Privacy Policy

Last updated: May 25, 2026

Our standing promises.

We will never sell your personal data, or your visitors' personal data.
We will never load Meta, TikTok, Google Ads, or other ad-tech pixels on your public profile page.
We will never share data with advertisers for cross-site targeting.
You can export your data and delete your account in two clicks, any time, no fees.

Who we are
What we collect
Why we collect it
Your profile visitors
Cookies & trackers
When we share data
Sub-processors
Retention
Security
Your rights
International transfers
Children
Changes
Contact

1. Who we are

LinkLiberator is operated by 17 Solutions LLC (Grafton, WI, USA). When we say "we" or "us" we mean 17 Solutions LLC, the controller of the personal data described in this policy.

2. What we collect

Information you give us when you create an account: your name, email address, chosen handle, password (stored hashed by our authentication provider), and any profile information you add (bio, avatar image, links you choose to publish).

Payment information if you subscribe to a paid plan: handled by our payment processor (Stripe). We receive a transaction record and the last four digits / brand of the card — we do not store full card numbers on our servers.

Usage information: minimal logs needed to operate the Service — IP address, browser type, requested URLs, and timestamps. We use this for security, fraud prevention, debugging, and aggregate product metrics.

Click analytics on your profile: when a visitor taps one of your links we record the click, the link, an approximate location derived from the IP, and the timestamp, so we can show you what's working in your dashboard. We do not build a cross-site advertising profile of your visitors.

3. Why we collect it (legal bases)

To provide the Service you asked for (contract): host your profile, deliver login, process payments, send transactional email.
Legitimate interests: keep the Service secure, detect abuse, prevent fraud, prevent spam, improve product reliability.
Legal obligation: comply with tax, accounting, and law enforcement requirements where they validly apply to us.
Consent (only where required): optional marketing emails, optional cookies. You can withdraw consent at any time.

4. Your profile visitors

When someone visits your public LinkLiberator page, we apply the same minimalist approach. Our public profile pages do not embed advertising trackers, social-network pixels, or cross-site identifiers. We log the request for security and to count an anonymous page view and link clicks so you can see what's working. We do not sell or share that data with advertisers.

5. Cookies & trackers

We use a small number of first-party cookies for things we genuinely need:

Session cookie — keeps you logged in.
CSRF token — protects forms from cross-site request forgery.
Preferences — remembers small choices like dismissed banners.

On our marketing pages (the homepage, this page, etc.) we use a privacy-respecting analytics product to count visits and look at aggregate trends, plus Google Tag Manager / Google Analytics for marketing measurement. You can block these via your browser's tracking-protection settings without affecting use of the Service. We are working on making third-party marketing tags optional via an in-app cookie banner; until then they are limited to our marketing pages, not your public profile pages.

We share personal data only in these specific situations:

Sub-processors who run the Service on our behalf (hosting, email, payments, authentication) — see the list below. They're contractually bound to use the data only to provide their service to us.
Legal requirements — if compelled by valid legal process (subpoena, court order, lawful government request). We push back against overbroad requests where we can, and where we are legally permitted to do so we will tell you before disclosure.
To protect the Service or people — to investigate fraud, security incidents, or serious threats to safety.
Business transfer — if 17 Solutions LLC is acquired or merged, your data may transfer to the successor entity, which must honor this policy or give you notice and a chance to delete your account before its terms change.

We do not sell personal data. We do not share personal data with advertising networks for cross-site behavioral advertising. (If you live in California or another jurisdiction that defines "sell" or "share" broadly, we still don't do it.)

7. Sub-processors

The main third parties that process data on our behalf:

Google Cloud / Firebase — authentication, hosting, database.
Stripe — payment processing for paid plans.
An email delivery provider — to send transactional emails (signup, password reset, billing receipts).
An analytics provider for aggregate marketing-site analytics.

We will update this list when it changes meaningfully. Use the contact form (topic "Privacy") if you'd like the current detailed list.

8. How long we keep data

Account data: while your account is active, plus a short grace window (typically 30 days) after deletion in case you change your mind, then purged from primary systems. Backups roll off on a standard schedule (typically within 90 days).
Click analytics: retained at a row level for up to 24 months, then only aggregate totals survive.
Billing records: kept as long as required by tax and accounting law (typically 7 years).
Security and abuse logs: typically up to 12 months.

9. Security

We use TLS everywhere, store passwords using industry-standard hashing via our auth provider, restrict production access to a small team using single sign-on with 2FA, and review access regularly. No system is perfectly secure, but if we ever experience a personal data breach that puts you at material risk we will notify you in accordance with applicable law (and we will not bury the news).

10. Your rights

Depending on where you live, you may have the right to:

Access the personal data we hold about you;
Correct data that is inaccurate or out of date;
Delete your account and associated personal data;
Port your data to another service in a portable format;
Object to certain processing, or restrict it;
Withdraw consent for any processing based on consent;
Lodge a complaint with your local data-protection authority.

You can exercise most of these from your dashboard. For anything else, use the contact form (topic "Privacy"). We will respond within 30 days (often much sooner). We will never charge a fee for exercising these rights.

11. International transfers

We are based in the United States, and our infrastructure operates in the United States. If you access the Service from outside the US, your data will be transferred to and processed in the US, which may have different privacy laws than your country. Where required (for example, for EU/UK users), we rely on appropriate safeguards such as Standard Contractual Clauses with our sub-processors.

12. Children

LinkLiberator is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, please contact us and we will delete it.

13. Changes to this policy

If we make material changes we will update the date at the top and, where reasonably possible, notify you by email or in-app before the change takes effect. We won't quietly expand how we use your data.

14. Contact

17 Solutions LLC
Grafton, WI 53024, United States
contact form (topic "Privacy")

Not legal advice.

This policy describes our actual practices. It isn't legal advice for you. If you collect information from your own visitors via your LinkLiberator page (for example, through a third-party form you link out to), you are responsible for your own privacy practices.