Launch FastLaunch Fast

Privacy Policy

Effective: 9/4/2025

This Privacy Policy explains how Launch Fast ("Launch Fast", "we", "us") collects, uses, and protects information when you use our web application and Chrome extension. It reflects modern SaaS expectations under GDPR and CPRA/CCPA and outlines our commitments for Amazon SP‑API and Amazon Ads integrations.

Contents
  1. Company & contact
  2. Data we collect
  3. How we use data
  4. How we share data
  5. Security
  6. Retention
  7. Your rights
  8. Cookies & ads
  9. Chrome Extension
  10. Amazon SP‑API & Ads
  11. International transfers
  12. Children’s privacy
  13. Changes to this policy
  14. California Notice at Collection

Company & contact

Launch Fast is a product of LegacyX FBA. Contact: launchfastlegacyx@gmail.com. If you require a postal address for rights requests or legal notices, contact us and we will provide the appropriate address for your region.

Data we collect

  • Account data: name, email, password hash, and optional company.
  • Billing: handled by our payment processor (e.g., Stripe). We do not store full card numbers.
  • App & extension activity: feature usage, request metadata, performance metrics, and content you save (e.g., markets, products, supplier notes). For our Chrome extension: Amazon product interactions (ASINs, titles, prices, ratings), extension usage patterns, authentication tokens (stored locally in your browser), and cached research results.
  • Device & log data: IP address, device/browser type, and diagnostic logs for reliability and security.
  • Cookies & trackers: session cookies, analytics, and advertising tags (see “Cookies & ads”).

How we use data

  • Provide and improve the app/extension and deliver requested features
  • Authenticate users, prevent fraud/abuse, and ensure security
  • Billing, account management, and customer support
  • Analytics and product development
  • Marketing communications where permitted; you can opt out

How we share data

  • We do not sell your personal information.
  • Processors that help us run the service (cloud hosting, database, analytics, payments, email). Access is limited by contract and necessity.
  • Legal disclosures where required, or to protect users and our services.

Security

  • Encryption in transit (TLS 1.2+) and encryption at rest (AES‑256) via our infrastructure providers
  • Least‑privilege, role‑based access and MFA for administrative access
  • Logging and monitoring of privileged operations; change management
  • Secure key and secret management; environment segregation

Retention

We retain account and product data while your account is active. If you delete your account, we delete or anonymize data within a reasonable period unless retention is required by law or legitimate business purposes (e.g., fraud prevention, accounting).

Your rights

If you are in the EU/UK, you have rights under GDPR; if you are in California, you have rights under CPRA/CCPA. These include access, correction, deletion, portability, restriction/objection (GDPR), and the right to opt out of sale/share (CPRA). To exercise rights, email launchfastlegacyx@gmail.com. We may request verification and will respond within applicable timelines.

For Chrome Extension users: You can also disable the extension through Chrome settings, clear locally stored data by reinstalling the extension, or request deletion of any server-side cached research data associated with your account.

Cookies & ads

We use essential cookies for authentication and security, and optional analytics/advertising tags (e.g., Google Tag Manager, Meta Pixel) to understand usage and measure marketing performance. Where required, we will honor your consent choices. You can also manage cookies in your browser settings and opt out of interest‑based advertising via platform settings.

For CPRA purposes, some advertising tags may constitute "sharing" for cross‑context behavioral advertising. You may opt out by contacting us; we will apply your preference and, where supported, set an opt‑out signal.

Chrome Extension

Our Chrome extension enhances your Amazon product research experience by overlaying intelligence data directly on Amazon pages. Here's how it works:

Permissions & Data Access

  • activeTab: Access to the current Amazon tab to provide product enhancement features
  • storage: Store authentication tokens and cache research data locally in your browser
  • Amazon domains: Access Amazon product pages to display enhanced analytics and research tools

Local Browser Storage

  • Authentication tokens stored securely in Chrome's local storage
  • Cached product and keyword research results (expires automatically after 3 days)
  • Extension settings and user preferences
  • Temporary session data for improved performance

Extension Data Collection

  • Amazon product page interactions (ASINs, product titles, prices, ratings) for research enhancement
  • Extension usage patterns, feature interactions, and performance metrics
  • Cached API responses from SellerSprite and other research providers to improve performance
  • Error logs and diagnostic information for reliability improvements

User Control

You can disable the extension at any time through Chrome settings, clear cached data by removing and reinstalling the extension, or contact us to request deletion of any server-side cached research data. All extension data follows the same security and privacy standards outlined elsewhere in this policy.

Amazon SP‑API & Amazon Ads

When you connect Amazon services or use our Chrome extension on Amazon pages, we will comply with applicable Amazon program terms, including the Selling Partner API Data Protection Policy and Amazon Ads policies:

  • Minimized scopes & consent: We request the minimum scopes necessary and only after your explicit authorization.
  • Purpose limitation: Use of Amazon data is restricted to in‑product features you select. No secondary use or resale.
  • PII minimization & retention: Avoid storing Amazon customer PII. If storage is necessary to deliver functionality, retain only the minimum required and delete/anonymize promptly. For order‑related PII, we follow Amazon’s strict retention limits (generally ≤ 30 days after fulfillment unless a longer period is legally required).
  • Encryption & tokens: TLS 1.2+ in transit; AES‑256 at rest. Secure token storage with periodic rotation.
  • Access controls: Role‑based internal access with logging/monitoring of privileged operations.
  • Disconnection & deletion: Upon disconnect or your request, we revoke access and delete associated Amazon data within Amazon‑required timelines.
  • Incident response: Documented process to detect, mitigate, and notify in accordance with contractual and legal requirements.

International transfers

Data may be processed in the United States and other countries where our processors operate. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) for cross‑border transfers.

Children’s privacy

Our services are not directed to children under 13 (or under 16 in the EU). We do not knowingly collect personal information from children.

Changes to this policy

We may update this policy as we release new features or as laws and platform policies evolve. We will post updates here and revise the effective date.

California Notice at Collection

We collect the following categories of personal information for business purposes: identifiers (e.g., email), commercial information (subscription details), internet or network activity (logs/analytics), and in limited cases geolocation (approximate IP‑based). We use this information to provide and secure the service, for analytics, and for limited marketing where permitted. We do not sell personal information. We may “share” personal information for cross‑context behavioral advertising as described above; you can opt out by contacting us.

How to contact us

Email: launchfastlegacyx@gmail.com