To provide you with our services, we collect certain personal information when you create an account. This includes your email address, which is used for account verification and communication. We also store an encrypted version of your password - we never have access to your actual password. You may optionally provide a display name to personalize your experience.
The core functionality of our service requires us to collect information about the URLs you shorten. This includes the original URL you wish to shorten and the generated short URL path. We record the creation date and time of each shortened URL to manage our service effectively. For security purposes, we temporarily store IP addresses to prevent abuse and maintain service integrity. This information is automatically deleted after 30 days.
Your information is used solely for providing and improving our URL shortening service. This includes maintaining your personal dashboard where you can manage your shortened URLs, sending important service notifications about your account or URLs, and ensuring the security and reliability of our platform. We process this information based on the legitimate interests of providing you with our service and fulfilling our contractual obligations to you as a user.
We implement comprehensive security measures to protect your data. All data transmission occurs over HTTPS encryption, ensuring that your information remains secure during transit. We employ industry-standard password hashing algorithms to protect your credentials. Our systems undergo regular security audits to identify and address potential vulnerabilities. We maintain robust DDoS protection to ensure service availability and protect against malicious attacks.
All user data is stored on secure servers located within the European Union, ensuring compliance with EU data protection regulations. We implement multiple layers of security controls, including encryption at rest, access controls, and regular security monitoring. Our infrastructure is designed with privacy and security as core principles, utilizing industry best practices for data protection.
We are committed to providing a privacy-respecting service. We do not implement any form of tracking cookies or analytics on shortened URLs. Your data is never shared with third parties for marketing or analytical purposes. We do not build user profiles or analyze URL patterns. Our service operates on the principle of data minimization - we only collect what's necessary to provide our core service.
As a user of our service, you have comprehensive rights under the GDPR and other privacy regulations. You may request access to all personal data we hold about you at any time. You have the right to correct any inaccurate information in your account. You can request complete deletion of your account and associated data. We provide data export functionality to help you transfer your information. You may withdraw consent for data processing at any time, though this may affect service functionality.
We maintain transparent data retention policies. Account information is retained as long as you maintain an active account with us. Your shortened URLs and associated data remain available until you explicitly delete them or close your account. Security logs, including IP addresses and access records, are automatically purged after 30 days. When you delete your account, we ensure complete removal of all associated data within 14 days.
Our cookie usage is limited to essential functionality only. We use session cookies solely for maintaining your login state and ensuring secure authentication. Security cookies protect against cross-site request forgery and maintain platform security. These cookies are temporary and contain no tracking mechanisms. We do not use any cookies for marketing, analytics, or non-essential features.
As our service evolves and privacy regulations change, we may update this policy. When we make significant changes, we will notify you directly via email and through our service interface. Minor updates may be made without direct notification but will be reflected in the 'Last Updated' date. We encourage you to review this policy periodically to stay informed about how we protect your data.
For any questions or concerns regarding your privacy, our Data Protection Officer is available to assist you. You can reach us at privacy@b1t.pt.
Last updated: June 9, 2025