Redwood Gate Holdings LLC ("Company," "we," "us," or "our") operates ASINsense. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. Please read this policy carefully. By using ASINsense, you consent to the practices described herein.
1.1 Account Information. When you register, we collect your email address, name (optional), and billing information (processed by Stripe — we do not store payment card details on our servers).
1.0 Amazon Review Data. When you add an Amazon ASIN to monitor, we collect publicly available customer review data associated with that product from Amazon's website. This review data is publicly accessible and is not linked to any personal user information. It includes review text, star ratings, and review dates. We do not collect private Amazon seller data, Amazon SP-API data, or any data that requires Amazon seller credentials.
1.2 Usage Data. We automatically collect information about how you interact with the Service, including pages visited, features used, timestamps, IP address, browser type, and device identifiers.
1.3 ASINs and Competitor Data. We collect the Amazon Standard Identification Numbers (ASINs) you add to your account and the publicly available review data associated with those products.
1.4 Communications. If you contact us via email or support, we retain those communications.
1.5 Cookies and Tracking Technologies. We use cookies to maintain session state and authentication. We use a single session cookie from Supabase for authentication purposes. We do not use third-party advertising cookies.
We use collected information to:
• Provide, operate, and improve the Service • Authenticate your identity and maintain your session • Process subscription payments and send billing receipts • Send transactional emails — alert notifications, account updates, password resets (via Resend) • Detect and prevent fraud, abuse, and security incidents • Comply with legal obligations • Respond to support requests and inquiries • Generate aggregated, anonymized analytics about Service usage (no individual user data is sold)
We do not sell your personal information to third parties.
We share data with the following third-party service providers as necessary to deliver the Service. Each provider is subject to their own privacy policy. We have linked each below and encourage you to review them.
———————————————————————————————— Supabase, Inc. — Database & Authentication Purpose: Stores all user accounts, ASINs, reviews, extracted themes, and alert records. Provides authentication and session management. Data received: Email address, encrypted password hash, ASIN monitoring data, review data, alert data. Location: US (AWS) Privacy Policy: https://supabase.com/privacy
———————————————————————————————— Apify Technologies s.r.o. — Review Data Collection Purpose: Executes web scraping jobs to collect publicly available Amazon customer reviews for ASINs you choose to monitor. Data received: ASIN codes you submit; returns publicly available review text, star ratings, and dates. Note: Review text processed by Apify is publicly available on Amazon and is not linked to your personal account information. Location: EU (Czech Republic) Privacy Policy: https://apify.com/privacy-policy
———————————————————————————————— Anthropic, PBC — AI Theme Extraction (Claude) Purpose: Processes batches of Amazon review text to extract complaint and praise themes using large language model analysis. Data received: Anonymized review text only. Review text is sent without any user identifiers, email addresses, or account data. We do not send personal information to Anthropic. Note: Anthropic may use API inputs to improve safety per their usage policy. Review text is publicly available Amazon content. Location: US Privacy Policy: https://www.anthropic.com/legal/privacy
———————————————————————————————— Stripe, Inc. — Payment Processing Purpose: Processes all subscription payments. Manages payment cards, invoices, and billing portal. Data received: Your name, email address, and payment card details. We never receive or store raw card numbers — Stripe tokenizes all payment data. Location: US Privacy Policy: https://stripe.com/privacy
———————————————————————————————— Resend, Inc. — Transactional Email Purpose: Delivers alert notification emails, account verification, and password reset emails on our behalf. Data received: Your email address and the content of emails we send you. Location: US Privacy Policy: https://resend.com/privacy
———————————————————————————————— Vercel, Inc. — Application Hosting Purpose: Hosts the ASINsense web application and serverless API functions. Data received: HTTP request logs including IP addresses, user agents, and request paths. These logs are retained for 30 days. Location: US (with global edge network) Privacy Policy: https://vercel.com/legal/privacy-policy ————————————————————————————————
We do not sell your personal data to any third party. We enter into data processing agreements (DPAs) with providers where required by applicable law.
We retain your personal data for as long as your account is active. If you cancel your account:
• Account credentials are deleted within 30 days • ASIN monitoring data and review records are deleted within 60 days • Billing records are retained for 7 years as required by law • Backup copies may persist for up to 90 days after deletion
You may request earlier deletion by contacting privacy@asinsense.com.
Depending on your jurisdiction, you may have the following rights regarding your personal data:
GDPR (EU/EEA Residents) • Right of access: Request a copy of your personal data we hold • Right to rectification: Correct inaccurate or incomplete data • Right to erasure ("right to be forgotten"): Request deletion of your personal data • Right to data portability: Receive your data in a structured, machine-readable format • Right to object: Object to processing based on legitimate interests • Right to restrict processing: Limit how we use your data while a dispute is resolved • Right to withdraw consent: Where processing is based on consent, withdraw it at any time
CCPA / CPRA (California Residents) • Right to know: Request disclosure of the categories and specific pieces of personal information we have collected, the sources, the purposes, and any third parties with whom we share it • Right to delete: Request deletion of personal information we have collected, subject to certain exceptions • Right to correct: Request correction of inaccurate personal information • Right to opt-out of sale or sharing: We do not sell or share personal information for cross-context behavioral advertising • Right to limit use of sensitive personal information: We do not use sensitive personal information beyond what is necessary to provide the Service • Right to non-discrimination: We will not deny, charge different prices, or provide a different level of service because you exercised a CCPA right
To submit a rights request, email privacy@asinsense.com with the subject line "Privacy Rights Request." We will respond within 45 days (CCPA) or 30 days (GDPR). We may request identity verification before processing sensitive requests.
Effective as of the date of this Privacy Policy, this notice is provided to California residents pursuant to the California Privacy Rights Act (CPRA) and the California Consumer Privacy Act (CCPA).
Categories of personal information we collect and their purposes:
• Identifiers (email address, IP address) — Account management, authentication, security, support • Account credentials (password hash) — Authentication only; we do not receive or store plaintext passwords • Commercial information (subscription plan, payment history) — Billing and subscription management via Stripe • Internet or other network activity (request logs, feature usage) — Service operation, debugging, security • Professional or employment-related information (seller/brand name, optional) — Personalizing the Service
We do not collect: • Sensitive personal information (Social Security numbers, financial account numbers, biometric data, health data, or geolocation data) • Personal information of minors under 16
Retention: We retain each category for as long as your account is active plus any legally required retention period. See Section 4 (Data Retention) for details.
Sale/Sharing: We do not sell or share your personal information for cross-context behavioral advertising.
Contact for California inquiries: privacy@asinsense.com
We use the following cookies:
Session Cookie (Required): Issued by Supabase Auth to maintain your logged-in state. Name: sb-[project-ref]-auth-token. Duration: 1 hour (refreshed automatically while active). Cannot be disabled — required for the Service to function.
Theme Preference (Functional): Stores your dark/light mode preference. Name: asinsense-theme (localStorage, not a cookie). Duration: Persistent.
We do not use analytics cookies, advertising cookies, or third-party tracking cookies.
We implement industry-standard security measures including:
• All data transmitted between your browser and our servers is encrypted via TLS/HTTPS • Database access is restricted via Row-Level Security (RLS) policies in Supabase • API keys and secrets are stored as environment variables, never in code • The service role key (which bypasses RLS) is only used server-side and never exposed to the browser • Payment data is handled entirely by Stripe and never stored on our servers
No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we use commercially reasonable efforts to protect your data.
ASINsense is not directed at children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, contact us at legal@asinsense.com and we will delete it promptly.
Your data may be processed in the United States and other countries where our service providers operate. By using ASINsense, you consent to the transfer of your data to countries that may have different data protection laws than your country of residence.
For EU users, we rely on Standard Contractual Clauses (SCCs) and our service providers' data processing agreements as the legal basis for cross-border data transfers.
We may update this Privacy Policy periodically. We will notify you of material changes by email or by prominently posting a notice within the Service at least 14 days before the change takes effect. Your continued use of the Service after the effective date constitutes acceptance of the updated policy.
For privacy inquiries, data requests, or to report a privacy concern:
Privacy Officer Redwood Gate Holdings LLC Email: privacy@asinsense.com Website: https://redwoodgate.com
For general support: support@asinsense.com For legal matters: legal@asinsense.com