold about you
  • The right to correct inaccurate data
  • The right to request deletion of your data
  • The right to object to or restrict processing of your data
  • The right to data portability

To exercise any of these rights, contact us at hello@ecomstride.com.

9. Security

We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. This includes encrypted data storage, access controls, and regular security reviews. However, no internet transmission is completely secure and we cannot guarantee absolute security.

10. Third-Party Links

Our website may contain links to third-party websites including Amazon.com. We are not responsible for the privacy practices of external websites and encourage you to review their privacy policies before providing any personal information.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date at the top of this page will reflect any changes. Continued use of our website or services after changes are posted constitutes your acceptance of the updated policy.

12. Contact Us

For any questions, concerns, or requests relating to this Privacy Policy, contact us at:

EcomStride

hello@ecomstride.com