Privacy Policy
This policy explains what data Sellerio accesses through the Amazon Selling Partner API (SP-API), the Amazon Advertising API, and connected Flipkart/Meesho sources; how that data is used, protected, and retained; and the rights you have over it. Sellerio is a multi-tenant software platform — each customer connects their own accounts into their own isolated organization workspace. We do not use any customer's seller data for any purpose beyond that customer's own business operations, and one organization's data is never visible to another.
- What data we access
- What happens when you connect Amazon
- Organization isolation
- Encryption & security
- Data retention & deletion
- Your rights
- Revoking access
- Cookies on this website
- Third parties & subprocessors
- Where data is hosted
- Children's privacy
- Security incident notification
- Grievance officer
- Changes to this policy
- Contact
What data we access
| Source | Data | Purpose |
|---|---|---|
| Amazon SP-API | Orders, order line items, shipping status, ASIN/SKU catalog data, returns | Order tracking, inventory deduction, revenue reporting, returns reconciliation |
| Amazon Advertising API | Campaign, ad group, keyword, and search-term performance (spend, clicks, sales) | Bid optimization, negative-keyword management, ad profit & loss reporting |
| Flipkart / Meesho | Order and listing data via CSV import (live API sync planned — see Roadmap) | Unified orders view, inventory deduction across marketplaces |
Sellerio does not request access to Amazon buyer personal information beyond what's required to fulfill and report on orders (e.g. shipping status, city/state for logistics), and does not use SP-API or Advertising API data for advertising, marketing, or any purpose outside the account holder's own operations. We do not sell data to data brokers, and we do not use your seller data to train any third-party or general-purpose AI model.
What happens when you connect your Amazon account
The moment you authorize Sellerio, here's exactly what happens — so there's no black box between clicking "Connect" and your dashboard filling in:
- You're redirected to Amazon. Sellerio sends you to Amazon's own Login with Amazon (LWA) consent screen. You log in with your Seller Central credentials directly on Amazon's site — Sellerio never sees your Amazon password.
- You approve a defined scope. Amazon shows you exactly what Sellerio is requesting access to (orders, catalog, advertising, etc.) before you approve.
- Amazon returns a refresh token. This token, not your password, is what lets Sellerio call the SP-API and Advertising API on your behalf going forward. It's encrypted immediately using your organization's own key — see Encryption & security below.
- Initial sync begins. Sellerio pulls recent order history, active listings, and (if authorized) advertising campaigns to populate your dashboard. This typically completes within minutes for a standard-size catalog.
- Ongoing sync runs on a schedule. After the initial sync, orders and ads data refresh automatically (see the sync cadence shown in your dashboard) — you don't need to manually re-import anything.
- You stay in control. At any point after connecting, you can disconnect from within Sellerio or directly from Amazon's own app management screens — see Revoking access.
Organization isolation
- Every connected account, credential, order, listing, and report is scoped to the organization workspace that connected it. There is no view, report, or admin screen in Sellerio that spans across organizations.
- Every database query is scoped by organization at the application layer, so one customer's data can never be returned in another customer's session, even by mistake.
- Within an organization, the account holder controls which of their own team members can see which connected brand — team access does not cross organization boundaries.
Encryption & security — even we can't read your tokens
Sellerio uses client-side, per-organization encryption for sensitive account data — SP-API and Advertising API refresh tokens, and other credential material. Each organization's encryption key is derived from that organization's own credentials at the point of use and is never stored in plaintext on our servers.
- Refresh tokens and API credentials are encrypted before they touch our database, using keys tied to your organization — not a single master key shared across all customers.
- Sellerio staff, including administrators with full platform access, cannot decrypt or read raw stored credentials or export them in usable form. Support access to a workspace is limited to what the interface itself shows, with your explicit permission.
- Refresh tokens and API credentials are never exposed to the browser or included in any client-side response — only masked placeholders are ever returned to the interface once a credential is saved.
- All traffic between Sellerio and Amazon's APIs, and between a user's browser and Sellerio, is encrypted in transit (TLS 1.2+).
- Passwords for Sellerio logins are hashed (never stored in plaintext) and are never visible to our own team.
- Staff accounts with production access are individually logged and access is reviewed periodically; terminated staff have access revoked within 24 hours.
- This protects against both external breaches and internal misuse — a compromised database or a rogue insider cannot recover a working Amazon credential without the organization's own key material.
Operational data you actively use in dashboards — order counts, revenue, ad spend — is stored so the product can display and chart it for you. What's protected under zero-knowledge encryption specifically is the credential layer: the tokens that grant access to your Amazon accounts.
Data retention & deletion
- Order, inventory, and advertising data is retained for as long as the account remains active, to support historical reporting (e.g. year-over-year comparisons).
- If a subscription lapses due to non-payment, your data is retained in a read-only state for 30 days to give you a chance to resolve billing before anything is removed — see the Terms & Conditions for the full suspension timeline.
- Data for a disconnected brand, or a closed organization, is deleted within 90 days of your request, except where we're required to retain billing/invoice records for tax or accounting law (typically 7–8 years under Indian tax law, limited to invoice and payment records only).
- Backups that include deleted data are purged on our standard backup rotation, typically within 30 days of the live deletion.
Your rights over your data
As the account holder, you can exercise the following at any time by emailing contact@mysellerio.com:
- Access — request a copy of the data Sellerio holds for your organization.
- Correction — most operational data (COGS, SKU mappings, team members) is editable directly in the product; anything that isn't, we'll correct on request.
- Deletion — request deletion of your organization's data, subject to the billing-record exception under Data retention above.
- Portability — request an export of your orders, inventory, and P&L data in CSV format.
- Objection — object to a specific use of your data; we'll respond with either a change or an explanation of why it's required to operate the service.
We aim to acknowledge any of the above within 3 business days and resolve within 15 days, consistent with the timelines in India's IT Rules, 2021.
Revoking access
An account holder can revoke Sellerio's access to their Amazon account at any time, either from within Sellerio (Remove/Disconnect on the relevant connection) or directly through Amazon — via Seller Central's Manage Apps & Services page, or the Solution Provider Portal's Manage Authorizations page. Revoking access stops all further API calls immediately; previously synced data already stored in Sellerio is not automatically deleted and can be removed on request per the retention terms above.
Cookies on this website
The sellerio.in marketing site uses only strictly necessary cookies — for example, to remember that you've closed a banner, or to keep you signed in to the application. We do not use third-party advertising or cross-site tracking cookies on sellerio.in. If this changes (for example, to add analytics), this section will be updated first and a cookie banner will be added where required by law.
Third parties & subprocessors
Seller data accessed through Amazon's APIs is not sold, rented, or shared with any third party for their own purposes. Sellerio uses the following subprocessors to operate the service:
| Subprocessor | Purpose | Data involved |
|---|---|---|
| Hostinger Business Web Hosting | Application & database hosting | Encrypted credentials, operational/order data |
| Razorpay | Subscription billing, auto-renewal, invoicing | Payment instrument data (handled entirely by Razorpay, not stored by Sellerio), billing contact details |
| Anthropic (Claude API) | Optional AI listing/SKU analysis | Product title, images, and listing content you choose to analyze — never credentials or buyer PII |
We review subprocessors periodically and will update this table if that list changes materially.
Where data is hosted
Sellerio's application and database run on Hostinger's infrastructure. If you need details on the specific data center region for your own compliance or vendor-risk review, contact contact@mysellerio.com and we'll confirm current hosting location in writing.
Children's privacy
Sellerio is a business tool for registered sellers and is not directed at, or knowingly used to collect data from, anyone under 18. If we become aware that a minor has provided us data in violation of this policy, we'll delete it.
Security incident notification
If a security incident affects your organization's data, we will notify the account holder without undue delay, and in any case within the timelines required by applicable law and by Amazon's Data Protection Policy (which requires solution providers to notify Amazon within 24 hours of a confirmed incident). The notification will describe what happened, what data was involved, and what we're doing about it.
Grievance officer
Viral Sutariya — Grievance Officer, Sellerio
Email: contact@mysellerio.com
We acknowledge grievances within 24 hours and aim to resolve them within 15 days, in line with India's IT (Intermediary Guidelines) Rules, 2021.
Changes to this policy
If this policy changes in a way that affects how your data is handled, the "Last updated" date above will be revised and account holders will be notified by email at least 7 days before a material change takes effect.
Contact
Sellerio
For privacy questions or data requests: contact@mysellerio.com
See also: Terms & Conditions and Refund & Cancellation Policy