Privacy Policy for Parallel

Last Updated: January 8, 2026

1. Introduction

Parallel ("we," "us," or "our") is committed to protecting the privacy and security of your personal information. As an e-commerce strategy agency working with Amazon and other platforms, we comply with Amazon's Data Protection Policies (DPP), GDPR, CCPA, and other applicable data protection regulations.

This Privacy Policy explains how we collect, use, store, protect, share, and delete your personal data when you engage with our services.

2. Information We Collect

2.1 Information You Provide Directly

  • Contact Information: Name, email address, phone number, company name, job title

  • Account Credentials: Usernames, passwords (encrypted), and authentication information

  • Business Information: Company details, tax identification numbers, payment information

  • Communication Data: Correspondence, support tickets, feedback, and consultation notes

  • Amazon Seller Account Data: When authorized, we access store performance metrics, product data, advertising data, and customer insights (in aggregate form only, without personally identifiable customer information)

2.2 Information Collected Automatically

  • Usage Data: IP addresses, browser type, device information, operating system

  • Analytics Data: Pages visited, time spent on our website, clickstream data, referral sources

  • Cookies and Tracking Technologies: Session cookies, persistent cookies, pixel tags (see Cookie Policy section)

2.3 Information from Third Parties

  • Amazon Seller Central/Advertising Console: Performance metrics, sales data, advertising analytics (accessed only with your explicit authorization)

  • Business Partners: CRM data, marketing platforms, analytics tools

  • Public Sources: Business registration information, publicly available company data

3. How We Use Your Information

We use collected data for the following purposes:

3.1 Service Delivery

  • Providing e-commerce strategy consulting and implementation services

  • Analyzing Amazon store performance and market trends

  • Developing marketing strategies and advertising campaigns

  • Optimizing product listings and catalog management

  • Managing client accounts and delivering reports

3.2 Business Operations

  • Processing payments and maintaining financial records

  • Communicating about our services, updates, and support

  • Improving our services through analysis and research

  • Complying with legal obligations and enforcing our agreements

3.3 Marketing (with your consent)

  • Sending newsletters, case studies, and educational content

  • Sharing industry insights and best practices

  • Promoting our services and special offers

You may opt out of marketing communications at any time.

4. Legal Basis for Processing (GDPR Compliance)

We process personal data under the following legal bases:

  • Contractual Necessity: To fulfill our service agreements with you

  • Legitimate Interest: To operate our business, improve services, and ensure security

  • Consent: For marketing communications and non-essential cookies

  • Legal Obligation: To comply with applicable laws and regulations

5. Data Storage and Retention

5.1 Storage Location

  • Data is stored on secure cloud servers

  • We use industry-standard service providers

  • Amazon Seller data accessed through APIs is not permanently stored beyond operational necessity

5.2 Retention Periods

  • Active Client Data: Retained for the duration of our engagement plus 12 months

  • Financial Records: Retained for 7 years in compliance with tax regulations

  • Marketing Data: Retained until you withdraw consent or we no longer have legitimate interest

  • Support Communications: Retained for 3 years for quality assurance and dispute resolution

5.3 Amazon DPP Compliance

In accordance with Amazon's Data Protection Policies:

  • We access Amazon customer data only when explicitly authorized and necessary

  • Customer personal information is never extracted or stored outside Amazon's systems

  • We handle aggregate and anonymized data only

  • All Amazon API access follows the principle of least privilege

6. Data Security Measures

We implement comprehensive security measures including:

6.1 Technical Safeguards

  • Encryption: TLS/SSL encryption for data in transit; AES-256 encryption for data at rest

  • Access Controls: Multi-factor authentication, role-based access, principle of least privilege

  • Network Security: Firewalls, intrusion detection systems, regular security audits

  • Secure Development: Code reviews, vulnerability testing, secure coding practices

6.2 Organizational Safeguards

  • Employee Training: Regular data protection and security awareness training

  • Background Checks: Screening of personnel with data access

  • Confidentiality Agreements: All employees and contractors sign NDAs

  • Incident Response Plan: Documented procedures for data breach response

6.3 Amazon-Specific Security

  • API credentials are encrypted and stored in secure vaults

  • Access to Amazon Seller accounts is logged and monitored

  • We immediately revoke access when engagements end

  • Regular audits of Amazon API usage and permissions

7. Data Sharing and Disclosure

7.1 We May Share Data With:

Service Providers: Third-party vendors who assist with:

  • Cloud hosting and data storage

  • Payment processing

  • Analytics and marketing tools

  • CRM and project management systems

Business Partners: When collaborating on client projects (with your consent)

Legal Requirements: When required by law, court order, or government request

Business Transfers: In connection with mergers, acquisitions, or sale of assets (with notice to affected parties)

7.2 We Do NOT:

  • Sell your personal data to third parties

  • Share your data with competitors

  • Use Amazon customer data for any purpose other than authorized services

  • Transfer data to countries without adequate protection (or use appropriate safeguards when required)

7.3 Amazon Data Restrictions

Per Amazon DPP:

  • Amazon customer personal data is never shared with any party

  • Aggregate Amazon store data is shared only as permitted by our agreements

  • All third-party integrations are vetted for compliance

8. Your Rights and Choices

Depending on your location, you have the following rights:

8.1 Access and Portability

  • Request a copy of your personal data

  • Receive your data in a structured, machine-readable format

8.2 Correction and Updating

  • Correct inaccurate or incomplete personal information

  • Update your contact preferences

8.3 Deletion and Erasure ("Right to be Forgotten")

  • Request deletion of your personal data (subject to legal retention requirements)

  • We will respond to deletion requests within 30 days

8.4 Restriction and Objection

  • Restrict processing of your data in certain circumstances

  • Object to processing based on legitimate interests

  • Opt out of marketing communications

8.5 Withdraw Consent

  • Withdraw consent for data processing at any time (where consent is the legal basis)

8.6 Lodge a Complaint

  • File a complaint with your local data protection authority

To exercise these rights, contact us at justin@parallel.group

9. Regional Compliance

9.1 GDPR (European Union/EEA)

  • We comply with all GDPR requirements for EU residents

  • Data transfers outside the EU use Standard Contractual Clauses or adequacy decisions

9.2 CCPA/CPRA (California)

California residents have additional rights:

  • Know what personal information is collected and how it's used

  • Request deletion of personal information

  • Opt out of the "sale" of personal information (we don't sell data)

  • Non-discrimination for exercising privacy rights

9.3 Other Jurisdictions

We comply with applicable regulations in:

  • Canada (PIPEDA)

  • United Kingdom (UK GDPR)

  • Brazil (LGPD)

  • Australia (Privacy Act)

10. Cookies and Tracking Technologies

We use cookies and similar technologies for:

  • Essential Cookies: Required for website functionality

  • Analytics Cookies: Understanding how visitors use our site

  • Marketing Cookies: Delivering relevant advertisements

You can control cookies through your browser settings.

11. Data Breach Notification

In the event of a data breach that poses risk to your rights and freedoms:

  • We will notify affected individuals within 72 hours of discovery

  • We will report to relevant data protection authorities as required

  • We will provide information about the breach and remedial actions

12. Children's Privacy

Our services are not directed to individuals under 16 (or the applicable age of consent in your jurisdiction). We do not knowingly collect data from children.

13. International Data Transfers

When transferring data internationally, we ensure adequate protection through:

  • Standard Contractual Clauses (SCCs)

  • Adequacy decisions by the European Commission

  • Your explicit consent where required

14. Updates to This Policy

We may update this Privacy Policy periodically. We will:

  • Notify you of material changes via email or website notice

  • Update the "Last Updated" date

  • Obtain consent for changes requiring it under applicable law

15. Amazon Seller Data Specific Terms

15.1 Scope of Access

We access only the data necessary to provide agreed services, including:

  • Sales and traffic reports (aggregate data)

  • Advertising campaign performance

  • Product catalog information

  • Inventory and fulfillment metrics

15.2 Prohibited Uses

We will NOT:

  • Access or use Amazon buyer personal information

  • Share your Amazon data with unauthorized parties

  • Use your data to compete with you or benefit your competitors

  • Retain Amazon API data beyond operational necessity

15.3 Your Control

  • You maintain ownership of all your Amazon business data

  • You can revoke our access at any time through Amazon Seller Central

  • Upon termination, we delete or return all your data as requested

16. Contact Information

For privacy-related questions, requests, or concerns:

Email: justin@parallel.group

Response Time: We will respond to all requests within 30 days

17. Consent and Acknowledgment

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your information as described herein.

For services requiring explicit consent, we will obtain your affirmative agreement before processing your data.

This privacy policy is designed to be comprehensive and compliant with major data protection regulations. You should review it with a legal professional familiar with your jurisdictions and update it regularly as regulations and your practices evolve.