Amazon Seller Central: Security Enhancements with Inactive User Removal
Published on: October 9, 2024 | By: AMZ Sellers Attorney®
Amazon is rolling out new measures to strengthen the security of Seller Central accounts by removing inactive secondary users who have not logged in for over 12 months. This change is part of a quarterly update aimed at reducing the risk of unauthorized access, safeguarding sensitive account data, and improving overall account management for sellers.
What Does the Inactive User Removal Mean for Sellers?
This update targets **inactive secondary users**—individuals who have previously been granted access to Seller Central accounts but have not logged in for over a year. Many sellers grant access to employees, consultants, or external partners who may no longer require account access. Over time, this can create security vulnerabilities, especially if those users leave their roles without having their access revoked.
By automatically removing inactive users, Amazon helps sellers streamline their user permissions, ensuring only **active team members** and partners have access to sensitive account information. This process will occur **quarterly**, allowing for regular maintenance of account security.
Why Is This Update Important?
Security threats, including unauthorized access and potential data breaches, have become a growing concern in eCommerce. Sellers face increasing risks of cyberattacks, particularly if outdated or inactive user accounts remain linked to their business operations. With inactive accounts lingering, malicious actors can exploit them as entry points for unauthorized access.
This update enhances protection against such threats by ensuring that only relevant and current users have access to Seller Central accounts. It also simplifies account management, as sellers no longer need to manually review and remove inactive users.
Steps Sellers Should Take Now
To ensure your account security is up-to-date and aligned with Amazon's quarterly inactive user removal process, we recommend the following steps:
- Review Active Users: Log into Seller Central and navigate to the "User Permissions" section. Evaluate all active users and ensure that only those who currently require access remain on the list.
- Remove Inactive or Unnecessary Users: Proactively remove users who no longer need access to your account, rather than waiting for the quarterly automated process. This is particularly important for employees or partners who may have left your company.
- Use Multi-Factor Authentication (MFA): Ensure that multi-factor authentication is enabled for all users with access to your account. This adds an extra layer of security, reducing the risk of unauthorized logins.
- Regularly Update Passwords: Encourage all users to update their passwords regularly, using strong, unique passwords to prevent breaches.
How Can This Affect Your Business?
While this update is intended to improve account security, it can also cause disruptions if your business relies on several users for daily operations. If inactive users are removed without your knowledge, it may affect key processes, especially during busy seasons like the holidays. It’s essential to review your user permissions regularly and ensure that all active team members retain access.
Additionally, maintaining up-to-date user permissions helps streamline internal workflows and reduce potential bottlenecks, ensuring that your business operates smoothly while minimizing security risks.
Need Help Navigating Amazon’s Security Updates?
Ensuring your Amazon Seller Central account is secure and up-to-date with the latest policies can be challenging, especially for larger teams. AMZ Sellers Attorney® specializes in helping sellers protect their accounts and navigate complex Amazon policies. If you need assistance reviewing your account's security settings or handling compliance issues, contact us today for expert legal help.