Privacy Policy

1. Introduction

Omri Zalcman LTD ("we," "our," or "us") is committed to protecting the privacy and security of the information we handle. This Privacy Policy describes how we collect, use, store, protect, share, and delete data when providing Amazon seller consulting and strategic advisory services.

This policy applies to all clients who use our services and covers our handling of Amazon Information as defined in Amazon's policies and agreements.

2. Information We Collect

2.1 Amazon Information

When you authorize us to access your Amazon seller account for consulting purposes, we access and collect the following types of information through Amazon Seller Central and Amazon Advertising Console:

• Product Information: Product listings, titles, descriptions, images, pricing, inventory levels, and SKU data
• Sales Data: Order information, sales performance metrics, revenue data, and transaction details (excluding customer personally identifiable information)
• Advertising Data: Campaign performance metrics, advertising spend, keyword data, ACOS, impressions, clicks, and conversions
• Account Performance Data: Account health metrics, performance indicators, feedback ratings, and compliance status
• Inventory Data: Stock levels, FBA inventory, IPI scores, storage fees, and inventory movement
• Financial Data: Settlement reports, fee information, refund data, and payment processing information

2.2 Client-Provided Information

We may also collect information that you directly provide to us, including:

• Company name and contact information
• Business goals and objectives
• Product cost information (COGS) for profitability analysis
• Communications with us via email, phone, or contact forms

2.3 Website Information

When you visit our website, we may collect:

• Browser type and version
• Pages visited and time spent on our website
• IP address and geographic location (general, not precise)
• Referral source

3. How We Use Information

We use the collected information solely for the purpose of providing our consulting and strategic advisory services:

3.1 Service Delivery

• Analyze account performance and identify optimization opportunities
• Optimize product listings for improved visibility and conversion
• Manage and optimize advertising campaigns
• Monitor inventory levels and provide reorder recommendations
• Track account health and compliance metrics
• Develop pricing and promotional strategies
• Generate reports and analytics
• Provide strategic recommendations and consulting

3.2 Communication

• Respond to your inquiries and requests
• Provide service updates and reports
• Notify you of important account issues or opportunities
• Send service-related announcements when necessary

3.3 Service Improvement

• Improve our service offerings and methodologies
• Develop better analysis tools and reporting capabilities
• Enhance our understanding of e-commerce best practices

4. Data Storage and Security

4.1 Storage Practices

We implement appropriate technical and organizational measures to protect the information we handle:

• Access Controls: Access to Amazon Information is strictly limited to authorized personnel on a need-to-know basis
• Encryption: Data transmission is secured using industry-standard encryption protocols (HTTPS/TLS)
• Secure Systems: We use secure, password-protected systems for storing and processing data
• Regular Updates: We maintain up-to-date security software and apply security patches promptly
• Data Minimization: We only retain data necessary for service delivery and as required by applicable regulations

4.2 Data Location

Amazon Information is primarily accessed through Amazon's systems and interfaces. When data is exported for analysis or reporting purposes, it is stored on secure, password-protected systems maintained by authorized personnel.

4.3 Retention Period

We retain Amazon Information only for as long as necessary to provide our services and fulfill the purposes described in this policy, or as required by applicable laws and regulations. Upon termination of our services:

• Working files and exported data are securely deleted
• Access to your Amazon Seller Central account is revoked
• Final reports may be retained as necessary for legal or business purposes

5. Information Sharing and Disclosure

5.1 No External Sharing

We do not share Amazon Information with outside parties. Access to your data is strictly limited to:

• Internal staff members who require access to perform their duties
• Authorized contractors working under Non-Disclosure Agreements (NDAs)
• Personnel who have been granted access on a need-to-know basis only

5.2 Reports to Clients

Reports and analyses provided to you (the client) contain only:

• Aggregated data and performance metrics
• Operational insights and recommendations
• Summary information relevant to business decisions

These reports do not contain customer personally identifiable information (PII).

5.3 Legal Requirements

We may disclose information if required to do so by law or in response to valid requests by public authorities (e.g., court orders or government agencies), but only to the extent necessary and in compliance with applicable data protection laws.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, client data may be transferred to the acquiring entity, subject to the same privacy protections outlined in this policy and in compliance with Amazon's policies.

6. Data Sources

We receive Amazon and Amazon customer data exclusively through the following authorized sources:

6.1 Primary Sources

• Amazon Seller Central: Accessed with your authorization through the Amazon Solution Provider Portal
• Amazon Advertising Console: Accessed when enabled and authorized by you for advertising management services

6.2 Secondary Sources (With Client Approval)

• Client-Provided Spreadsheets: Product cost data, business goals, or other operational information you choose to share
• Business Intelligence Tools: We may use approved analytics and reporting tools to process data with your explicit consent

6.3 Customer PII Protection

No customer personally identifiable information (PII) is imported into external tools or systems. We handle all customer data in accordance with Amazon's Data Protection Policy and applicable privacy regulations.

7. Compliance with Amazon Policies

We are committed to full compliance with Amazon's policies and requirements:

• Data Protection Policy (DPP): All handling of Amazon Information complies with Amazon's Data Protection Policy
• Acceptable Use Policy: Our use of Amazon's services and information adheres to Amazon's Acceptable Use Policy
• Solution Provider Agreement: We operate in accordance with the Amazon Solution Provider Agreement
• Selling Partner API Guidelines: When using API access, we follow all SP-API terms and conditions

8. Compliance with Regional Regulations

We comply with applicable data protection regulations in the regions where we operate and where our clients are located, including but not limited to:

8.1 GDPR (European Union)

For clients in the European Union, we comply with the General Data Protection Regulation (GDPR), including:

• Lawful basis for processing (contract performance and legitimate interests)
• Data subject rights (access, rectification, erasure, portability, objection)
• Data breach notification procedures
• Privacy by design and default principles

8.2 CCPA (California)

For clients in California, we comply with the California Consumer Privacy Act (CCPA), including rights to:

• Know what personal information is collected
• Access personal information
• Request deletion of personal information
• Opt-out of sale of personal information (note: we do not sell personal information)

8.3 Other Jurisdictions

We comply with data protection laws applicable in other regions where we serve clients, including Israel and other international markets.

9. Your Rights

Depending on your location and applicable laws, you may have the following rights regarding your information:

• Access: Request access to the information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your information (subject to legal retention requirements)
• Portability: Request a copy of your information in a structured, machine-readable format
• Objection: Object to our processing of your information for certain purposes
• Restriction: Request restriction of processing in certain circumstances
• Withdrawal of Consent: Withdraw consent for processing based on consent (without affecting prior processing)

To exercise any of these rights, please contact us using the contact information provided below.

10. Third-Party Services and Links

Our website may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

When we use third-party tools for analytics or reporting purposes (with your approval), we ensure these providers have appropriate data protection measures in place and comply with applicable regulations.

11. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete such information promptly.

12. International Data Transfers

If we transfer data internationally (for example, if you are based in one country and we operate from another), we ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws. This may include:

• Standard contractual clauses approved by relevant authorities
• Ensuring the receiving country has adequate data protection laws
• Other legally recognized transfer mechanisms

13. Confidentiality Agreements

All personnel who have access to Amazon Information are required to:

• Sign comprehensive Non-Disclosure Agreements (NDAs)
• Receive training on data protection and privacy best practices
• Understand and comply with Amazon's policies and this Privacy Policy
• Access information only on a need-to-know basis for their specific role

14. Data Breach Procedures

In the unlikely event of a data breach involving Amazon Information or client data:

• We will investigate the incident promptly and thoroughly
• We will notify affected clients without undue delay
• We will notify Amazon in accordance with their requirements
• We will comply with applicable data breach notification laws
• We will take immediate steps to mitigate the breach and prevent future incidents
• We will provide updates on our investigation and remediation efforts

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. We will notify you of any material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending an email notification to clients for significant changes
• Providing notice through our service communications

Your continued use of our services after changes to this Privacy Policy constitutes acceptance of the updated policy.

16. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We will respond to all requests and inquiries in a timely manner, typically within 30 days of receipt.

17. Supervisory Authority

If you are located in the European Union or European Economic Area, you have the right to lodge a complaint with your local data protection supervisory authority if you believe our processing of your personal information violates applicable data protection law.