Data Security & Access

At The Free Bird Agency, protecting your Amazon data and account access is a core part of how I work. This page explains how I secure access, manage risk, and comply with Amazon’s data protection requirements.

How I Access Your Amazon Account

  • I only access Seller Central using secure devices that I control, protected by up‑to‑date operating systems and security software.​

  • I always use multi‑factor authentication (MFA) where available and strong, unique passwords stored in a reputable password manager.​

  • I never share client logins or credentials with any third party and I do not reuse passwords across clients.​

  • I request and use the minimum permissions necessary to perform the services we’ve agreed on.​

Data Handling, Retention, and Deletion

  • I only collect and use Amazon‑related information that is necessary to provide the services outlined in our agreement (for example, sales reports, catalog data, and advertising performance).​

  • I store working files (such as reports and catalog spreadsheets) in secure, access‑controlled cloud storage.​

  • When our engagement ends, I will:

    • Ask you to remove my access to your Seller Central account, and

    • Retain only the minimum information required for legal, tax, or contractual reasons, deleting or anonymizing other working files in a reasonable timeframe.​

Risk Assessment and Incident Response

  • I periodically review how I access Seller Central and related tools (devices, accounts, permissions, and storage locations) to identify and reduce security risks.

  • If I detect or suspect a security incident that could affect your Amazon account or data (for example, a lost device, suspicious login, or unexpected account change), I will:

    • Immediately secure access by changing passwords, revoking sessions, and verifying MFA settings.​

    • Investigate the issue to understand what happened and which data or accounts may be impacted.​

    • Notify affected clients and, where appropriate, Amazon so we can coordinate any additional remediation that is needed.

    • Update my processes and controls to reduce the risk of similar incidents in the future.​

Access Changes and End of Engagement

  • Your permissions are reviewed as part of onboarding and offboarding for each engagement, to ensure I have only the access I need and that it is removed promptly when no longer required.​

  • When we complete our work together or you decide to change providers, you remain in full control of your Seller Central account and can remove my access at any time.​

Notifying Amazon of Organizational Changes

  • The Free Bird Agency is committed to notifying Amazon within 30 days of any material organizational changes that affect my need for or use of Amazon data or access.​

  • These changes may include, for example:

    • A change in business ownership or legal entity.

    • Adding or removing team members who would have access to Seller Central or Amazon data.

    • Significant changes to the tools, systems, or locations used to process Amazon‑related data.

If you have questions about how your data is handled or need additional details for your internal security review, please contact me directly at the email listed on this site.