Legal

Privacy Policy

Effective Date: June 7, 2026
Applies to: PATH Profit Zones Chrome Extension, v0.23.0 and later
Publisher: Brian & Robin Joy Olson (dba Official Olsons / PATH Profit Zones)
Contact:

1. Introduction

PATH Profit Zones ("the extension", "we", "our") is a Chrome extension that helps Amazon FBA sellers evaluate product profitability. It overlays profit zones on Keepa price history charts, calculates ROI at historical price points, and (for subscribers) provides a Buy Box price-spread widget across US metro areas and a Bulk ASIN Analyzer.

This policy explains what data the extension collects, stores, or transmits; why; who it is shared with; how long it is kept; and how you can exercise your rights over it. It is written in plain English so you can read the whole thing in a few minutes.

We take privacy seriously. The extension does all profit math on your device, stores nothing personal unless you provide it, and contacts only a small, disclosed list of external services.

2. Information We Collect

2.1 Data you provide

  • Keepa API key. Required for the extension to function. You obtain it from your Keepa account and paste it into the extension's settings page. It is stored in chrome.storage.sync (encrypted in transit by Google as part of Chrome Sync) and transmitted only to api.keepa.com when the extension makes product-data requests. We never see or store your Keepa key on our servers.
  • License key (premium subscribers only). Issued by our license server after you purchase via Stripe. You paste it into the settings page. It is stored in chrome.storage.sync and sent in request headers to our license server for validation and to gate premium features.
  • Email address (premium subscribers only). Collected by Stripe during checkout, not by the extension. Stripe forwards it to our license server via webhook; we store it in our licenses database so we can support your account (reissuing keys, responding to support requests, matching your subscription to your license).
  • Feedback you type into the extension. If you use the "Send Feedback" form in Settings, the text, plus your name and (optionally) email, is sent to our license server at license.amzunlocked.com where we triage suggestions and bug reports. We never send feedback automatically; it is only sent when you click the button.
  • User settings. Profit target mode and value, default COGS costs, display mode, theme, velocity threshold, VAT/tax preferences, etc. These are stored in Chrome storage on your device and (for sync-scoped settings) synced to your other Chrome installations by Google. We never receive these settings.

2.2 Data the extension generates

  • Device ID (premium subscribers only). When you activate a premium license, the extension generates a random identifier. It is stored locally on that one device. We send it to our license server together with the license key so we can enforce a reasonable per-license device limit (currently 2 devices per license). The device ID is not a fingerprint: it does not identify your hardware, IP address, or any real-world identity. It is local-only and random.
  • Cached product lookups. To save Keepa API tokens, the extension caches the product data it fetches (price history, fees, product title, weight, dimensions, offer counts) in chrome.storage.local for up to 1 hour. The cache is automatically purged when the extension version updates. Bulk ASIN Analyzer also uses an IndexedDB object store (keepaCache) on your device for the same purpose. This data never leaves your device. When the Keepa browser extension is installed, PATH Profit Zones reads product data from Keepa's local cache on your device, reducing API token usage. This data stays on-device and follows the same caching rules described above.
  • Product thumbnail images. During bulk scanning, the extension reads product image URLs from the Amazon page DOM (publicly visible Amazon CDN URLs). These are displayed locally in the bulk analyzer cards and are not transmitted to any external server.
  • Session storage. The extension uses chrome.storage.session to pass COGS (cost of goods) values between the bulk analyzer and product detail pages within a single browser session. This data is cleared automatically when the browser closes and is never transmitted externally.

2.3 Data the extension reads from Amazon pages

When you visit an Amazon product page in a supported marketplace (see manifest for the full list), the extension reads publicly visible product information from the page and from Keepa — ASIN, product title, price, fees, weight, dimensions, offer counts, sales velocity, hazmat/meltable flags, and product thumbnail image URLs. It also queries Seller Central (using your existing logged-in session) to determine whether you are approved to sell the ASIN. Seller Central responses are parsed locally to render the eligibility lock icon; no credentials are captured or transmitted by us.

Seller Central data. PATH Profit Zones can read your own Seller Central data, specifically your FBA inventory locations and your own listing price, directly in your browser using your existing logged-in Seller Central session. This is data you can already see in your own account. The extension reads it only after you authorize Seller Central access for the current browsing session, and you can pause that access at any time. All of this data is processed locally on your device and is shown only to you. PATH Profit Zones never transmits, aggregates, stores on our servers, or resells your Seller Central data.

2.4 Data our license server receives

All license server requests go to license.amzunlocked.com over HTTPS.

  • License activation / validation / deactivation: license key, device ID.
  • Stripe webhooks (server-to-server, not from the extension): Stripe customer ID, Stripe subscription ID, customer email, plan type, current period end. Stored in our licenses database (Supabase).
  • Customer portal redirect: license key and device ID (used to fetch a temporary Stripe-hosted portal URL).
  • GeoPrice price-spread proxy (premium): extension sends the target ASIN + license key header to our license server. Our server verifies the license and forwards the lookup to our upstream GeoPrice service. Your IP is not forwarded to the upstream; the upstream sees requests from our server IP.
  • ASIN view logging (premium only): when a premium user views a product page, the extension sends the ASIN and public product metadata to our server to pre-warm the price-spread cache. Not called for free users.

2.5 Data we do NOT collect

  • We do not collect browsing history outside of Amazon product pages.
  • We do not collect anything on non-Amazon sites. The extension has no content script on any page other than Amazon product detail pages.
  • We do not run analytics (no Google Analytics, Segment, Mixpanel, Amplitude, Sentry, etc.).
  • We do not sell, rent, or share personal information with advertisers or data brokers.
  • We do not read Amazon Seller Central dashboards, orders, customer messages, or any Seller Central data beyond the ASIN-approval status, your FBA inventory locations, and your own listing price described in §2.3 — all of which are read locally on your device and never transmitted to us.

3. How We Use the Information

  • Product analysis: your Keepa API key and product identifiers are sent to Keepa to fetch price history. All profit calculations happen locally in your browser.
  • Sell eligibility: the extension checks your approval status for a product using your existing Seller Central session. No credentials are captured.
  • License management: your license key and device ID are sent to our server to validate your subscription.
  • Payment: email and payment method are collected by Stripe during checkout. We receive only your email and subscription status via webhook.
  • Regional pricing (premium): product identifiers are sent through our server to fetch Buy Box prices across US markets.
  • Cache warming (premium): product identifiers and public metadata are sent to our server when you view a product page.
  • Feedback: when you click Send Feedback, your message is delivered to our private support channel.

We do not use your data for advertising, profiling, model training, or any purpose beyond those listed here.

4. Third-Party Services

We contract with the following services to deliver the extension. Each has its own privacy policy; we have linked them for convenience.

  • Keepa GmbH — product data provider. You provide your own Keepa API key; we never proxy Keepa traffic through our servers. Privacy policy
  • Stripe, Inc. — payment processor for premium subscriptions. Stripe collects your email and payment method directly at buy.stripe.com; the extension never sees payment details. Privacy policy
  • Supabase, Inc. — hosted PostgreSQL database for our licenses table (license key, Stripe customer/subscription IDs, email, plan, period-end). Privacy policy
  • Official Olsons (license.amzunlocked.com) — validates premium license keys, proxies GeoPrice requests, and receives in-app feedback. Hosted on a private VPS; database on Supabase (listed above).

We do not use any analytics or error-tracking third party (no Google Analytics, no Sentry, no Mixpanel, no Facebook pixel, nothing similar).

5. Data Retention

  • On-device data (Keepa API key, license key, device ID, settings, cached product data, bulk batch files): retained in Chrome storage / IndexedDB until you uninstall the extension, clear Chrome's site/extension data, or your browser's cache-clearing rules remove it. You can delete it at any time from chrome://settings/cookies or by uninstalling the extension.
  • Licenses database (Supabase): we keep the license record (email, Stripe customer ID, license key, plan, period-end, device activations) for as long as your subscription is active. After cancellation, we retain it for 12 months so we can handle refund disputes, tax/accounting, and reactivation. You can request earlier deletion by emailing us (see §7).
  • ASIN view logs (premium only): retained for 90 days. Logs are not tied to an identifiable person; they are associated only with the license key that submitted them.
  • In-app feedback: retained on our license server. You can email us to request deletion of a specific message.
  • Stripe payment records: retained by Stripe per its own policies; we recommend reviewing Stripe's privacy policy linked above.

6. Security

  • All outbound traffic from the extension uses HTTPS/TLS.
  • Internal services are not externally accessible.
  • Stripe webhooks are verified by cryptographic signature before we trust any event; unsigned or invalidly signed requests are rejected.
  • All Keepa calls use your personal API key, which is never stored on company servers (regenerate at keepa.com/#!api if exposed).

No system is perfectly secure. If we become aware of a breach that affects your data, we will notify you at the email associated with your license (if any) and post a notice at the extension's support page.

7. Your Rights

Depending on where you live, you may have the right to access, correct, export, or delete the personal data we hold about you, and to object to or restrict certain processing. In particular:

  • Access / export: email us and we will send you a copy of every record keyed to your license or email.
  • Correction: email us to update an email address or correct a record.
  • Deletion: email us to delete your license record (this terminates any active subscription; cancel via the Stripe customer portal first if you want to end billing).
  • Withdraw consent: uninstall the extension at any time; this stops all on-device collection and all transmission.
  • Complaint: if you are in the EEA, UK, or California, you may lodge a complaint with your local data protection authority.

To exercise any right, email . We aim to respond within 30 days.

8. Children's Privacy

The extension is a professional tool for Amazon FBA sellers. It is not directed at children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, contact us and we will delete it.

9. International Users

The extension is developed in the United States. By using it, you agree that your data may be processed in the United States and in any country where our third-party providers operate (Supabase, Stripe are primarily US/EU-based). We rely on standard contractual clauses and provider-level safeguards where applicable.

10. Changes to This Policy

We will update this policy whenever the extension's data practices change materially (for example, when a new external service is added or the set of collected fields changes). The "Effective Date" at the top of this document always reflects the most recent update. Material changes will also be noted in the extension's "What's New" section in Settings and in the Chrome Web Store listing changelog. Continued use of the extension after an update constitutes acceptance of the revised policy.

11. Contact

Email:

In-app: Settings → Send Feedback (fastest route for support questions)

Website: https://www.officialolsons.com

If any section of this policy conflicts with what the extension actually does, treat it as a bug and email us. The code is the source of truth, and we want the policy to match the code exactly.