S
GoSparked.ai
Beta — €49

[DRAFT] This privacy policy must be reviewed by a legal professional before launch.

Privacy

Privacy Policy

Last updated: April 2026

1. Who We Are

GoSparked.ai is an AI-powered platform for Amazon sellers. The data controller is:

[Company name — to be added before launch]
[Address — to be added before launch]
Email: hello@gosparked.ai

2. What Data We Collect

a) Account Data

Name, email address, and company name via Google SSO (Single Sign-On). We do not store your password.

b) Usage Data

Conversations with Sparks (our AI team members), uploaded documents, and generated outputs within the platform.

c) Payment Data

Payments are processed through Stripe. We do not store credit card details. Stripe processes and stores payment information in accordance with PCI-DSS standards.

d) Analytics Data

We use Google Analytics 4 (GA4) with IP anonymization. No tracking cookies are set without your consent.

e) Amazon Data

With your explicit consent, we access your Amazon seller data through the Amazon Selling Partner API (SP-API). This data is used exclusively to provide our service.

3. Legal Basis

We process your data based on the following legal grounds under the GDPR:

  • Consent (Art. 6(1)(a) GDPR) — for analytics cookies and access to Amazon data
  • Contract performance (Art. 6(1)(b) GDPR) — for providing your account and our services
  • Legitimate interest (Art. 6(1)(f) GDPR) — for security, fraud prevention, and product improvement

4. Data Processors

We work with the following service providers:

Google Cloud / Firebase Hosting, authentication, database (EU location: europe-west)
Google Gemini AI processing for Spark interactions
Stripe Payment processing
Email provider Transactional emails (e.g. Resend)

5. Data Retention

  • Account data: until you request deletion
  • Conversation logs: 24 months
  • Payment records: 10 years (tax law retention requirement)

6. Your Rights

Under the GDPR, you have the following rights:

  • Access — request what data we hold about you (Art. 15)
  • Rectification — correct inaccurate data (Art. 16)
  • Erasure — request deletion of your data (Art. 17)
  • Data portability — export your data (Art. 20)
  • Restriction — restrict processing of your data (Art. 18)
  • Objection — object to processing of your data (Art. 21)

Contact us at hello@gosparked.ai to exercise any of these rights.

7. International Data Transfers

Our infrastructure runs on Google Cloud in the EU (europe-west). The Google Gemini API may process data in the US. For such transfers, EU Standard Contractual Clauses (SCCs) apply.

8. Cookies

We only use essential cookies (Firebase Auth session). No tracking cookies are set without your explicit consent. Google Analytics 4 is operated with IP anonymization.

9. Right to Complain

You have the right to lodge a complaint with a data protection supervisory authority if you believe that the processing of your data violates the GDPR.

10. Privacy Contact

Email: hello@gosparked.ai

[DRAFT]

This privacy policy is a draft and must be reviewed and approved by a qualified data protection lawyer before launch.