Skip to main content
CREATE AND SELL CUSTOM PRODUCTS

Privacy Policy

Thank you for visiting our website! Your privacy is of utmost importance to us. Thus, we collect and process your personal information in accordance with relevant privacy laws. This privacy policy (the “Privacy Policy”) outlines the information we gather when you register or visit our site, vvpod.com, and associated sites or pages (the “Site”), as well as how we utilize your information.

Data Controller: VVPod LLC, 2800 N Main Street - Suite 512, Santa Ana, California, 92705, United States; Phone: +1 714 786 6824 (“Our Company,” “We,” “VVPod”) is the data controller.

Information We Collect:

Information You Provide About Yourself: Personal Information refers to any details about an identified or identifiable natural person. The Personal Information we collect varies based on your activities on our Site:

    • When you create an account as a customer, we collect your name (first and last), email address, and optionally, your billing and shipping address.
    • When you register as a designer, we collect your name (first and last), username, and email address. To facilitate commission payments, we collect the email associated with your PayPal account.
    • When you order a product, we collect your name, email address, billing and shipping address, phone number (optional), and payment details.
    • When you sell products, we collect your name, address, phone number, email address, and bank account details.
    • When you contact us, we collect your name, email address, or phone number.
    • When you sign up for newsletters, we collect your email address.
    • We gather information on your purchases and sales history when you use our services.
  1. Information About Others: We may also collect personal information regarding other people that you provide to us. In the event that you want to send products other people through our Site, we may collect their personal information such as their name (first and last) and addresses.

Information About Others: We may collect personal information about individuals you provide details for when sending products to others through our Site.

How We Use Your Information:

We use your information to:

  • Facilitate sales made via our Site.
  • Create and manage your account.
  • Fulfill your requests for products and services.
  • Deliver requested products and services.
  • Process payments.
  • Provide customer support through email or phone.
  • Communicate with you about orders and inquiries.
  • Send offers, newsletters, and information about our products and services.
How We Secure Your Information:

We take reasonable steps to secure your personal information. Your account is password-protected, and access is restricted to authorized personnel. Payments are handled over encrypted connections or secure third-party processors. We use industry-standard technological safeguards to secure information. While we take measures to protect your privacy, complete security cannot be guaranteed due to the nature of internet transmission.

Sharing Your Information with Others:

We do not sell or share your personal information with third parties, except:

  • Authorized Service Providers: We work with third-party service providers to perform various functions necessary for our services. They only access information required to perform their functions and are prohibited from using it for other purposes.
  • Legal Claims: We may disclose your information in compliance with the law, court orders, legal processes, intellectual property infringement claims, or to protect our rights, users, and others.
Retention of Your Personal Data:

We retain your personal data for the period necessary to fulfill the purposes outlined in this Privacy Policy or as required by law.

Children’s Privacy

Our Site and services are not intended for individuals under the age of 13, and we do not knowingly collect personal data from individuals under this age.

Contact Us:

For questions regarding our Privacy Policy or to request information, please contact us via email at contact@vvpod.com or by postal mail at VVPod LLC,2800 N Main Street - Suite 512, Santa Ana, California, 92705, United States. After identity verification, we will provide or modify your information as requested.

Marketplace Data Protection & Security Standards

The following provisions govern how VVPod handles data received from integrated marketplace platforms (including, but not limited to, Amazon Selling Partner API, Shopify, and Etsy). These standards are designed to meet or exceed the data protection requirements of each platform — including Amazon's Data Protection Policy (DPP) and Acceptable Use Policy (AUP) — as well as applicable global regulations including GDPR and CCPA. In the event of any conflict between this section and the general provisions above, this section shall prevail with respect to marketplace-originated data.

1. Data Collection & Purpose Limitation

VVPod collects marketplace data solely for the purposes of order fulfillment, inventory synchronization, and shipping management. We do not collect or process data beyond what is strictly necessary to provide our print-on-demand fulfillment services.

Data received through the Amazon Selling Partner API is used exclusively for processing and fulfilling orders placed by Amazon customers through our merchants' stores. We do not use this data for marketing, advertising, profiling, or any purpose unrelated to order fulfillment.

2. Data Retention & Minimization

VVPod follows a strict data minimization policy. Personally Identifiable Information (PII) from integrated marketplaces is retained only as long as necessary for order fulfillment and legal compliance:

  • Customer PII (names, addresses, phone numbers): Retained for a maximum of 31 days post-shipment, after which it is systematically purged from active databases.
  • Order transaction data: Retained for the period required by applicable tax and accounting regulations.
  • API tokens and credentials: Stored only while the merchant's integration is active; deleted immediately upon disconnection or authorization revocation.
3. Encryption Standards

At Rest: All sensitive data, including PII and API credentials, is stored using AES-256 encryption. We utilize AWS Key Management Service (KMS) for centralized key management with automatic key rotation.

In Transit: All communication between VVPod systems, merchants, end users, and third-party APIs (including Amazon SP-API) is encrypted using TLS 1.2 or higher. Unencrypted connections are rejected.

4. Security & Access Control

Access to the VVPod production environment and any database containing marketplace information is protected by mandatory Multi-Factor Authentication (MFA). We enforce Role-Based Access Control (RBAC), ensuring only authorized fulfillment and technical personnel have access to sensitive data on a need-to-know basis.

All access to systems containing Amazon Information is logged and monitored. Access logs are retained for a minimum of 12 months for audit purposes.

5. Network Security

VVPod infrastructure is hosted within AWS Virtual Private Cloud (VPC) with network segmentation, security groups, and firewall rules restricting access to authorized traffic only. Regular vulnerability scans and penetration testing are conducted to identify and remediate security risks.

6. Incident Response & Notification

VVPod maintains a documented incident response plan. In the event of a suspected or confirmed security incident involving marketplace data:

  • Investigation is initiated immediately upon detection.
  • Affected platforms (including Amazon) and merchants are notified within 24 hours of confirmed breach detection.
  • Remediation actions are documented and implemented to prevent recurrence.
  • A post-incident report is provided to affected parties upon request.
7. Third-Party Data Sharing

VVPod does not sell, rent, lease, or share customer data with third parties for marketing, advertising, or any purpose unrelated to order fulfillment. Data is shared only with:

  • Shipping carriers: Limited to name and address required for delivery.
  • Payment processors: Limited to transaction data required for payment processing.

All sub-processors are contractually bound to equivalent data protection standards and are prohibited from using data for any other purpose.

8. Data Subject Rights

Users and merchants may exercise the following rights regarding their personal data:

  • Right to Access: Request a copy of the personal data we hold.
  • Right to Correction: Request correction of inaccurate or incomplete data.
  • Right to Deletion: Request deletion of personal data no longer necessary for fulfillment.
  • Right to Restrict Processing: Request limitation of processing under certain circumstances.
  • Right to Data Portability: Request data in a structured, machine-readable format.

To exercise any of these rights, contact us at contact@vvpod.com. We will respond within 30 days of receiving a verified request.

9. Data Deletion Procedures

Personal data is permanently deleted from all active systems upon:

  • Expiration of the 31-day post-shipment retention period.
  • Receipt of a verified deletion request from a data subject.
  • Revocation of API authorization by the merchant or marketplace platform.
  • Request from Amazon or any integrated marketplace platform.

Backup copies are purged within 90 days following standard backup rotation cycles. Deletion is verified through automated audit processes.

10. Amazon Selling Partner API Compliance

VVPod specifically adheres to Amazon's Data Protection Policy (DPP) and Acceptable Use Policy (AUP). All information received through the Amazon Selling Partner API ("Amazon Information") is:

  • Used exclusively for fulfilling orders and providing services as authorized by the selling partner.
  • Never sold, shared, or disclosed to unauthorized third parties.
  • Stored in encrypted form with access restricted to authorized personnel only.
  • Deleted immediately upon authorization revocation or upon request from Amazon or the selling partner.
  • Protected by security controls that meet or exceed Amazon's requirements, including encryption, access logging, and network isolation.
11. Audit & Compliance Monitoring

VVPod conducts periodic internal reviews to ensure ongoing compliance with marketplace data protection requirements. Security controls, access permissions, and data handling procedures are audited regularly.

Last updated: May 2026

12. Policy Updates

This Marketplace Data Protection section is reviewed and updated regularly to reflect changes in platform requirements, applicable regulations, and our security practices. Material changes will be communicated to affected merchants via email notification.