Amazon AI Agent Policy: The March 4, 2026 BSA Update Explained
Amazon updated its Business Solutions Agreement (BSA) effective March 4, 2026 to include a new Agent Policy. The policy defines what counts as an "Agent" acting on a seller's account, imposes three baseline obligations on those Agents, and adds restrictions on using Amazon materials for AI training. If you sell on Amazon and use third-party tools, this affects you. Continued selling after March 4 counts as automatic acceptance, with no opt-out.
The four sentences you actually need
Amazon announced the change February 17, 2026. It took effect March 4, 2026. Any "Agent" acting on your account must (1) identify itself as automated, (2) comply with the new policy continuously, and (3) cease access if Amazon requests. There is no opt-out, no separate acknowledgment, and continued use of Amazon services after March 4 = automatic acceptance.
Why this policy exists (the Perplexity context)
The Agent Policy didn't appear in a vacuum. On November 4, 2025, Amazon filed a federal lawsuit against Perplexity in the Northern District of California over Comet, Perplexity's AI browser. The original complaint alleged that Comet disguised its automated sessions as Google Chrome browser traffic and accessed Amazon customer accounts without authorization. Amazon's cause of action was under the federal Computer Fraud and Abuse Act and a California computer fraud statute.
Amazon won a preliminary injunction on March 9, 2026 from U.S. District Judge Maxine Chesney, ordering Perplexity to stop accessing Amazon systems with AI agents and destroy any Amazon data already obtained. Coverage from ppc.land and Retail Dive walks through the timeline.
The signal in the Perplexity case is the spirit of the new Agent Policy. Amazon is willing to pursue legal action against AI agents that act on its platform without proper authorization. The Agent Policy moves that posture from "case-by-case enforcement" to "explicit baseline rules every Agent must follow."
What counts as an "Agent" under the new policy
Amazon's definition is broad. An "Agent" includes any automated software or AI system that takes actions on a seller's account or accesses Amazon services on the seller's behalf. Coverage from DAM Law Firm and My Amazon Guy reads the definition as including:
- Repricing tools that adjust your prices automatically
- PPC management software that changes bids on your behalf
- Listing tools that write to your catalog
- Inventory management systems that push reorder requests
- Customer-service bots that respond to buyer messages
- AI agents from marketplaces like SellerShorts that touch your account
- Even simple fulfillment scripts that run scheduled SP-API calls
The bar is "does software take actions on your account using your authorization?" If yes, it's an Agent. Read your tools through that lens.
The three baseline obligations
Every Agent must do three things. These are non-negotiable.
1. Identify itself as automated
The Agent must clearly disclose at all times that it is automated software, not a human. In practice this means proper User-Agent headers in API calls, transparent disclosure when the Agent communicates with buyers, and identifiable signatures in account activity. Agents that try to look like human users (the Perplexity Comet pattern) are explicitly forbidden.
2. Comply with the new Agent Policy continuously
Compliance isn't a one-time check. Agents must continue to operate within the policy throughout their lifecycle. If Amazon updates the policy, Agents must update with it. If an Agent's behavior drifts out of compliance over time, the vendor is responsible for catching and fixing it.
3. Cease access immediately if Amazon requests
Amazon retains the right to revoke Agent access at any time, for any reason. Agents must have a mechanism to stop operating on a seller's account when told to. This is the most operationally significant requirement: agents that can't be stopped on command are non-compliant.
The other 2026 BSA changes you should know
The Agent Policy isn't the only BSA change effective March 4, 2026. Coverage from EcommerceBytes and EcomClips details several other meaningful changes:
- New restrictions on AI development using Amazon data. The BSA now restricts using Amazon materials or services for training AI models, with enhanced protection against reverse engineering. If you scrape Amazon for training data, this affects you.
- Mexico splits to a standalone BSA. Amazon Mexico is now governed by its own BSA document. For sellers operating in both, this means tracking two agreements separately.
- Updates to dispute resolution. Procedural changes to how disputes are handled. Most sellers won't hit this, but worth being aware of.
Before March 4, 2026 vs after: obligations side by side
| Obligation area | Before March 4, 2026 | After March 4, 2026 |
|---|---|---|
| Definition of an "Agent" | No explicit Amazon-level definition. Tools were governed by general BSA terms. | Defined: any automated software that takes actions on a seller's account, including third-party AI tools. |
| Self-identification | Not required. Many scrapers used generic User-Agent strings. | Required. The Agent must identify itself as automated on every request. |
| Continuous compliance | Compliance audited mostly when a complaint arose. | The Agent must comply with the Agent Policy at all times, not just at onboarding. |
| Revocation | Process informal. Some tools were hard to remove. | The Agent must cease access immediately when Amazon requests it. |
| Training on Amazon data | Gray area. Several lawsuits open (notably Amazon vs Perplexity, filed November 4, 2025). | Explicit restrictions on using Amazon materials or services to train AI models, with enhanced anti-reverse-engineering language. |
| Mexico BSA | Part of a shared regional document. | Standalone BSA. Sellers operating there must track two agreements. |
| Continued use as acceptance | Not specifically tied to AI tooling. | Continuing to use Amazon services after March 4, 2026 counts as automatic acceptance of the new BSA Agent terms. |
What sellers need to do this week
If you haven't done a compliance audit since the policy took effect, here's the practical checklist.
- List every tool that touches your Amazon account. Helium 10, Jungle Scout, your repricer, your PPC manager, any AI tools, any custom scripts. Include the boring ones.
- For each tool, confirm the vendor has updated for the March 4 policy. Email them directly. The good ones have a public statement. The bad ones don't.
- Specifically ask: "Does your tool comply with the three baseline obligations of the Amazon BSA Agent Policy effective March 4, 2026?" If the support team doesn't know the answer, escalate to engineering.
- Verify the tool can be revoked. Find the disconnect or revoke-access path. If you can't easily remove the tool's access, the tool itself is risky.
- Check your User-Agent strings if you have custom code. Custom SP-API integrations need to identify themselves correctly.
- Document what you found. If Amazon ever asks (and they sometimes do, in support cases), having a paper trail of your compliance audit is valuable.
Tools that became non-compliant when the policy took effect
I won't name specific vendors because the compliance landscape is changing fast. What I can say is the categories that got hit hardest:
- Browser-extension-based tools that scrape Amazon pages instead of using SP-API. Most of these were already on shaky ground. The new policy removes the gray area.
- Auto-responder tools that masquerade as human in buyer messages. Now explicitly forbidden under "identify as automated."
- Aggressive repricers with no human override. The "cease on request" requirement means tools must support immediate disable. Some older tools don't.
- Free or open-source tools without active maintenance. If the project isn't updated, it likely isn't compliant.
If you're using something from any of these categories, it's worth a vendor email today.
How SellerShorts handles BSA Agent Policy compliance
Quick founder note since I run SellerShorts. The marketplace's architecture was designed before the BSA Agent Policy took effect, but the design choices we made map cleanly to the new requirements.
- Capability-scoped OAuth. Sellers authorize specific SP-API capabilities at connect time. Agents literally cannot do anything outside what's approved. Maps to "comply continuously."
- Identifiable User-Agent on every call. Maps to "identify as automated."
- Per-order job tokens. Each agent run is scoped to a specific order with a specific user. Revoke any time. Maps to "cease on request."
- Human-in-the-loop default for actions touching live listings or messaging. Maps to spirit of the policy.
- Audit log of every action. For dispute or compliance review.
This isn't a sales pitch. It's the answer to "what does BSA Agent Policy compliance look like in practice for a marketplace platform." If your other tool vendors can't describe their own answer in similar terms, that's a flag.
What happens if you don't comply
Amazon's enforcement options range from soft to hard:
- Soft: warning emails, requests to update tool configuration, suggestions to switch tools.
- Medium: revoking specific tool's API access (the tool keeps working for others, you lose it).
- Hard: account suspension or termination for sellers using non-compliant agents in violation of the BSA.
- Legal: for vendors operating in violation, as the Perplexity case shows.
Most sellers won't hit hard enforcement quickly. Amazon tends to start soft. But the policy is real, and the trajectory is enforcement that becomes more automated and more strict over time.
Frequently asked questions
What is the Amazon BSA Agent Policy effective March 4, 2026?
Amazon updated its Business Solutions Agreement on March 4, 2026 to include an Agent Policy that defines what counts as an 'Agent' acting on a seller's account and imposes three baseline obligations: identify as automated, comply continuously with the policy, and cease access on Amazon's request. Continued selling after March 4 counts as automatic acceptance with no opt-out.
What counts as an 'Agent' under the new Amazon policy?
Any automated software or AI system that takes actions on a seller's account or accesses Amazon services on the seller's behalf. That includes repricers, PPC managers, listing tools, inventory systems, customer-service bots, AI agents from marketplaces like SellerShorts, and even simple scheduled SP-API scripts. The bar is whether software acts on your account using your authorization.
Did I have to accept the new BSA Agent Policy?
No explicit acceptance was required. Continued selling on Amazon after March 4, 2026 counts as automatic acceptance. There was no opt-in form or separate acknowledgment.
What did the Amazon-Perplexity lawsuit have to do with the policy?
On November 4, 2025 Amazon filed suit against Perplexity in the Northern District of California over Comet, Perplexity's AI browser. Amazon alleged Comet disguised automated sessions as Chrome browser traffic and accessed Amazon accounts without authorization. Amazon won a preliminary injunction on March 9, 2026. The case set the stage for the broader BSA Agent Policy by moving Amazon from case-by-case enforcement to explicit baseline rules every Agent must follow.
Are agents using the Amazon Ads MCP Server exempt from the BSA Agent Policy?
No. The Amazon Ads MCP Server launched February 2, 2026, before the BSA Agent Policy took effect. Any agent using MCP to act on your account is still an Agent under the BSA definition. The MCP layer does not exempt the agent from the three baseline obligations.
What to read next
- AI agent vs Amazon Seller Assistant. Comparing third-party agents to Amazon's free in-house option.
- Amazon Ads MCP Server guide. The other major 2026 protocol change.
- Best AI agents for Amazon FBA. What's worth using post-policy.
- Challenges and limitations (universal). The broader risk picture this policy responds to.
A BSA-compliant marketplace foundation
SellerShorts is built on capability-scoped OAuth, identifies as automated to Amazon, and supports revocation at any time. AI Tool builders publish their tools on top of this BSA-aware foundation, so any tool published inherits the compliance posture. If you need a compliant tool for a use case that isn't published yet, post a request and AI Tool builders see the demand.