Platform Compliance
How SellerGlow handles data, permissions, and user control across all supported platforms.
Last updated: February 3, 2026Executive Summary
SellerGlow is an AI-powered product content assistant that helps sellers draft optimized listings. We operate with a strict human-in-the-loop model: all content changes require explicit user approval before any modification occurs.
SellerGlow does not publish or modify live listings without explicit user action.
Approval & Execution Model
Our workflow enforces a clear separation between draft generation and content application. Users maintain full control at every step.
The Human Gate
Every change flows through a mandatory approval step. The "Apply" action is disabled until the user explicitly reviews and approves changes.
Key Controls
- Preview before apply: Users see side-by-side comparison of original vs. proposed changes
- Accept, edit, or reject: Each suggestion can be individually accepted, modified, or rejected
- Disabled apply button: The apply action is disabled during generation and only enabled after user review
- Audit trail: Every change is logged with timestamp, user, and before/after content
Permission Scope
We request only the permissions necessary for product content optimization. Here's what we access and why.
| Data Type | Access Level | Purpose |
|---|---|---|
| Product titles | Read + Write (with approval) | Draft optimized titles for user review |
| Product descriptions | Read + Write (with approval) | Draft optimized descriptions for user review |
| Product images | Read + Write (with approval) | Generate alt text, suggest improvements |
| Product tags/keywords | Read + Write (with approval) | Suggest optimized tags for user review |
| Product pricing | Read only | Context for content optimization only |
| Order data | Not accessed | — |
| Customer data | Not accessed | — |
| Payment information | Not accessed | — |
Write operations require user approval. Even when we have write permission, no changes are made without the user clicking "Apply" or "Approve" in the interface.
User Control
Approval Process
- Every content change requires explicit user approval
- Users can preview all changes before applying
- Individual changes can be accepted, edited, or rejected
- Batch operations still require confirmation before execution
Revocation Process
- Users can disconnect their store at any time from Settings
- Upon disconnection, we immediately stop accessing store data
- Users can request complete data deletion via privacy@sellerglow.com
- Deletion requests are processed within 30 days
Export Options
- Users can use SellerGlow without connecting their store
- Export packs provide CSV/JSON downloads for manual upload
- No integration required for core functionality
Human-in-the-Loop Guarantee
SellerGlow is designed as an assistant, not an autonomous agent. Humans remain in control at every step.
Guarantee: No content is published, modified, or deleted on any connected platform without explicit user action. Every change requires a human decision.
How This Works
- Draft phase: AI generates suggestions (no changes to live content)
- Quality check phase: AI Judge reviews drafts for quality (no changes to live content)
- Review phase: User reviews all suggestions with diff view
- Apply phase: User explicitly clicks "Apply" to execute approved changes
There is no automated scheduling, no bulk auto-apply, and no background publishing. Every change requires a conscious user action.
Data Sources
We are transparent about where our AI gets its information and guidance.
What We Use
- User-provided content: Product data from connected stores (with permission)
- User-provided context: Brand voice samples, special instructions, preferences
- Platform guidelines: Summaries of official best practices and requirements
- General AI training: Standard language model capabilities
What We Do NOT Do
We Never:
- Scrape platform pages for product or seller data
- Scrape competitor listings or stores
- Access data beyond the granted permissions
- Use unauthorized automation or bots
- Copy verbatim text from platform documentation
- Access or store payment or financial information
- Sell, share, or transfer user data to third parties
Platform rules: Our platform intelligence is based on summaries of official guidance, regularly reviewed and updated by our team. We do not copy or redistribute platform documentation.
What We Never Do
Clear commitments about actions we will never take.
Prohibited Actions:
- Auto-publish: We never publish content without user approval
- Background changes: We never modify listings when the user isn't actively engaged
- Data selling: We never sell user data or content to third parties
- Competitor scraping: We never scrape or analyze competitor stores
- Unauthorized access: We never access data beyond granted permissions
- Automated scheduling: We do not auto-schedule content changes
- Cross-user data: We never share data between users or use one user's data to train models for others
Per-Platform Details
Specific notes for each supported platform integration.
Shopify
OAuth 2.0 integration. Product read/write scopes only. GDPR webhooks supported for data deletion. Billing through Stripe (not Shopify Billing API for this app).
Etsy
OAuth 2.0 integration. Listing read/write scopes. Export pack option available for manual upload without OAuth.
Amazon
SP-API integration where available. Export packs for manual Seller Central upload. No access to customer or order data.
TikTok Shop
TikTok Shop API integration. Product content scopes only. Export pack option available.
eBay
eBay API integration for product content. Export pack option available for manual upload.
Faire
Faire API integration where available. Export pack option for manual upload through Faire Brand Portal.
Export Packs: For any platform, users can choose to use SellerGlow without connecting their store. Export packs provide downloadable files for manual upload, maintaining all AI optimization benefits without requiring OAuth integration.
Security
- Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256)
- Infrastructure: Hosted on AWS with enterprise-grade security controls
- Access control: Role-based access, principle of least privilege
- Audit logging: All access and changes are logged
- Token storage: OAuth tokens encrypted with AWS KMS
Questions?
For compliance questions, data requests, or security concerns:
- Email: privacy@sellerglow.com
- Security: security@sellerglow.com
- General support: support@sellerglow.com