Privacy Statement

Introduction

At ChannelDock, we respect your need for online privacy and protect any Personal Information that you may share with us in an appropriate manner. Our practice with respect to the use of your Personal Information is explained in this Privacy Policy. This Privacy Policy is in compliance with the EU General Data Protection Regulation (GDPR), as transposed into domestic legislation of each EU Member State and the Amazon Selling Partner API Data Protection Policy (DPP). This website and online application (hereafter referred to as the 'Service' or 'Services') are owned and operated by ChannelDock B.V., a Dutch registered company at the Dutch Chamber of Commerce with number 83335218 located at Johan Huizingalaan 763A, 1066VH, the Netherlands (hereafter referred to as 'ChannelDock', 'we' or 'us'), in accordance with this Privacy Policy. These Privacy Policies govern your use of the Service. By accessing or using the Service, you accept these Privacy Policy in full and without reservation. We recommend that you read this Privacy Policy, furthermore, ChannelDock may change this Privacy Policy at any time. If the Privacy Policy is updated, we will send a notification and ask you to accept them the first time you use the Service. You agree that this Privacy Policy and possible changes are legally bounding. IF YOU DO NOT AGREE TO THE TERMS OF USE AND/OR THE PRIVACY POLICY OR OTHER POLICIES, GUIDELINES OR INSTRUCTIONS POSTED ON THE SERVICE, DO NOT USE THE SERVICE.


Privacy settings

1. This document informs you of our policies regarding the collection, use and disclosure of Personal Information when using the Service. We will not share your information with anyone except as described in this Privacy Policy.
2. We use your Personal Information for providing and improving the Service. Unless otherwise defined in this Privacy Policy, terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, accessible at the Service.
This Privacy Policy explains in detail how Personal Information is collected, used, stored, shared, and deleted in connection with our Services, including information received through Amazon SP-API.
Information collection
3. While using our Service, we may gather or ask you to provide us with certain personally identifiable information that can be used to contact, identify and invoice you. Personally identifiable information may include, but is not limited to, your email address, name, phone number, postal address, bank account number, and other information ("Personal Information").
4. We may also collect information that your browser sends whenever you visit our Service ("Log Data"). This Log Data may include information such as your computer's IP address, browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages and other statistics.
5. In addition, we may use third party services such as Google Analytics that collect, monitor and analyze this type of information in order to increase our Service's functionality. These third-party service providers have their own privacy policies addressing how they use such information.
6. Finally, we collect Personal Information where we act as a data processor. We process Personal Information on behalf of our customers in the context of supporting the Service. Where a customer subscribes to our Service for their online store, system or platform, they are able to retrieve Personal Information from consumers and/or businesses from their account(s) at online Marketplaces or Platforms as, but not limited to, Amazon and eBay. When an order has been placed at such a Marketplace or Platform, we collect and store the order data (including Personal Information) to collectively send it to the system or platform of our customers.
This may include Amazon SP-API data such as order IDs, SKUs, product details, buyer name, shipping address, phone number, email, and gift messages. We only use this information to provide the Services and never for unrelated purposes.

Information use

7. The personal information we collect from you may be used in one of the following ways:

Additionally, where Amazon SP-API data is processed, we comply with Amazon’s Data Protection Policy and Acceptable Use Policy. This means we only use such information to provide the agreed Services, never for advertising, resale, or profiling, and we delete it within the timeframes required by Amazon.

Security measures and protection

11. The security of your Personal Information is important to us. No method of transmission over the Internet, or method of electronic storage is 100% secure. However, ChannelDock in its sole discretion undertakes certain security measures aimed at protecting against unauthorized access, alteration, disclosure or destruction of Personal Information. It is your responsibility to saveguard your password and login details. If you know or suspect that your password is known to others, please contact us so we can take immediate measures. While we strive to use commercially acceptable means to protect your Personal Information, we cannot guarantee its absolute security.
12. We implement a variety of security measures to maintain the safety of your personal information when you enter, submit or access your Personal Information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology. For more information about the measures taken, please review our Security policy.
For Amazon SP-API data we also apply: encryption in transit (TLS 1.2+) and at rest (AES-256 or equivalent), access restrictions based on least privilege, mandatory multi-factor authentication for all accounts with access, regular vulnerability scanning, and intrusion detection. All employees accessing Amazon Information use unique credentials and undergo security training. No shared accounts are allowed.

Data retention

16. We may retain your personal information as long as you continue to use the Services, have an account with us, or for as long as is necessary to fulfil the purposes outlined in the policy. You can ask to close your account by contacting us at the details above, and we will delete your personal information on request. Backups of the data will be destroyed after 30 days. We may, however, retain personal information for an additional period as is permitted or required under applicable laws, for legal, tax, or regulatory reasons, or for legitimate and lawful business purposes.
For Amazon SP-API data specifically: we retain order-related data no longer than 30 days after order fulfillment unless legally required otherwise. Upon Amazon’s request, we delete or anonymize such data within 30 days (and within 90 days for backups).

Changes

17. We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy in the Service. You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
18. This Privacy Policy and any renewal and/or modification thereof shall be governed by and construed in accordance with the laws of the Netherlands. Any dispute or difference arising out of or in connection with this Privacy Policy shall be the exclusive jurisdiction of the Dutch courts.
19. Incident Response: In case of a security incident involving Amazon Information, we will notify Amazon at [email protected] within 24 hours of detection, investigate, mitigate, and document the event.
20. Audit and Compliance: We maintain detailed records of how Amazon Information is collected, used, stored, shared, and deleted. We will cooperate with Amazon during audits, inspections, or assessments and provide necessary documentation or logs to demonstrate compliance.