Data Processing Addendum

For customer product, document, and account data submitted to SellSafe, the customer is the controller and SellSafe acts as a processor. SellSafe may act as controller for account administration, billing, security, and service communications.

SellSafe processes submitted product details, compliance documents, marketplace notices, user account details, and operational metadata to provide compliance analysis, report generation, document workflows, support, billing, and security operations.

SellSafe uses role-based access, managed infrastructure controls, encrypted transport, private storage policies where applicable, audit-oriented logs, and operational safeguards designed to limit access to authorized service needs.

SellSafe will provide reasonable assistance for data subject requests, incident review, export, and deletion requests where technically possible and legally permitted. Regulatory record retention requirements may limit deletion of some compliance records.