MicrLinkMicrLink/privacy

effective April 21, 2026

Privacy policy.

The short version: we collect the minimum needed to run a URL shortener with click analytics, we don’t sell it, we don’t use it to build ad profiles, and we don’t share it with third-party trackers.

1. What we collect

When you shorten a URL

  • The original URL you paste and the short code assigned to it.
  • The timestamp when it was created.

When someone visits a short link

  • The short code visited and the timestamp.
  • The visitor’s IP address, as forwarded by the network edge.
  • The User-Agent string their browser sends (e.g., “Chrome on macOS”).
  • The Referer header, if their browser sends one (indicates which page linked to the short URL).

We don’t use cookies, localStorage trackers, analytics pixels, session recording, or browser fingerprinting. There is no third-party JavaScript on this site.

2. What we do with it

  • Redirect you to the original URL — that’s the whole point.
  • Show click counts on the homepage (aggregated totals only) and on per-link stats pages (timestamps, user-agent labels, and referer hosts).
  • Detect and remove abuse (spam, phishing, malware). IP addresses are kept for this reason — never displayed publicly.

3. What we never do

  • Expose IP addresses through the public stats pages or the JavaScript on this site. IPs live in the database only, behind row-level security that denies public SELECT.
  • Sell, rent, or share data with advertisers or data brokers.
  • Use the data to build behavioral profiles of visitors or link creators.
  • Embed third-party analytics (Google Analytics, Meta Pixel, etc.).

4. Public information

Short links are public. Anyone who knows the URL can visit it, and anyone who knows the short code can see its stats at /s/code. Don’t put sensitive material behind a short link.

5. Retention

Short URLs are retained indefinitely unless deleted for abuse. Click records are retained for as long as the corresponding short URL exists. If the destination URL goes dead or violates our terms, the short URL and all its click records are removed.

6. Where it’s stored

All data is stored in Supabase (PostgreSQL) in a single region. The application runs on Vercel’s edge network. We don’t replicate data to any other platform.

7. Your rights

  • Deletion: you can request deletion of any short link you created. Email the contact listed in the footer with the short code.
  • Access: click stats are already public for any code. If you need the raw data, ask.
  • EU / UK / CA residents: you have the usual rights under GDPR / UK-GDPR / PIPEDA (access, rectification, erasure, portability, objection). Exercise them via the contact link.

8. Changes to this policy

If this policy changes meaningfully, the “effective” date at the top of this page updates. Minor edits (typos, link fixes) are made silently.

9. Contact

Privacy questions, deletion requests, or “wait you actually don’t track me?”: reach us through the source repo link in the footer.

last updated April 21, 2026 · this is not legal advice