Amazon API Terms of Use

Consent:

Digital Daffodil LTD ("we", "us", "our") acknowledges that user consent is paramount when accessing Amazon data through the Amazon Portability API. By using our services, you agree that we will obtain explicit consent from you before accessing any of your Amazon data. This consent will specify the types of data being accessed and the purposes for which it will be used.

Scope of Access:

We commit to accessing only the data that you have authorized us to access through the Amazon Portability API. We will not access data beyond the scope of this authorization or data belonging to users who have not explicitly authorized access.

Data Minimization:

We will request and use only the minimum amount of data necessary to fulfil the authorized purpose specified in your consent.

Purpose Limitation:

Any data collected through the Amazon Portability API will be used solely for the specific purposes outlined in your consent agreement with us.

Data Security:

Digital Daffodil LTD is responsible for ensuring the security of the data we access and process. We will implement appropriate technical and organizational measures to safeguard your data against unauthorized access, use, or disclosure.

Transparency:

We are committed to transparency regarding how we use your data. This includes providing clear information on how your data is processed, stored, and transferred as part of our services.

Data Retention:

We will retain your data only for as long as necessary to fulfil the purposes outlined in your consent agreement with us or as required by applicable law.

Right to Erasure:

You have the right to request the deletion of your data held by Digital Daffodil LTD. Upon receiving such a request, we will promptly delete your data, unless retention is necessary for legal compliance or other legitimate purposes.

Compliance with GDPR:

Digital Daffodil LTD will comply with all applicable requirements under the General Data Protection Regulation (GDPR) concerning the collection, use, and retention of your personal data.

Processing in Accordance with GDPR

Lawful Basis for Processing:

We will establish a lawful basis for processing your data, which may include obtaining your consent, fulfilling contractual obligations, or pursuing legitimate interests as defined by the GDPR.

Data Subject Rights:

We respect and will facilitate the exercise of your rights under the GDPR, including but not limited to the rights of access, rectification, erasure, restriction of processing, and data portability.

Data Transfers:

If we transfer your data to third countries outside the European Union (EU), we will ensure that adequate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your data.

Data Protection Officer:

Digital Daffodil LTD will appoint a Data Protection Officer (DPO) if required by the GDPR.

Data Protection Impact Assessment (DPIA):

Where applicable, we will conduct a Data Protection Impact Assessment (DPIA) to assess and mitigate any potential risks associated with the processing of your data.

Data Security Measures:

We will implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and regular security audits.

Notification of Data Breaches:

In the event of a data breach involving your personal data, Digital Daffodil LTD will notify the relevant supervisory authority and affected users in accordance with GDPR requirements.