Privacy Policy

Last updated: January 14, 2025

This Privacy Policy describes how SupplierSignal ("we," "us," or "our"), a Wyoming company, collects, uses, and shares information when you use our website and services at suppliersignal.com (the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

Information You Provide

  • Account Information: Email address and password when you create an account
  • Search Queries: Amazon ASINs, product URLs, and keywords you enter to initiate product sourcing
  • Support Communications: Messages and information you provide when contacting our support team
  • Payment Information: When you subscribe, payment details are collected and processed by our payment processor (not stored by us)

Information Collected Automatically

  • Usage Data: Pages visited, features used, and actions taken within the Service
  • Device Information: Browser type, operating system, and device identifiers
  • Log Data: IP address, access times, and referring URLs

Product Research Data

When you use our sourcing features, we collect and process publicly available data from Amazon and Alibaba on your behalf. This product data (prices, supplier information, product details) is not your personal information but is generated through our automated research process based on your search queries.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Process your product sourcing requests and deliver results
  • Process payments and manage your subscription
  • Send transactional emails (account confirmations, password resets, subscription updates)
  • Respond to your support requests and communications
  • Monitor and analyze usage patterns to improve the Service
  • Detect, prevent, and address technical issues or fraud
  • Send marketing communications (only with your explicit opt-in consent)

3. Legal Basis for Processing (EEA/UK Users)

If you are located in the European Economic Area or United Kingdom, we process your personal data based on the following legal grounds:

  • Contract Performance: To provide the Service you have requested
  • Legitimate Interests: To improve our Service, prevent fraud, and ensure security
  • Consent: For marketing communications (which you can withdraw at any time)
  • Legal Obligation: To comply with applicable laws and regulations

4. How We Share Your Information

We do not sell your personal information. We share information only in the following circumstances:

Service Providers

We use trusted third-party services to operate our business:

  • Fly.io: Cloud hosting and infrastructure (servers located in the United States)
  • Resend: Transactional email delivery (password resets, account notifications)
  • Crisp: Live chat support (processes your name, email, and support messages)
  • Payment Processor: Processes subscription payments (we do not store your payment card details)

Backend Processing Services

We use additional services for product research automation. These services process product data and search queries but do not receive your personal account information (email, name, or payment details).

Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights, property, or safety.

Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

5. Cookies and Tracking Technologies

We take a privacy-first approach and minimize our use of cookies:

  • Essential Cookies: Required for authentication, security, and core functionality (session management). These cannot be disabled and are strictly necessary for the Service to function.
  • Support Chat: Our live chat support (Crisp) only sets cookies when you actively open the chat widget to start a conversation. No cookies are set until you interact with the chat feature.
  • Local Preferences: We use browser local storage (not cookies) to remember your preferences such as theme settings. This data stays on your device and is not transmitted to our servers.

We do not use third-party analytics cookies or advertising trackers. Most web browsers allow you to control cookies through their settings. Note that disabling essential cookies may prevent you from using certain features of the Service.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you the Service. Specifically:

  • Account Data: Retained until you request account deletion
  • Search History: Retained to provide you with historical research data and improve the Service
  • Product Research Results: May be retained to improve our matching algorithms and service quality
  • Support Communications: Retained for up to 2 years to provide context for ongoing support

After account deletion, we may retain certain information as required by law or for legitimate business purposes (such as fraud prevention) for up to 7 years.

7. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

All Users

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate personal information
  • Deletion: Request deletion of your account and personal information
  • Opt-Out: Unsubscribe from marketing communications at any time

EEA/UK Users (GDPR)

  • Right to data portability
  • Right to restrict processing
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

California Users (CCPA/CPRA)

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising your rights

To exercise any of these rights, please contact us at the email address below. We will respond to your request within 30 days (or 45 days for CCPA requests).

8. International Data Transfers

We are based in the United States, and your information is processed and stored on servers located in the United States. If you are accessing the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using the Service, you consent to this transfer. We take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy.

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Secure password hashing
  • Regular security assessments
  • Access controls limiting employee access to personal data

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

10. Children's Privacy

The Service is intended for business users and is not directed to individuals under the age of 18. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we may also send you an email notification. We encourage you to review this Privacy Policy periodically.

12. Contact Us

If you have any questions about this Privacy Policy, want to exercise your privacy rights, or have concerns about our data practices, please contact us at:

SupplierSignal

Wyoming, United States

Email: contact@suppliersignal.on.crisp.email