Who We Are
SooperSeller ("we", "our", "us") is a multi-tenant ecommerce management platform operating at sooperseller.com. We provide ecommerce sellers with tools for order management, inventory tracking, courier integrations, financial ledger management, and Shopify store synchronization.
This Privacy Policy explains how we collect, use, store, and protect personal data when you use our platform as a merchant, and how we handle personal data belonging to your customers that passes through our system during order and fulfillment processing.
Data We Collect
We collect the following categories of data to provide our services:
| Category | Data Points | Source |
|---|---|---|
| Account Data | Name, email, password (hashed), business name | Registration form |
| Order Data | Order IDs, line items, quantities, SKUs, prices, status | Shopify API sync |
| Customer Data | Recipient name, shipping address, phone, email | Shopify API sync |
| Inventory Data | SKUs, stock levels, cost prices, locations | Merchant input |
| Financial Data | COD amounts, payments, ledger entries, expenses | Courier APIs + merchant input |
| Usage Data | IP address, browser type, pages visited, timestamps | Automatically collected |
How We Use Data
We process personal data only for the following stated purposes and do not use it for any other purpose:
- Creating and managing courier consignments (requires name, address, phone)
- Tracking shipment status and delivery updates
- Syncing orders from Shopify to the SooperSeller dashboard
- Generating financial reports, COD reconciliation, and ledger entries
- Sending order status notifications to merchants
- Inventory management and stock-out processing
- Providing platform functionality and technical support
Shopify & Merchant Customer Data
SooperSeller integrates with Shopify via the Shopify Admin API. When a merchant connects their Shopify store, we access and sync the following data on their behalf:
- Orders including line items, fulfillment status, and financial amounts
- Customer shipping details (name, address, phone, email) — used solely for courier booking
- Products and variants for inventory mapping
As a merchant using SooperSeller, you remain the data controller for your customers' personal data. SooperSeller acts as a data processor on your behalf. You are responsible for ensuring you have appropriate legal grounds to share your customers' data with us for processing.
Data Sharing & Third Parties
We share personal data only where necessary with the following categories of third parties:
| Third Party | Data Shared | Purpose |
|---|---|---|
| Courier APIs Leopards, M&P, PostEx | Name, address, phone, order value | Shipment booking & tracking |
| Shopify | OAuth tokens, order sync | Store integration |
| Hosting Provider | All data (encrypted at rest) | Infrastructure |
| Legal / Regulatory | As required by law | Legal compliance |
We do not share data with advertisers, data brokers, analytics companies, or any third party not listed above.
Data Retention
We retain personal data only as long as necessary for the purposes described in this policy:
- Order & customer data: Retained for 2 years from order date for financial reconciliation, then deleted or anonymized
- Account data: Retained while your account is active; deleted within 30 days of account closure upon request
- Financial records: Retained for 5 years to comply with tax and accounting regulations
- Usage/log data: Retained for 90 days then automatically purged
You may request early deletion of your data at any time by contacting privacy@sooperseller.com.
Security
We implement industry-standard technical and organizational measures to protect personal data:
- All data in transit is encrypted via TLS/HTTPS
- Data at rest is encrypted on our hosting infrastructure
- Database backups are encrypted and stored separately from production
- Staff access to personal data is limited on a need-to-know basis
- Production and development environments are strictly separated
- Strong password requirements enforced for all staff accounts
- Access logs maintained for all personal data access
- Security incident response procedures are in place
Your Rights
As a merchant or data subject, you have the following rights regarding your personal data:
- Access: Request a copy of personal data we hold about you
- Correction: Request correction of inaccurate data
- Deletion: Request deletion of your personal data
- Portability: Receive your data in a machine-readable format
- Restriction: Request we restrict processing of your data
- Objection: Object to processing based on legitimate interests
To exercise any of these rights, contact us at privacy@sooperseller.com. We will respond within 30 days.
Cookies
SooperSeller uses only essential cookies required for platform functionality:
- Session cookies: To keep you logged into your dashboard
- CSRF tokens: To protect against cross-site request forgery
- Preference cookies: To remember your settings
We do not use advertising cookies, third-party tracking cookies, or analytics cookies that share data with external services.
Contact Us
For any privacy-related questions, data requests, or concerns, please contact us: