Privacy Policy

Account information such as name, email address, password hash, sessions, device identifiers, App Store review demo-account activity, and push notification tokens.

Business data you create or import, including inventory, SKUs, photos, cost basis, listings, orders, shipments, returns, buyer messages, market comps, peer-benchmark settings, approvals, agent threads, notifications, audit events, and CSV import/export files.

Connected-account data from marketplaces, email providers, carriers, social platforms, payment or commerce tools, and automation runners after you explicitly connect those services.

Operational diagnostics such as request metadata, webhook payloads, sync results, job status, provider API errors, rate-limit events, security logs, and support context needed to run and protect the service.

resell uses your data to maintain your dashboard, reconcile inventory, draft approval-gated actions, refresh market values, send notifications, sync connected accounts, support the iOS companion app, and provide account export and deletion tools.

Agent features use your resell context to draft buyer replies, listing edits, price changes, summaries, fulfillment notes, automation plans, and portfolio posts. External writes require explicit approval unless a user later enables a clearly scoped automation rule.

Market data is used to estimate item value, compare active listings against sold comps, show portfolio value, and help you understand pricing movement without coordinating prices with other sellers.

You choose which provider accounts to connect. Provider access may include OAuth tokens, refresh tokens, webhook identifiers, email mailbox metadata, order details, shipment events, listing records, buyer messages, and social-post permissions depending on the provider and scope you grant.

Connected provider tokens are encrypted at rest and used only for the provider capabilities you authorize. You can disconnect providers in resell and should also revoke access directly with the provider when you no longer want resell to have access.

Provider availability, API scopes, partner approvals, App Store capabilities, APNs, carrier services, and marketplace rules can change over time. resell may adjust features to stay within provider terms.

Agent features may send relevant prompts, inventory context, order records, listing details, message history, and approval instructions to model providers or infrastructure used to generate drafts and summaries.

Agents are designed to help with operations after you own or control inventory. resell does not use agents to procure items, automate checkout, bypass CAPTCHA, bypass MFA, spam buyers, or coordinate unlawful pricing behavior.

You are responsible for reviewing agent output before approving external actions such as listing edits, buyer replies, social posts, and marketplace syncs.

Private inventory is not included in peer benchmarks by default. Items you mark for benchmarks may contribute anonymized pricing signals shown to other resell users.

resell does not sell your private inventory data to other sellers. resell may share data with service providers that host, secure, process payments for, analyze, message, notify, or otherwise operate the service.

resell may disclose information when required by law, to enforce platform rules, protect users, investigate fraud or abuse, process marketplace deletion requests, or complete a merger, financing, acquisition, or similar business transaction.

You can remove connected provider access from the integrations screen, revoke access with the provider directly, or delete your resell account from account settings.

Marketplace account deletion notifications, including eBay deletion events, are processed to remove stored buyer personal data where matched.

You can export account data from account settings. Deleted data may remain in backups for a limited period before routine deletion, and operational logs may be retained when needed for security, tax, fraud prevention, chargeback, dispute, or legal obligations.

Sessions use HTTP-only cookies for the web app and bearer tokens for the iOS app.

OAuth tokens are encrypted at rest. The app supports explicit webhook secrets, provider signatures where available, APNs device-token handling, and non-broadcast tenant routing for marketplace webhooks.

Production deployments must set strong values for APP_SECRET, ENCRYPTION_KEY, CRON_SECRET, WEBHOOK_SECRET, provider credentials, APNs credentials, and Apple signing configuration before live users connect accounts.

You can update profile information, disconnect providers, revoke provider access, change benchmark participation, export account data, delete account data, and manage notification settings from resell settings where available.

Depending on where you live, you may have rights to access, correct, delete, restrict, object to, or receive a copy of personal information. We will respond to verified requests as required by applicable law.

resell is not intended for children under 13, and users must be old enough to form a binding contract or have appropriate authorization for the business account they manage.

Use the support page for deployment-specific support details, privacy requests, account deletion support, provider issues, and App Store review instructions.