Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your information when you use LinkLock.

Last updated:5/25/2025

Privacy Commitment

LinkLock is committed to protecting your privacy and being transparent about our data practices. This Privacy Policy explains how we collect, use, share, and safeguard your personal information when you use our link protection services.

Key Principles: We never sell your personal data, we use industry-standard security measures, and we give you control over your information. This policy applies to all LinkLock services and platforms.

1Information We Collect

Account Information

  • • Email address and password (hashed)
  • • Name and company details (optional)
  • • Profile information and preferences
  • • Billing and payment information (via Stripe)
  • • Communication preferences and settings
  • • Account creation and last login dates

Usage Data

  • • Features used and access patterns
  • • API calls and integration data
  • • Link creation and management activities
  • • Dashboard interactions and settings
  • • Performance metrics and error logs
  • • Session duration and frequency of use

Link Analytics Data

  • • Click timestamps and frequency
  • • Geographic locations (country/region only)
  • • Device types and browser information
  • • Referrer websites and traffic sources
  • • Conversion tracking (anonymized)
  • • Bot detection and filtering data

Technical Information

  • • IP addresses (for security and analytics)
  • • Browser type, version, and settings
  • • Operating system and device information
  • • Network connection type and provider
  • • Security logs and access attempts
  • • Cookies and local storage data

Storefront Data

  • • Storefront profile information and bio
  • • Product listings and descriptions
  • • Category organization and themes
  • • Social media links and contact info
  • • Storefront visitor analytics and behavior
  • • Product performance and click data

Data We Do NOT Collect

❌ Personal Content
We don't access the content of your destination URLs
❌ Financial Details
Credit card numbers are handled by payment processors
❌ Private Communications
We don't monitor emails or private messages

2How We Use Your Information

Core Service Operations

  • • Provide link protection and redirection services
  • • Generate analytics and performance reports
  • • Process payments and manage billing
  • • Provide customer support and troubleshooting
  • • Maintain and improve service functionality
  • • Enable API access and third-party integrations

Security & Improvement

  • • Enhance AI-powered threat detection models
  • • Improve security features and fraud prevention
  • • Monitor for abuse, spam, and policy violations
  • • Comply with legal obligations and requests
  • • Conduct security audits and vulnerability assessments
  • • Develop new features based on usage patterns

Legal Basis for Processing (GDPR)

Contract
Service delivery and account management
Legitimate Interest
Security, fraud prevention, service improvement
Consent
Marketing communications (optional)
Legal Obligation
Tax records, law enforcement requests

3Data Protection & Security

Technical Safeguards

  • • AES-256 encryption for data at rest
  • • TLS 1.3 encryption for data in transit
  • • Regular automated security scans and audits
  • • Multi-factor authentication support
  • • Secure API endpoints with rate limiting
  • • Database encryption and access controls
  • • Regular security patches and updates
  • • Intrusion detection and prevention systems

Organizational Measures

  • • Strict access controls and role-based permissions
  • • Regular employee privacy and security training
  • • Comprehensive incident response procedures
  • • Regular compliance reviews and assessments
  • • Third-party security audits and penetration testing
  • • Data minimization and retention policies
  • • Vendor security assessments and contracts
  • • Business continuity and disaster recovery plans

Compliance & Certifications

GDPR
EU General Data Protection Regulation compliant
CCPA
California Consumer Privacy Act compliant
SOC 2
Type II security and availability controls
ISO 27001
Information security management standards

4Information Sharing & Disclosure

We Do NOT Sell Your Personal Information

LinkLock never sells, rents, or leases your personal information to third parties. We only share data in the limited circumstances described below.

Trusted Service Providers

  • • Cloud hosting providers (AWS, Google Cloud)
  • • Payment processors (Stripe, PayPal) - encrypted data only
  • • Email service providers (for notifications)
  • • Analytics services (Google Analytics - anonymized)
  • • Security monitoring and threat detection services
  • • Customer support platforms (for ticket management)

Legal Requirements

  • • Valid law enforcement requests with proper warrants
  • • Court orders and legal proceedings
  • • Protection of our rights, property, and safety
  • • Prevention of fraud and security incidents
  • • Compliance with applicable laws and regulations
  • • National security or public safety requirements

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will provide notice and ensure the same privacy protections continue to apply.

30-Day Notice
Advance notification of any transfer
Same Protections
Privacy terms remain in effect
Opt-Out Rights
Request deletion before transfer

5Your Privacy Rights

Access Rights

Request a copy of all personal data we hold about you

  • Account information
  • Usage history
  • Analytics data
  • Support interactions

Correction Rights

Update or correct any inaccurate information

  • Profile updates
  • Billing information
  • Contact details
  • Preferences

Deletion Rights

Request deletion of your personal data (Right to be Forgotten)

  • Account closure
  • Data anonymization
  • Backup removal
  • Third-party notifications

Portability Rights

Export your data in machine-readable format

  • JSON export
  • CSV format
  • API access
  • Bulk downloads

Restriction Rights

Limit how we process your personal data

  • Processing suspension
  • Marketing opt-out
  • Analytics exclusion
  • Profiling restrictions

Objection Rights

Object to certain types of data processing

  • Marketing communications
  • Automated decisions
  • Profiling activities
  • Research usage

How to Exercise Your Rights

Contact Methods

  • • Email: privacy@getlinklock.com
  • • Account Dashboard: Privacy Settings section
  • • Support Portal: Submit privacy request ticket

Response Timeline

  • • Acknowledgment: Within 72 hours
  • • Simple requests: 5-10 business days
  • • Complex requests: Up to 30 days
  • • Appeals process: 15 business days

6Cookies & Tracking Technologies

We use cookies and similar technologies to enhance your experience, provide functionality, and analyze usage patterns. For detailed information, please see our Cookie Policy.

Essential Cookies

Session to 1 year

Required for basic website functionality

Examples:
  • Authentication tokens
  • Session management
  • Security features
  • Shopping cart

Functional Cookies

1 year

Enhance user experience and remember preferences

Examples:
  • Language settings
  • UI preferences
  • Dashboard layout
  • Timezone

Analytics Cookies

2 years

Help us understand how visitors use our platform

Examples:
  • Usage patterns
  • Feature adoption
  • Performance metrics
  • Error tracking

Marketing Cookies

90 days to 2 years

Deliver relevant advertisements and measure effectiveness

Examples:
  • Ad targeting
  • Campaign tracking
  • Conversion pixels
  • Retargeting

Cookie Management

Browser Settings

Configure cookie preferences in your browser settings

Opt-Out Tools

Use industry opt-out mechanisms for advertising cookies

Privacy Controls

Manage preferences in your account dashboard

7Data Retention & Deletion

Retention Principles

  • • Data minimization - we only keep what's necessary
  • • Purpose limitation - data used only for stated purposes
  • • Regular review cycles for all data categories
  • • Automated deletion when retention periods expire
  • • Legal compliance requirements considered
  • • User-requested deletions honored promptly
Data TypeRetention PeriodPurposeDeletion Method
Account DataActive account + 7 years after closureService provision, legal complianceSecure overwrite + backup purging
Link Analytics3 years from last activityAnalytics, service improvementAutomated deletion + anonymization
Payment Data7 years after last transactionLegal, tax, and financial complianceEncrypted archival + eventual deletion
Security Logs1 year from creationSecurity monitoring, incident responseRolling deletion + summary retention
Support Communications3 years after case closureCustomer service, quality improvementComplete deletion from all systems
Marketing PreferencesUntil opt-out or account deletionCommunication preferences, complianceImmediate removal + suppression list

8International Data Transfers

Global Operations

LinkLock operates globally and may process your data in countries outside your home country. We ensure appropriate safeguards are in place for all international transfers.

Primary Locations
United States, European Union, Canada
Backup Locations
Australia, Singapore, United Kingdom
CDN Presence
Global edge locations for performance

Transfer Safeguards

  • • Standard Contractual Clauses (SCCs) approved by European Commission
  • • Adequacy decisions for countries with adequate protection
  • • Binding Corporate Rules for internal transfers
  • • Additional security measures for sensitive data
  • • Regular compliance reviews and assessments
  • • Data localization options for sensitive customers

Regional Compliance

  • • GDPR compliance for EU residents
  • • CCPA compliance for California residents
  • • PIPEDA compliance for Canadian residents
  • • Privacy Act compliance for Australian residents
  • • LGPD compliance for Brazilian residents
  • • Local data residency options available

9Children's Privacy

Age Restriction - 16+ Only

Our Policy

  • • Services not intended for users under 16 years of age
  • • We do not knowingly collect data from children under 16
  • • Accounts require age verification during signup
  • • Immediate deletion if we discover underage accounts

If You're a Parent

  • • Contact us immediately if you believe we have your child's data
  • • We will verify the claim and delete all associated information
  • • No parental consent process - complete service restriction
  • • Help educate children about online privacy

Reporting Underage Use

Report via Email
privacy@getlinklock.com with subject "Underage Account"
Response Time
Within 24 hours of verification
Action Taken
Complete account and data deletion

10Policy Changes & Updates

How We Handle Changes

Notification Process

  • • Email notification to all active users
  • • In-app notifications for significant changes
  • • Website banner announcing updates
  • • Blog post explaining major modifications

Timeline

  • • 30-day notice period for material changes
  • • Immediate notification for legal requirements
  • • Clear effective date communicated
  • • Version history maintained and accessible

Minor Changes

  • • Clarifications and formatting
  • • Contact information updates
  • • Grammar and language improvements
  • • Additional examples or explanations

Material Changes

  • • New data collection practices
  • • Changes to sharing policies
  • • Modified retention periods
  • • New third-party integrations

Your Options

  • • Continue using with new terms
  • • Request account deletion
  • • Export your data first
  • • Contact us with concerns

11Contact Us

Data Protection Officer

Response Time:Within 30 days (72 hours for acknowledgment)
Languages:English, Spanish, French
Office Hours:Monday-Friday, 9 AM - 6 PM EST

General Support

Response Time:Within 24 hours
For:Account help, technical support, billing questions
Available:24/7 via email, phone during business hours

Regulatory Authorities

If you're not satisfied with our response to your privacy concerns, you have the right to contact your local data protection authority:

EU Residents
Your national Data Protection Authority
UK Residents
Information Commissioner's Office (ICO)
California Residents
California Privacy Protection Agency
Canada Residents
Office of the Privacy Commissioner

Company Information

Legal Entity:
LinkLock Technologies, Inc.
Jurisdiction:
Delaware, United States
EU Representative:
Available upon request for EU residents
Business Registration:
Registration details available upon request