DATA AND SECURITY ACCESS

AMAZON DATA AND SECURITY ACCESS

  • Protecting your Amazon data and account access is a core priority with True Compass Consulting. The below explains how our team secures access, manage risk, and comply with Amazon’s data protection requirements.
  • Amazon Data Protection & Account Access Policy
  • True Compass Consulting is committed to protecting client data and maintaining secure, compliant access to Amazon systems. This policy outlines how we access Amazon accounts, safeguard data, and manage security risks in alignment with Amazon Service Provider Network (SPN) requirements.
  • Secure Access to Amazon Accounts
  • We access Amazon Seller Central and related systems only through secure, company-controlled devices protected by up-to-date operating systems and security software.
  • To prevent unauthorized access:
    • Multi-factor authentication (MFA) is enabled wherever available
    • Strong, unique passwords are used for all accounts
    • Passwords are securely stored using reputable password management software
    • Client credentials are never shared with third parties
    • Passwords are never reused across client accounts
    • Access permissions are limited to the minimum level required to perform contracted services
  • Data Retention and Deletion
  • Upon completion or termination of an engagement:
    • Clients retain full control of their Seller Central account
    • We request removal of our user permissions
    • Only information required for legal, tax, or contractual obligations is retained
    • All other client working files are securely deleted or anonymized within a reasonable timeframe
  • Risk Assessment and Security Monitoring
  • We periodically evaluate our operational security practices, including
    • Device security
    • Account access controls
    • User permissions
    • Data storage systems
  • Organizational Change Notifications
  • True Compass Consulting will notify Amazon within 24hrs of any material organizational changes that affect access to Amazon systems or client data, including:
    • Changes in business ownership or legal entity
    • Addition or removal of personnel with Amazon account access
    • Significant changes to systems, tools, or data processing locations
  • Access Management
  • Access permissions are reviewed during both onboarding and offboarding processes to ensure appropriate authorization levels.
  • Clients may revoke our access to their Amazon accounts at any time.
  • Incident Response Procedures
  • If a security incident is suspected or detected that may affect Amazon accounts or client data, we will take immediate action to:
  • Secure affected systems and revoke unauthorized access
  • Reset credentials and verify MFA protections
  • Investigate the scope and root cause of the incident
  • Notify impacted clients promptly
  • Notify Amazon when appropriate and cooperate with remediation efforts
  • Implement corrective measures to reduce the risk of recurrence
All Rights Reserved © True Compass Inc. 2026