Etsy integration

Automated digital delivery for Etsy sellers

YourSender connects to your Etsy shop, watches for paid receipts on the listings you choose, and emails each buyer their licence key or downloadable file the moment payment clears. The integration is read-only and shop-scoped: we don't modify your listings, change prices, or message your buyers outside of the delivery email itself.

Connect your Etsy shop →What data do you access? ↓
How it works

Five steps, fully automatic

  1. 1

    The seller authorises YourSender

    The seller signs in to YourSender and clicks Connect on the Etsy card. We open Etsy's OAuth 2.0 consent screen (PKCE flow) and the seller approves the read-only scopes listed below. Etsy sends us a refresh token; we store it encrypted at rest with AES-256-GCM.

  2. 2

    The seller maps a listing to a digital product

    In the YourSender dashboard, the seller chooses one of their Etsy listings and points it at a digital product they have already uploaded — a downloadable file, a license-key pool, or a combination of both. The seller stays in control of which listings are managed by YourSender.

  3. 3

    A buyer purchases the listing on Etsy

    The buyer checks out on etsy.com as normal. Etsy collects payment, captures the buyer's address and email, and creates a receipt. YourSender plays no role in this step — we are not a payment processor, marketplace, or store.

  4. 4

    YourSender reads the receipt

    Once every five minutes, YourSender polls the Etsy Open API v3 endpoint /shops/{shop_id}/receipts for receipts in PAID state that we have not yet processed. We respect Etsy's published rate-limit budget and stop polling well below the 10,000-requests-per-day ceiling.

  5. 5

    The buyer receives delivery

    For each new paid receipt, YourSender matches each transaction's listing to a YourSender product, generates the licence key or download link, and emails the buyer the seller's branded delivery template. The seller can resend or replace the delivery from the dashboard at any time.

OAuth scopes

What we request, and why

YourSender requests only the minimum scopes needed to fulfil orders. Both are read-only.

transactions_rread-only

Read receipts

Detect newly paid orders so we can deliver the buyer their digital product.

GET /v3/application/shops/{shop_id}/receiptsGET /v3/application/shops/{shop_id}/receipts/{receipt_id}
listings_rread-only

Read shop listings

Let the seller browse their own active listings inside the YourSender dashboard so they can map listings to digital products by SKU.

GET /v3/application/shops/{shop_id}/listings/activeGET /v3/application/listings/{listing_id}

What we do not request

  • Write scopes: we do not edit listings, change prices, mark orders shipped, or post messages to buyers via Etsy's messaging system.
  • Buyer profile or demographic data beyond what is on the receipt the buyer just placed.
  • Data from buyers who have not transacted with the seller's shop.
  • Any access to sellers other than the one who explicitly connected their shop.
Buyer data

How buyer information is handled

What we store

The buyer's name, email, the listing they purchased, the quantity, the order's creation date, and the message we sent them. Nothing else.

How long

For as long as the seller's account remains active, plus up to 24 months after closure. After that, buyer records are deleted or anonymised.

Encryption

All OAuth tokens, refresh tokens, and webhook secrets are encrypted at rest using AES-256-GCM. All traffic between YourSender and Etsy uses TLS 1.2 or higher.

Deletion path

A buyer who wants their record removed can write to the seller (the data controller) or directly to [email protected]. We respond within 30 days.

Full details in our Privacy Policy.

Compliance

Built to follow Etsy's rules

  • OAuth 2.0 with PKCE. The code verifier is generated server-side, kept in Redis bound to the OAuth state nonce, and never exposed to the browser.
  • Rate-limit aware. We poll receipts at most once every five minutes per connected shop and budget against Etsy's 10,000-requests-per-day-per-app limit. Polling backs off on 429 with Retry-After.
  • Token rotation. Etsy refresh tokens are rotated on each refresh and stored only in encrypted form. If Etsy revokes a token, we deactivate the connection and notify the seller to reauthorise.
  • One-click disconnect. The seller can revoke YourSender's access at any time from the connections page; the refresh token is deleted within 30 days, the connection record is anonymised, and all stored buyer data attached to the shop is purged on the seller's closure of their YourSender account.
  • No shipped-mark by default. Posting tracking back to Etsy requires the transactions_w scope, which we do not request. Sellers who want YourSender to mark deliveries as shipped on Etsy can opt in; the additional scope is requested only at that point.

Connect your Etsy shop in two minutes.

Sign up for a YourSender account, click Connect on the Etsy card, and authorise the read-only scopes. Free for the first 50 deliveries — no credit card.

Start for free →

Operated by Pageey.com Jakub Rozanski (Poland) · Privacy · Terms