Verifying you are human

Please complete the security check to continue to Zipwyn.

Privacy Policy

Last updated: January 1, 2025

1. Introduction

Welcome to Zipwyn ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at zipwyn.navindalc.app and use our URL shortening services. Please read this privacy policy carefully. By using our service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Personal Information

When you sign in using Google or GitHub OAuth, we collect your name, email address, and profile picture as provided by your OAuth provider. We do not collect or store passwords.

Usage Data

We collect information about how you use our service, including the URLs you shorten, click counts on your short links, and timestamps of link creation and usage.

Technical Data

We may collect technical data such as your IP address, browser type, and device information for security purposes and to protect against bot abuse via Cloudflare Turnstile.

3. How We Use Your Information

  • To provide, operate, and maintain our URL shortening service
  • To authenticate your identity and manage your account
  • To track click analytics on your shortened links
  • To improve, personalize, and expand our service
  • To protect against unauthorized access, abuse, and bot traffic
  • To communicate with you about service updates when necessary

4. Data Storage & Security

Your data is stored securely in AWS DynamoDB with encrypted connections. We use industry-standard security measures including HTTPS encryption for all traffic, JWT-based session tokens, and OAuth 2.0 for authentication. We do not sell, trade, or otherwise transfer your personal information to third parties.

5. Third-Party Services

We use the following third-party services:

  • Google OAuth — for authentication
  • GitHub OAuth — for authentication
  • AWS DynamoDB — for data storage
  • Vercel — for application hosting
  • Cloudflare Turnstile — for bot protection

Each of these services has its own privacy policy governing the use of your data.

6. Cookies & Local Storage

We use essential cookies for session management via NextAuth.js. We also use browser session storage to cache Cloudflare Turnstile verification status and local storage for theme preferences. We do not use tracking cookies or advertising cookies.

7. Your Rights

You have the right to access, update, or delete your personal information at any time. You can delete your short links from the dashboard and delete your account from the Settings page. For data export requests or any privacy concerns, please contact us.

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at contact@navindalc.app.