Legal

Privacy policy

Last updated May 8, 2026

ASIN Metrics (“we”, “us”) is a sourcing tool for Amazon resellers, delivered as a website at asinmetrics.com and a companion Chrome extension. This policy explains what data we collect, how we use it, who we share it with, and how you can remove it. If something here is unclear, please contact us or email ecomwithmo@gmail.com.

1. What we collect

  • Account data. When you sign up we store your email address and a hashed password (or, if you sign in with Google, the email address and a Google account identifier). We do not see or store your Google password.
  • Sourcing data you create. Lists, list items (ASIN + marketplace), notes, tags, costs, favorites, lookup history, and saved settings. This data is bound to your account.
  • Product metadata we fetch on your behalf. When you look up an ASIN, we query third-party data providers (notably Keepa) for price history, sales rank, fees, and offer information, and cache the result against your account so repeat lookups are fast.
  • Operational data. Server logs (IP address, user-agent, request paths, timestamps) needed to run, secure, and debug the service. Logs are retained for a limited period and are not used to build advertising profiles.
  • Optional integrations. If you connect Amazon Selling Partner API or Google (see section 3), we store the refresh tokens we need to call those APIs on your behalf. Refresh tokens are encrypted at rest.

We do not collect biometric data, government IDs, financial-card numbers (Stripe handles billing, not us), or location beyond the coarse signal in an IP address.

2. How we use it

  • To provide the product — let you sign in, run lookups, save lists, and view your dashboard.
  • To call third-party APIs (Keepa, Google Sheets, Amazon SP-API) only for the actions you initiate.
  • To respond to your support requests.
  • To detect and prevent abuse (rate-limiting, fraud, account takeover).
  • To communicate service-critical updates (security notices, billing changes). We don't send marketing email without explicit opt-in.

We do not sell your data, rent it, or share it with advertisers. We do not train machine-learning models on your saved lists or notes.

3. Google account data & the Sheets sync

Connecting your Google account is optional. The integration exists so your saved lists can mirror to a Google Sheet you control. When you connect, you grant the following OAuth scopes:

  • userinfo.email & openid — so we know which Google account is connected.
  • spreadsheets — to create tabs and write your lists into the spreadsheet you pick.

We use these scopes only to read your email for the connection record and to write list data to the sheet you select. We do not read your Drive files, your other spreadsheets, your contacts, or your mail. The sync is one-way (app → sheet) — we never read sheet contents back into your account.

ASIN Metrics' use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. You can revoke our access at any time from your Google account permissions page or via the Disconnect button on the in-app integrations screen.

4. Where data lives & who processes it

We use a small number of vetted sub-processors to run the service:

  • Supabase — Postgres database, authentication, and file storage.
  • Vercel — application hosting and edge delivery.
  • Keepa — Amazon product, pricing, and rank data.
  • Google — only when you explicitly connect a Google account for the Sheets sync.
  • Stripe — payment processing for paid plans (if applicable).

5. Security

Data in transit is encrypted with TLS. Data at rest is stored in managed Postgres with encryption enabled. OAuth refresh tokens are additionally application-level encrypted before they hit the database. Access to production systems is restricted and audited.

No system is perfectly secure. If we ever discover a breach affecting your data, we will notify you without undue delay.

6. Your choices

  • Access & export. The dashboard exposes everything we've stored about you. The Google Sheets sync is also a continuous export.
  • Correct. You can edit lists, notes, and settings directly in the app at any time.
  • Delete. You can delete individual records, disconnect integrations, or close your account entirely. Closing the account removes your records from our active systems within 30 days; encrypted backups roll off on their normal schedule.
  • Disconnect Google. Use the “Disconnect” button on the integrations page, or revoke at myaccount.google.com/permissions. Disconnecting stops new syncs immediately.

7. Children

ASIN Metrics is a business tool. It is not directed at children under 16, and we do not knowingly collect data from them.

8. Changes to this policy

When we make material changes we will update the “Last updated” date and, for significant changes, notify you in-app or by email before they take effect.

9. Contact

Privacy questions, deletion requests, or concerns about a Google integration can go through our contact form or email ecomwithmo@gmail.com and we will reply within one business day.