Privacy Policy

Last updated: 1 April 2026

Palvento ("we", "our", "us") is operated by NPX Solutions. This policy explains what data we collect, why we collect it, and how we use it. If you have questions, contact us at info@npx-solutions.com.

Your rights

Exercise your GDPR rights in one click. No forms, no waiting.

Export my data →Delete my account →Security overview →

1. Who we are

Palvento is a multi-channel product listing management platform operated by NPX Solutions Ltd (Companies House registration number 15991514, registered office: 3rd Floor, 86-90 Paul Street, London EC2A 4NE, United Kingdom). We connect ecommerce sellers with marketplaces including Shopify, eBay, Etsy, Amazon, TikTok Shop, Walmart, and OnBuy.

2. Data we collect

Account data — your name, email address, and password when you create an account.

Channel credentials — OAuth tokens for Shopify, eBay, Etsy, Amazon, TikTok Shop, and other connected marketplaces that you authorise when connecting a sales channel. These are stored encrypted and used only to manage your listings, orders, and inventory on your behalf.

Product and listing data — titles, descriptions, prices, images, and inventory levels that you enter or import into Palvento.

Transaction data — order and sales data pulled from your connected channels to generate performance reporting.

Usage data — pages visited, features used, and actions taken within the Palvento dashboard, collected to improve the product.

Payment data — billing is processed by Stripe. We do not store your card details. Stripe's privacy policy applies to payment processing.

3. How we use your data

  • To operate the Palvento service — publish listings, sync inventory, and generate AI-optimised content on your behalf
  • To send transactional emails — account confirmations, alerts, and billing receipts
  • To provide customer support
  • To improve the product based on usage patterns
  • To comply with legal obligations

We do not sell your data to third parties. We do not use your product or sales data to train AI models without your explicit consent.

4. Third-party services

Palvento integrates with the following third-party services, each governed by their own privacy policies:

  • Supabase — database and authentication
  • Stripe — payment processing
  • Anthropic — AI content generation (listing titles and descriptions)
  • eBay — marketplace integration via eBay OAuth
  • Shopify — marketplace integration via Shopify OAuth
  • Etsy — marketplace integration via Etsy OAuth
  • Amazon — marketplace integration via Amazon SP-API
  • TikTok Shop — marketplace integration via TikTok Shop Partner API (orders, finance/transaction details, inventory state)
  • Vercel — hosting and infrastructure

5. eBay data use

When you connect your eBay account, Palvento requests access to manage your inventory, listings, and fulfilment data. This access is used solely to:

  • Create, update, and publish product listings on your behalf
  • Read your inventory levels and order data for reporting
  • Sync price and quantity changes across channels

We do not share your eBay data with any third party outside of the services listed in Section 4. When you disconnect eBay or delete your account, your eBay tokens are deleted from our systems immediately.

5b. TikTok Shop data use

When you connect your TikTok Shop account, Palvento requests scoped access via the TikTok Shop Partner API. This access is used solely to:

  • Read your order list and per-order finance / transaction details for per-channel P&L reconciliation
  • Read and update your inventory state to keep stock levels in sync across channels
  • Process order webhooks (order created, order updated, return requested) for real-time data freshness
  • Read account-deletion notifications for GDPR / data-deletion compliance

We do not request access to TikTok creator content, audience data, ad creatives, or campaign management. We do not share your TikTok Shop data with any third party outside of the services listed in Section 4. When you disconnect TikTok Shop or delete your Palvento account, all TikTok-related tokens, order data, and finance data are deleted from our systems within 30 days; webhook subscriptions are revoked immediately.

6. Data retention

We retain your account data for as long as your account is active. If you delete your account, we delete your personal data within 30 days, except where retention is required by law (e.g. billing records for 7 years under law).

Channel OAuth tokens are deleted immediately when you disconnect a channel or delete your account.

7. Your rights (GDPR)

If you are based in the or EEA, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Object to or restrict how we process your data
  • Data portability — receive your data in a machine-readable format

To exercise any of these rights, email info@npx-solutions.com. We will respond within 30 days.

8. Cookies

Palvento uses session cookies for authentication (managed by Supabase) and no third-party tracking cookies. We do not use advertising cookies or cross-site tracking.

9. Security

We use industry-standard security practices including encrypted storage of credentials, HTTPS for all data in transit, and role-based access controls. OAuth tokens are stored encrypted at rest.

10. Changes to this policy

We may update this policy from time to time. We will notify you by email if we make material changes. Continued use of Palvento after changes are posted constitutes acceptance.

11. Contact

NPX Solutions
United Kingdom
info@npx-solutions.com