Privacy

FAQs

Who controls data?

Varytech Consulting is the data controller for Growo.

What data is collected?

We collect merchant account, order, product, and inventory data via Temu API only.

How is my data used?

Your data is used solely to provide the agreed analytics services and is never sold or shared.

Are third parties involved?

No third-party sub-processors handle your personal data.

How long is data kept?

Data is deleted within 30 days after service ends unless legally required.

How can I manage my data rights?

Contact data@varytech-consulting.com to request access, correction, deletion, or export of your data.

Security Measures

All data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher. Access to personal data is restricted through role-based access control (RBAC), ensuring each merchant can only access their own data.

Data Breach Notification

In the event of a suspected or confirmed data breach, Varytech Consulting will notify affected parties and relevant data protection authorities within 72 hours, in accordance with GDPR Article 33.

Data Retention

As a data subject, you have the right to access, correct, delete, or export your personal data, and to object to or restrict its processing. Submit requests to data@varytech-consulting.com. We respond within 30 days.

Policy Updates

This policy is reviewed regularly and updated as needed. Material changes will be communicated to users. Last updated: April 2026