Privacy Policy and GDPR

Our privacy policy and how we use your data

Last updated: July, 2026
Version: 1.0

At ownlink.app, we are committed to protecting your privacy and keeping your personal data secure. This Privacy Policy explains how we collect, use, share, and safeguard your information in accordance with applicable privacy and data protection laws, including the GDPR where it applies.

ownlink.app provides tools for creating, managing, and tracking short links, branded links, custom domains, QR codes, tracking parameters, and related link analytics.

This policy is intended to help explain our data practices in a clear and transparent way, including how we process personal data in connection with the ownlink.app website, dashboard, and related services.

Privacy Policy

This Privacy Policy explains what personal data ownlink.app (“we”, “us”, or “our”) collects, how we use it, and the choices you have.

It applies to:

  • the ownlink.app website;
  • the ownlink.app application and dashboard;
  • short links, branded links, QR codes, and custom domains created through our service;
  • analytics, tracking, and reporting features provided through the service;
  • communications with us, including support and account-related messages.

Data We Collect

We collect only the data that is necessary to provide, operate, secure, and improve the ownlink.app service.

Account Data

When you create an account or use ownlink.app, we may collect information such as:

  • your name;
  • your email address;
  • your password or authentication credentials;
  • your account settings and preferences;
  • your workspace, team, or organization information, if applicable.

Passwords are not stored in plain text.

Link and Service Usage Data

When you use ownlink.app to create or manage links, QR codes, tracking parameters, or custom domains, we may collect and store information such as:

  • short links you create;
  • destination URLs;
  • custom aliases or slugs;
  • custom domains connected to your account;
  • QR code settings and generated QR codes;
  • Campaign tracking parameters;
  • link status, settings, tags, or metadata;
  • dashboard activity related to link creation, editing, deletion, and management.

Link Analytics Data

When someone visits or interacts with a short link, branded link, or QR code created through ownlink.app, we may collect analytics data such as:

  • timestamp of the click or scan;
  • short link or QR code used;
  • destination URL;
  • referrer information, where available;
  • approximate location, such as country or region;
  • device type;
  • browser type;
  • operating system;
  • IP address or derived technical information;
  • user agent;
  • campaign or tracking parameters.

This data is used to provide link analytics, reporting, security monitoring, abuse prevention, and service improvement.

Technical Data

When you access our website or application, we may collect technical information such as:

  • IP address or derived technical information;
  • browser type and version;
  • device information;
  • operating system;
  • pages visited;
  • session information;
  • log data;
  • cookie identifiers or similar technologies, where applicable.

Billing Data

If you subscribe to a paid plan, billing and payment information may be processed by our payment provider.

We may receive and store limited billing-related information, such as:

  • billing name, email and address, where required;
  • subscription status;
  • plan type;
  • invoice information;
  • payment status;
  • transaction identifiers.

We do not directly store full payment card details unless explicitly stated. Payment card processing is handled by our payment provider.

Support and Communication Data

When you contact us for support or communicate with us, we may collect:

  • your name;
  • your email address;
  • the content of your message;
  • account or technical information needed to resolve your request;
  • previous communication history.

How We Use Your Data

We use personal data to provide, maintain, secure, and improve ownlink.app.

This includes using data for the following purposes:

  • to create and manage your account;
  • to provide access to the ownlink.app dashboard;
  • to create, manage, and redirect short links;
  • to support branded links and custom domains;
  • to generate and manage QR codes;
  • to provide link analytics, click statistics, and reporting;
  • to process subscriptions, invoices, and payments;
  • to communicate with you about your account, service updates, support requests, billing, and security notices;
  • to detect, prevent, and investigate fraud, abuse, spam, phishing, malware, or other security threats;
  • to monitor performance, debug errors, and improve service reliability;
  • to understand how users interact with the service and improve the product experience;
  • to enforce our terms, policies, and acceptable use rules;
  • to comply with legal obligations.

We may also use aggregated or anonymized data for analytics, product improvement, and business reporting. Aggregated or anonymized data does not directly identify you.

How We Share Your Data

We do not sell your personal data.

We share personal data only when necessary to operate, secure, provide, or improve the ownlink.app service, or when legally required.

We may share data with the following categories of recipients:

Service Providers and Subprocessors

We may use trusted third-party service providers to help us operate the service. These may include providers for:

  • cloud hosting and infrastructure;
  • database hosting and storage;
  • email delivery;
  • analytics;
  • error monitoring;
  • customer support;
  • authentication;
  • payment processing;
  • security and abuse prevention.

These providers process data on our behalf and only as needed to provide their services to us.

Payment Providers

If you subscribe to a paid plan, payment and billing data may be shared with payment providers to:

  • process payments;
  • manage subscriptions;
  • issue invoices;
  • detect and prevent payment fraud;
  • comply with tax, accounting, and legal requirements.

Security, Fraud, and Abuse Prevention Providers

To protect ownlink.app, our users, and the public from abuse, we may process or share limited data with security or fraud-prevention providers.

This may include:

  • email address;
  • IP address;
  • user agent;
  • account activity;
  • destination URLs;
  • custom domains;
  • link metadata;
  • suspected abuse reports.

This processing helps us detect, prevent, and investigate spam, phishing, malware, fraudulent signups, malicious links, and other misuse of the service.

Domain, DNS, and Certificate Providers

If you connect or use a custom domain with ownlink.app, we may process and share technical domain-related information with providers involved in:

  • domain verification;
  • DNS configuration;
  • SSL/TLS certificate issuance;
  • domain routing;
  • secure HTTPS support.

This may include domain names, DNS records, and technical configuration details required to provide the custom domain functionality.

Authorities and Legal Requirements

We may disclose personal data if required to do so by law or in response to a valid legal request.

This may include disclosure to:

  • courts;
  • regulators;
  • law enforcement;
  • government authorities;
  • other parties where disclosure is necessary to protect our rights, users, systems, or the public.

Where possible and legally permitted, we will seek to limit such disclosures to the minimum necessary information.

Hosting and International Data Transfers

Customer data for ownlink.app is hosted and stored in the European Union.

Where possible, we use EU-based infrastructure and service providers to store and process customer data.

However, some third-party service providers may process limited personal data outside the European Union or European Economic Area. Where personal data is transferred outside the EU/EEA, we rely on appropriate safeguards where required, such as:

  • Standard Contractual Clauses approved by the European Commission;
  • data processing agreements with our service providers;
  • technical and organizational measures designed to protect personal data;
  • other legally recognized transfer mechanisms.

Legal Basis for Processing

Where GDPR applies, we process personal data based on one or more of the following legal bases:

Contract

We process personal data when it is necessary to provide the service you signed up for.

This includes:

  • creating and managing your account;
  • providing the dashboard;
  • creating and managing short links;
  • supporting custom domains;
  • generating QR codes;
  • providing analytics and reporting;
  • processing subscriptions and billing.

Legitimate Interests

We may process personal data based on our legitimate interests, provided those interests are not overridden by your rights and freedoms.

This includes processing data to:

  • keep the service secure;
  • prevent fraud, spam, phishing, malware, and abuse;
  • improve product functionality;
  • monitor performance and fix errors;
  • understand service usage;
  • respond to support requests;
  • enforce our terms and policies.

Consent

We may rely on your consent for certain optional processing activities, such as:

  • non-essential cookies;
  • optional analytics cookies;
  • marketing communications;
  • marketing or advertising technologies, if used.

You can withdraw your consent at any time where processing is based on consent.

Legal Obligation

We may process personal data where necessary to comply with legal obligations, such as:

  • accounting and tax requirements;
  • payment and billing records;
  • responding to valid legal requests;
  • complying with applicable laws and regulations.

Data Retention

We retain personal data only for as long as necessary to provide the ownlink.app service, comply with legal obligations, resolve disputes, enforce agreements, and maintain security.

Retention periods may vary depending on the type of data.

For example:

  • account data is generally retained while your account remains active;
  • link and analytics data is retained as needed to provide analytics and reporting features;
  • billing and invoice data may be retained for legal, tax, and accounting purposes;
  • security logs may be retained for a limited period to detect and investigate abuse or unauthorized access;
  • support messages may be retained to provide customer support and maintain communication history.

You may request deletion of your personal data by contacting us. Some data may need to be retained where required by law, for legitimate security reasons, or to complete existing contractual or legal obligations.

Contact

For any privacy-related questions, requests, or concerns, you can contact us at:

[email protected]

Cookie Policy

This Cookie Policy explains how ownlink.app (“we”, “us”, or “our”) uses cookies and similar technologies on our website, application, dashboard, and related services.

Cookies are small text files stored on your device when you visit a website or use an online service. Cookies and similar technologies help us keep the service secure, keep you signed in, remember your preferences, understand how the service is used, and improve the user experience.

Some cookies are necessary for the service to work. Other cookies, such as analytics cookies, are optional and are used only where permitted by applicable law and, where required, with your consent.

Categories of Cookies We Use

Strictly Necessary Cookies

Strictly necessary cookies are required for ownlink.app to function properly.

These cookies may be used for:

  • authentication and login sessions;
  • account security;
  • fraud and abuse prevention;
  • remembering your cookie preferences;
  • maintaining secure access to the dashboard;
  • enabling core service functionality.

Strictly necessary cookies are always active because the service cannot function properly without them.

Analytics and Measurement Cookies

Analytics and measurement cookies help us understand how visitors and users interact with ownlink.app.

These cookies may help us understand:

  • which pages are visited;
  • how users navigate the website or dashboard;
  • which features are used;
  • whether users experience errors or performance issues;
  • how we can improve the product and user experience.

We use analytics and measurement tools only where permitted by applicable law and, where required, with your consent.

Functional Cookies

Functional cookies may be used to remember optional preferences or improve the user experience.

These may include preferences such as:

  • interface settings;
  • saved choices in the dashboard;
  • cookie preference settings;
  • other optional functionality that improves usability.

If we do not use a specific functional feature, no related functional cookie will be set.

Marketing Cookies

ownlink.app does not use marketing or advertising cookies by default.

If we introduce advertising, remarketing, or conversion-tracking tools in the future, we will update this Cookie Policy and request consent where required before using those technologies.

Similar Technologies

In addition to cookies, we may use similar technologies such as:

  • local storage;
  • session storage;
  • tracking pixels;
  • server-side logs;
  • device and browser identifiers.

These technologies may be used for security, authentication, analytics, performance monitoring, and abuse prevention.

Link Analytics and Cookies

ownlink.app provides link analytics for short links, branded links, custom domains, and QR codes created through the service.

When someone clicks a link or scans a QR code created through ownlink.app, we may collect technical and analytics information such as:

  • timestamp of the click or scan;
  • short link or QR code used;
  • destination URL;
  • referrer information, where available;
  • approximate location, such as country or region;
  • device type;
  • browser type;
  • operating system;
  • IP address or derived technical information;
  • user agent;
  • campaign or tracking parameters.

This link analytics data is primarily collected through server-side processing and logs, not necessarily through cookies placed by ownlink.app on the visitor’s device.

The purpose of this processing is to provide analytics to our users, operate the service, detect abuse, prevent fraud, and maintain service security.

Managing Cookie Preferences

You can accept, reject, or change your preferences for non-essential cookies at any time through the cookie preferences panel.

You can also control cookies through your browser settings. Most browsers allow you to block, delete, or manage cookies. However, blocking strictly necessary cookies may prevent parts of ownlink.app from working properly.

Withdrawing consent does not affect the lawfulness of processing based on consent before it was withdrawn.

Third-Party Services and Subprocessors

We use selected third-party service providers to operate, secure, analyze, and improve ownlink.app.

These providers may process personal data on our behalf only as needed to provide their services to us.

SubprocessorPurposeData sharedWhen
CloudflareDNS, security, performance, traffic routing, and related infrastructure servicesIP address, request metadata, domain information, security logs, and technical traffic dataWhen you access ownlink.app, use the dashboard, or access links/domains routed through the service
StripePayment processing and subscription managementBilling name, billing email, billing address where required, payment information, transaction identifiers, subscription status, and invoice dataWhen you subscribe to a paid plan, make a payment, or manage billing
Google Sign-InSocial login and authenticationEmail address, Google account identifier, profile information provided by Google, and authentication tokensWhen you choose to sign in or register using Google
Google AnalyticsWebsite and product analyticsUsage data, page views, device and browser information, approximate location, event data, and cookie identifiers where applicableWhen analytics is enabled and permitted by applicable law or consent
Google Tag ManagerTag management for analytics or other website scriptsTechnical information related to script loading and tag execution; data passed to configured tagsWhen tag management is used on the website or application

Cloudflare

We use Cloudflare to help provide secure, reliable, and performant access to ownlink.app.

Cloudflare may process technical data such as IP addresses, request metadata, security logs, DNS information, and traffic data in order to provide security, routing, performance, and abuse-prevention services.

Some Cloudflare services may be necessary for the security and operation of ownlink.app.

Google Analytics and Google Tag Manager

We may use Google Analytics to understand how visitors and users interact with ownlink.app and to improve our website, product, and user experience.

Google Tag Manager may be used to manage analytics or other website scripts. Google Tag Manager itself is a tag management system and does not create user profiles by default, but it may load other tags that process personal data depending on our configuration.

Contact

For any questions about this Cookie Policy or how ownlink.app uses cookies and similar technologies, contact us at: [email protected]

Your Rights

Depending on your location and applicable privacy laws, including the GDPR where it applies, you may have certain rights regarding your personal data.

These rights may include:

  • Right to access — you can request a copy of the personal data we hold about you.
  • Right to rectification — you can ask us to correct inaccurate or incomplete personal data.
  • Right to erasure — you can ask us to delete your personal data.
  • Right to restrict processing — you can ask us to limit how we use your personal data in certain circumstances.
  • Right to data portability — you can request to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to object — you can object to processing based on our legitimate interests.
  • Right to withdraw consent — where we process personal data based on your consent, you can withdraw that consent at any time.

Data Deletion Requests

You can request deletion of your account and personal data by contacting us at: [email protected]

When requesting deletion, please contact us from the email address associated with your ownlink.app account so we can verify the request.

After receiving a valid deletion request, we will delete or anonymize your personal data unless we are required or permitted to retain certain information for legal, tax, accounting, security, fraud-prevention, dispute-resolution, or service-integrity reasons.

Cookie Consent Management

You can manage your cookie preferences and withdraw consent at any time.

Non-essential cookies, such as analytics cookies, can be accepted or rejected through the cookie preferences panel.

If you reject non-essential cookies, ownlink.app will continue to function, but some optional analytics or preference-based features may be limited.