Privacy Policy
Last updated: January 1, 2025
1. Introduction
Welcome to Zipwyn ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at zipwyn.navindalc.app and use our URL shortening services. Please read this privacy policy carefully. By using our service, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
Personal Information
When you sign in using Google or GitHub OAuth, we collect your name, email address, and profile picture as provided by your OAuth provider. We do not collect or store passwords.
Usage Data
We collect information about how you use our service, including the URLs you shorten, click counts on your short links, and timestamps of link creation and usage.
Technical Data
We may collect technical data such as your IP address, browser type, and device information for security purposes and to protect against bot abuse via Cloudflare Turnstile.
3. How We Use Your Information
- To provide, operate, and maintain our URL shortening service
- To authenticate your identity and manage your account
- To track click analytics on your shortened links
- To improve, personalize, and expand our service
- To protect against unauthorized access, abuse, and bot traffic
- To communicate with you about service updates when necessary
4. Data Storage & Security
Your data is stored securely in AWS DynamoDB with encrypted connections. We use industry-standard security measures including HTTPS encryption for all traffic, JWT-based session tokens, and OAuth 2.0 for authentication. We do not sell, trade, or otherwise transfer your personal information to third parties.
5. Third-Party Services
We use the following third-party services:
- Google OAuth — for authentication
- GitHub OAuth — for authentication
- AWS DynamoDB — for data storage
- Vercel — for application hosting
- Cloudflare Turnstile — for bot protection
Each of these services has its own privacy policy governing the use of your data.
6. Cookies & Local Storage
We use essential cookies for session management via NextAuth.js. We also use browser session storage to cache Cloudflare Turnstile verification status and local storage for theme preferences. We do not use tracking cookies or advertising cookies.
7. Your Rights
You have the right to access, update, or delete your personal information at any time. You can delete your short links from the dashboard and delete your account from the Settings page. For data export requests or any privacy concerns, please contact us.
8. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.
9. Contact Us
If you have any questions about this Privacy Policy, please contact us at contact@navindalc.app.