Last updated: June 30, 2025
This Privacy Policy describes how Xiamen Yunzhongcheng Technology Co., Ltd. ("we", "us", or "our") collects, uses, stores, and protects data when you use Notice123 (the "Service"). The Service is a SaaS application that helps Amazon sellers manage inventory and track order events through the Amazon Selling Partner API (SP-API).
By using the Service, you agree to the practices described in this Privacy Policy. This policy is designed to comply with the Amazon Acceptable Use Policy (AUP) and Data Protection Policy (DPP).
Summary: We only access data from your authorized Amazon seller account through the SP-API. We do not access buyer PII, do not aggregate data across sellers, and do not sell or share your Amazon data with any third party.
We access data from your Amazon seller account exclusively through the Amazon Selling Partner API, and only after you have explicitly authorized our application via Amazon's OAuth workflow. The data we access includes:
We explicitly do not access or process:
When you create a Notice123 account, we collect your email address, name, and company information. This is used for account management and communication purposes only.
We use the data accessed through the SP-API solely for the following purposes:
We do NOT use Amazon data for: marketing, advertising, buyer targeting, review fabrication, cross-seller aggregation, insights about Amazon's business, or any purpose other than providing the inventory and order management features described above.
All Amazon Information is retrieved exclusively through the Amazon Selling Partner API. We do not retrieve Amazon Information from any external or non-Amazon sources.
We do not share, sell, rent, lease, or otherwise distribute Amazon Information to any third party. Amazon Information accessed through the SP-API is processed solely within our application infrastructure to provide the Service to the authorized seller.
We do not aggregate data across different sellers' businesses or Amazon customers. Each seller's data is processed independently within a multi-tenant isolated architecture.
All data is encrypted in transit using TLS 1.2 or higher. Credentials (passwords, encryption keys, secret access keys) are stored securely and are never kept in public repositories, shared, or hard-coded into applications.
Access to Amazon Information is restricted based on job duties and business functions. We enforce role-based access control with the principle of least privilege. Multi-Factor Authentication (MFA) is enforced for all internal systems. Password requirements include a 12-character minimum with special characters, 365-day expiration, and annual rotation.
We implement firewalls, intrusion detection/prevention systems (IDS/IPS), anti-virus/anti-malware protection, and network segmentation to safeguard data.
We maintain an incident response plan with defined roles, 6-month reviews, and 24-hour incident notification procedures. Any security incident involving Amazon Information will be reported to security@amazon.com within 24 hours of detection.
Amazon Information is retained only for as long as necessary to provide the Service to the authorized seller. When a seller revokes authorization or terminates their account, we delete all associated Amazon data within 30 days, except where retention is required by applicable law.
As an authorized seller, you have the right to:
To exercise any of these rights, contact us at contact@yzccn.com.
Our application complies with the following Amazon policies:
We use cloud infrastructure providers to host and run the Service. These providers act as data processors and are bound by confidentiality agreements. They do not have access to Amazon Information beyond what is necessary for infrastructure maintenance.
We do not use any external (non-Amazon) data services that vend Amazon Information.
We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through the Service. The updated policy will be effective immediately upon posting.
If you have any questions about this Privacy Policy or our data practices, please contact us: