Register as a Public SP-API Developer
Learn how to register as a public developer for the SP-API.
This topic explains how to register as a public developer for the Selling Partner API (SP-API).
Public developers:
- Build applications that serve sellers, vendors, or both.
- Obtain explicit authorization from each seller or vendor through OAuth.
- Must list their application in the Amazon Selling Partner Appstore, in accordance with the Amazon Services API Developer Agreement.
If you develop applications solely for internal use by your organization, you can register as a private developer. For details, refer to Register as a Private SP-API Developer.
Prerequisites
Before you begin registration, complete the following tasks:
- Review registration guidelines: Familiarize yourself with the registration recommendations.
- Have your website URL: When you register as a public developer, you must share a website URL that is publicly available and provides details about the services that your application offers to Amazon sellers. Websites that are not accessible, are under construction, have a security warning, or are log-in only are not accepted.
- Choose your roles: Developer profile registration requires you to select an initial set of roles, which determine which API operations and data that your application can access. To determine which API operations and data (and therefore which roles) your application needs, review the roles overview and role mappings documentation.
If you plan to request restricted roles (roles that provide access to personally identifiable information (PII)), you must also:
- Prepare for an architecture review: You will need to go through an architecture review with the SP-API Solutions Architecture team. The review includes a detailed explanation of data flows and protection controls for PII. This process can involve a demo through screen sharing.
- Prepare detailed use case information: Be prepared to answer questions related to PII with as much detail as possible to support your use case.
Understand the review process
Amazon evaluates developer applications through a comprehensive review process. There are two distinct review paths: a standard review for most applications, and a more rigorous review for applications that request access to restricted roles. To help you prepare a strong application, familiarize yourself with the following processes.
Standard review process
The standard review involves the following steps:
-
Amazon evaluates your developer profile and focuses on:
- Application functionality.
- Compliance with the Acceptable Use Policy.
- Compliance with the Data Protection Policy.
- Data security measures.
-
If Amazon needs additional information:
- You receive questions through your case.
- You must respond within five days.
- Cases without responses within five days are closed.
- Closed cases result in unchanged SP-API access.
Review process for restricted roles
If you apply for restricted roles as part of your developer profile, your developer profile review goes through the following phases.
Phase 1: Business verification review and developer profile assessment
In the initial phase, Amazon reviews your website for compliance with Amazon's acceptable use policies and guidelines. Your website must be publicly accessible and provide a clear description of your business and the services that you offer. Amazon expects to see professional design and content standards maintained throughout the site, along with complete business contact information readily available to visitors. Your website must implement appropriate security measures, including the HTTPS protocol, and display a comprehensive privacy policy and terms of service documentation.
During this phase, Amazon also evaluates your developer profile to verify alignment with Amazon's data protection policies. Your profile submission should include detailed information about your intended use of the SP-API and explicitly explain how you plan to handle seller data. You must specify which API sections you're requesting access to and demonstrate a clear understanding of Amazon's data protection requirements. Your profile should contain accurate business and contact details, along with a thorough explanation of your application's purpose and intended functionality.
Phase 2: Data security assessment
The final phase involves a comprehensive review of your application's data security measures, specifically focusing on PII protection. Amazon's assessment examines your application's data flow architecture and implementation of PII protection controls. Amazon will review your data storage and handling procedures, along with security protocols and safeguards. Your application must comply with Amazon's data security policies and include robust incident response and data breach procedures. This thorough evaluation verifies that your application meets Amazon's stringent security requirements for handling sensitive data.
Register as a public developer
The first step in registration is to complete the developer profile form. This form collects essential information about:
- Your organization's contact details.
- The API data access that you need.
- Your security controls and use cases.
- Your compliance with Amazon's policies and agreements.
Complete all fields accurately and thoroughly. Amazon evaluates this information to create your case and determine next steps. You might be asked to provide additional information or documentation during the review process.
Take the following steps to complete your developer profile:
-
Log in to one of the following tools:
- Solution Provider Portal: Log in, select Settings, and then choose Developer Profile.
- Seller Central: Log in to the Seller Central URL for your marketplace, and then navigate to Apps and Services.
-
Navigate to Develop Apps. Then:
- If you're a new developer and haven't completed a profile, choose Proceed to Developer Profile.
- If you're an existing developer with a completed profile, choose View profile.
-
Complete (for new developers) or update (for existing developers) your developer profile:
-
For Contact Information, enter your organization name, website, country, and the primary contact.
-
For Data Access, choose Public Developer: I build and offer publicly available applications that are used by other sellers.
-
For Roles, select the roles that you want to assume. For details about roles, refer to Roles in the Selling Partner API. If you select restricted roles, the form expands to include additional questions about your use case.
-
For Use Cases, describe how you intend to use the SP-API.
-
For Security Controls, carefully review and answer all the questions about your security practices. Your answers should accurately reflect how you implement the security requirements outlined in the Acceptable Use Policy (AUP), the Data Protection Policy (DPP), and the Developer Agreement, which you can find at Policies and Agreements. Be sure to provide complete and accurate responses, and ensure that your answers to the free-form questions are fewer than 500 characters.
-
After you review the policies and agreements, choose the check box to acknowledge your agreement.
-
Choose Register.
-
-
Wait for next steps. Amazon sends case updates are sent to the administrator email address on file. If Amazon contacts you for more information, you must respond within five days to prevent case closure. For more information, refer to Check the status of your request to register as a developer.
Updated about 20 hours ago