Linki Social
Privacy Policy
Last updated: February 2026
Introduction
Linki Social ("we," "our," or "us") operates the linki.social website and service. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
By using Linki Social, you agree to the collection and use of information in accordance with this policy.
Information We Collect
Account Information
When you sign up using Google OAuth, we collect:
Your email address (used as your unique account identifier)
Your name (used as your default display name)
Your Google profile picture URL (used as your default avatar)
When you sign up with email and password, we collect:
Your email address (used as your unique account identifier)
A bcrypt hash of your password (your plain-text password is never stored)
Profile Information
Information you voluntarily provide:
Username (your unique linki.social URL)
Display name
Bio/description
Profile picture (if you upload a custom one)
Links you add to your profile (URLs and display text)
Layout and color preferences
Analytics Data
When visitors view your profile or click your links, we collect:
Page view timestamps
Link click timestamps and which link was clicked
Traffic source identifiers (the trackId from your URL, e.g., /yourname/instagram)
Referrer URLs (the page visitors came from)
User agent strings (browser and device information)
This analytics data is associated with the profile owner, not individual visitors. We do not track or identify individual visitors.
Automatically Collected Information
We store an authentication token in your browser's local storage to keep you logged in. We do not use cookies for tracking purposes.
How We Use Your Information
We use the collected information to:
Provide and maintain the service
Create and manage your account
Display your public profile to visitors
Generate analytics about your profile's traffic and engagement
Authenticate your access to your account
Respond to your inquiries and provide support
Detect and prevent fraud or abuse
Data Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties. We may share information in the following circumstances:
With service providers: We use Amazon Web Services (AWS) to host our infrastructure, including databases, file storage, and computing services.
With Google: During authentication, Google receives confirmation that you logged into our service.
With Loopi (optional): If you explicitly connect Loopi via your analytics dashboard, your analytics data (page views and link clicks) will be readable by Loopi's systems. You can disconnect this at any time.
Public profile: Your username, display name, bio, avatar, and links are publicly visible to anyone who visits your profile URL.
Legal requirements: We may disclose information if required by law or to protect our rights.
Third-Party Services
Google OAuth
We use Google OAuth for authentication. When you sign in, Google shares your email, name, and profile picture with us. Google's use of your information is governed by Google's Privacy Policy.
Amazon Web Services
Your data is stored and processed using AWS services including DynamoDB (database), S3 (file storage), CloudFront (content delivery), and Lambda (computing). Data is stored in the United States (us-west-2 region). AWS's handling of data is governed by the AWS Privacy Policy.
Loopi (Optional Integration)
Loopi is an independent third-party AI service at loopi.social. You may optionally connect Loopi from your analytics dashboard. If you do, Loopi's systems will be granted read access to your Linki analytics data (page views and link clicks). This connection:
Is entirely optional and off by default
Only shares your analytics data — not your account details, email, or links
Can be revoked at any time from your Settings page
Is governed by Loopi's own Privacy Policy, which you should review before connecting
Data Retention
Account and profile data: Retained indefinitely until you request deletion.
Links: Retained indefinitely until you delete them.
Analytics data: Automatically deleted after 365 days.
Application logs: Retained for 30 days.
Uploaded avatars: Retained until you replace or delete them.
Data Security
We implement appropriate security measures to protect your information:
All data transmitted via HTTPS/TLS encryption
Authentication tokens expire after 30 days
Database access restricted via AWS IAM policies
File storage blocked from public access, served only via secure CDN
However, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security of your data.
Your Rights and Choices
You have the right to:
Access your personal data through your account settings
Update or correct your profile information at any time
Delete your links and reset your analytics data
Delete your account and all associated data directly from Settings
Disconnect any third-party integrations (such as Loopi) at any time from Settings
To exercise these rights, access your account settings or contact us at the email address below.
Children's Privacy
Linki Social is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
International Data Transfers
Your information may be transferred to and processed in the United States, where our servers are located. By using Linki Social, you consent to this transfer. We take steps to ensure your data is treated securely and in accordance with this Privacy Policy.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.
Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us at: loopisocial [at] gmail [dot] com