Privacy Policy

Effective: 8 April 2026

This Privacy Policy explains how Amazon SP API MCP ("the Service", "we", "us") collects, uses, and protects information when you use it to connect your Amazon Seller Central account to an AI assistant such as Claude. The Service is operated by Terra Natural ("Terra Natural"), a sole trader based in the United Kingdom.

1. Who we are

Data Controller: Terra Natural
Contact: sales@terranatural.co.uk
Data Protection Officer: Denis Pedras

2. What we collect and why

Data	Why	Stored at rest?
Email address	To identify your account and send subscription notifications	Yes (Neon control DB)
Encrypted Amazon refresh token (LWA)	To call the Amazon SP-API on your behalf	Yes, AES-256-GCM encrypted (per-seller Neon branch)
Stripe customer / subscription IDs	To manage your billing	Yes (Neon control DB)
Audit log (tool name, timestamp, success/failure)	For security review and Amazon compliance	Yes, 90-day rolling (per-seller Neon branch)
Amazon order data, inventory, pricing, financial events	To answer your questions in real time	No — never persisted
Buyer information from Amazon (names, addresses, contact)	Returned to you on request	No — never persisted

Your Amazon business data and any buyer Personally Identifiable Information (PII) flows through our server's memory during a single tool call (typically less than two seconds) and is returned directly to your authenticated AI client. It is never written to disk, to our database, to logs, or to any cache.

3. Lawful basis (UK GDPR)

• Contract: we need to process your account data and Amazon credentials to deliver the Service you signed up for.
• Legitimate interest: for fraud prevention, audit logging, and incident response.
• Consent: you explicitly authorise the Service to access your Amazon data via the Amazon Seller Central consent flow.

4. How we protect your data

• Encryption at rest: AES-256-GCM authenticated encryption for refresh tokens; the master key lives in the hosting platform's secret store and is never in source code or logs.
• Encryption in transit: HTTPS with TLS 1.2 or higher for every connection (browser, MCP client, Amazon SP-API, database).
• Per-seller isolation: each seller's data lives in a dedicated Neon database branch. Database queries cannot read data belonging to a different seller.
• Read-only: the Service cannot write to your Amazon Seller Central account in v1. It cannot change prices, modify listings, create shipments, or send messages.
• Two-factor authentication: all administrative accounts (hosting, database, billing) require two-factor authentication.

5. Who else processes your data (sub-processors)

Sub-processor	Purpose	Location
Fly.io	Application hosting	London, United Kingdom
Neon.tech	Database hosting	AWS eu-west-2 (London)
Stripe	Subscription billing	Ireland; some processing in the United States under the EU-US Data Privacy Framework
Anthropic (your choice of AI client)	Tool responses are transmitted to your chosen AI client (Claude Desktop or Claude.ai)	United States
Gmail (for verification emails)	Sending 6-digit login codes	Worldwide (Google infrastructure)

We share Amazon business data with no other third parties. The transmission to your chosen AI client happens because you asked your AI client to call our tools — it is part of the service you initiated.

6. How long we keep your data

• Active subscription: your account, encrypted refresh token, and audit log are retained as long as your subscription is active.
• After cancellation: retained for 90 days, then automatically deleted (Neon database branch destroyed; control records removed).
• On request: we will delete your data immediately on receipt of a deletion request to sales@terranatural.co.uk, in line with the UK GDPR right to erasure.

7. Your rights (UK GDPR / UK DPA 2018)

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data ("right to erasure")
• Object to processing or restrict processing
• Receive a copy of your data in a portable format
• Lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk

To exercise any of these rights, contact sales@terranatural.co.uk. We respond within 30 days.

8. International transfers

Your account data is stored in the United Kingdom (Fly.io London) and in the EU/UK region of AWS via Neon (eu-west-2, London). Subscription billing data is transferred to Stripe in Ireland and the United States under the EU-US Data Privacy Framework. AI tool responses are transmitted to your chosen AI client (e.g. Anthropic in the United States) at your request.

9. Security incidents

In the event of a personal data breach affecting you, we will notify you within 24 hours of confirmed detection, notify Amazon within 72 hours per the Amazon Data Protection Policy, and notify the UK Information Commissioner's Office within 72 hours where required by UK GDPR. See our Incident Response Plan for details.

10. Changes to this policy

We will update this policy as the Service evolves. Material changes will be communicated to active subscribers by email at least 14 days before they take effect.