Privacy Policy

1a. Information you provide

• URLs — long URLs you submit for shortening.
• Bio page content — name, bio text, links, and uploaded images (avatar and background) you provide when creating a bio page.
• Custom slugs — any custom alias you choose for your link.

1b. Information collected automatically

• Click events — when someone clicks a tinyu link, we record the timestamp, the referring domain (e.g. instagram.com), and the link slug. We do not record the visitor's IP address, device, or any personally identifiable information.
• Server logs — standard web server logs (IP address, user agent, timestamp) may be retained for up to 30 days for security and abuse prevention purposes only.

• To operate the Service — store and redirect your short links and bio pages.
• To provide analytics — show you aggregated click counts and referrer data for your own links.
• To prevent abuse — detect and block spam, malware links, and policy violations.
• To improve the Service — understand aggregate usage patterns (no individual tracking).

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Link data and bio page content are stored on secure cloud infrastructure (AWS). Images uploaded for bio pages (avatars and backgrounds) are stored on Amazon S3 with restricted access and served via Amazon CloudFront CDN.

We implement industry-standard security measures including HTTPS encryption, access controls, and regular security reviews. However, no system is 100% secure and we cannot guarantee absolute security of your data.

Your owner token is stored only in your browser's local storage. We do not have access to it and cannot recover it.

• Short links and bio pages — stored indefinitely unless you delete them or we remove them for policy violations.
• Click analytics — retained indefinitely in aggregated form.
• Server logs — deleted after 30 days.
• Uploaded images — retained as long as the associated bio page exists.

Depending on your location, you may have the following rights regarding your data:

• Access — request a copy of the data we hold about your links.
• Deletion — request deletion of your links, bio page, and associated data.
• Correction — request correction of inaccurate data.
• Portability — request your data in a machine-readable format.
• Objection — object to how we process your data.

Because tinyu does not require account registration, we identify your data by the link slug and owner token. To exercise any of these rights, email us at support@tinyu.us with your link slug and we will respond within 30 days.

If you are in the European Economic Area (EEA), our legal basis for processing your data is:

• Contract performance — to deliver the URL shortening and bio page service you requested.
• Legitimate interests — to prevent abuse, maintain security, and improve the Service.

You have the right to lodge a complaint with your local data protection authority. For cross-border data transfers, we rely on standard contractual clauses approved by the European Commission.

California residents have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. tinyu does not sell personal information. To exercise your rights, contact us at support@tinyu.us.

We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). Australian users can contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au if they believe we have breached the APPs.

The Service is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of this page. We encourage you to review this page periodically. Continued use of the Service after changes are posted constitutes your acceptance of the updated policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us at: support@tinyu.us