Privacy Policy
Last updated: April 1, 2026
What SellerBeam is
SellerBeam is a browser extension that connects to your Amazon Seller Central account via the Amazon Selling Partner API (SP-API). It pulls product data — like pricing, fees, sales rank, and listing eligibility — and displays it in your browser while you shop on Amazon.
SellerBeam does not access orders, customer names, addresses, or any personally identifiable information (PII). Everything we access is product and market data only.
What data we access
When you use SellerBeam, we access the following through Amazon's SP-API:
- Product details (title, category, dimensions, weight)
- Best Sellers Rank (BSR)
- FBA fee estimates
- Listing eligibility for your seller account
- Offers and seller count on a listing
We do not access, store, or process any customer PII such as names, addresses, email addresses, or payment information.
Browser permissions & data sent
The extension requests the following browser permissions:
- activeTab — to read product information from the Amazon page you are currently viewing
- storage — to store your authentication token locally so you stay logged in between sessions
- scripting — to inject the SellerBeam sidebar into Amazon product pages
We do not collect your browsing history or any Amazon pages other than product pages where you actively use the extension.
Data sent to our backend to calculate results:
- The product ASIN
- Prices you enter manually (cost price, sale price)
- Storage duration you enter
- Your authentication token (to verify your account)
This data is used solely to calculate FBA fees, profit margins, BSR, and eligibility. It is not retained after the response is returned to your browser.
How your Amazon credentials are stored
Your SP-API credentials (Client ID, Client Secret, and Refresh Token) are encrypted at rest using AES-256 and never exposed in plain text or shared with third parties.
All communication between SellerBeam and Amazon's servers uses HTTPS/TLS 1.2 or higher.
Data retention
| Data type | Retention |
|---|---|
| SP-API product data | Not stored — fetched live and displayed only |
| API credentials | Retained until account deletion |
| Browser auth token (Supabase JWT) | Stored locally until logout |
| Security logs | 12 months minimum |
Amazon API data is not cached or permanently stored beyond display needs.
Third-party services
Vercel hosts the backend API; Supabase provides authentication. Both are bound by data processing agreements. No data is sold or shared with any other third parties.
Security
SellerBeam implements controls aligned with Amazon's Data Protection Policy:
- AES-256 encryption at rest for credentials
- TLS 1.2+ for data in transit
- Access controls using least-privilege principles
- Regular vulnerability scanning and patching
- Incident response with Amazon notification within 24 hours
Your rights
Account deletion and associated data removal may be requested at privacy@sellerbeam.com, processed within 30 days.
Contact
- Privacy questions: privacy@sellerbeam.com
- Security incidents: security@sellerbeam.com