Privacy Policy

1. Introduction

Welcome to addlinq. We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, share, and protect your data when you use our digital profile platform and purchase our physical products.

addlinq is a company registered in Colombo, Sri Lanka. Our services are designed primarily for individuals and businesses within Sri Lanka, and we operate under Sri Lankan law.

By using addlinq, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

2. Information We Collect

2.1 Account Information

When you create an addlinq account, we collect:

• Email Address: Required for account creation, login, and communication
• Username: Your unique identifier on the platform
• Password: Encrypted and stored securely (we never store plain-text passwords)
• Dashboard Type: Whether you choose a Personal or Organization account
• Profile Type: Individual or Business profile selection

2.2 Profile Information

Information you add to your digital profile, which may include:

• Personal Details: Full name, job title, company name, bio/description
• Contact Information: Phone numbers, secondary email addresses, physical address
• Social Links: URLs to your social media profiles, websites, and other online presence
• Media: Profile photos, cover images, gallery photos, and videos
• Theme Preferences: Your selected profile theme and customization settings
• Custom Sections: Any additional information you choose to add to your profile

2.3 Usage and Analytics Data

We collect data about how you and others interact with our platform:

• Profile Views: When someone views your profile (timestamp, anonymous or identified viewer)
• Link Clicks: Which links on your profile are clicked and when
• Engagement Metrics: Time spent on profile, interactions with content
• Contact Exchanges: Records of contact information shared between users
• Device Information: Browser type, device type, operating system
• IP Address: Used for analytics and security purposes
• Location Data: Approximate location based on IP address (city/country level)

2.4 Payment and Transactional Information

• Subscription Data: Active subscription plan, billing period, payment history
• Purchase History: Records of physical product orders and their status
• Invoices: Generated for all transactions
• Payment Information: We do NOT store credit card numbers or bank account details. Card payments are processed securely through PayHere, and we only receive confirmation of payment success or failure.
• Shipping Information: Delivery address for physical product orders

2.5 Communication Data

• Support Messages: When you contact customer support
• Notifications: In-platform notifications and alerts
• Marketing Emails: If you opt-in to receive product updates (you can opt-out anytime)

2.6 CRM and Contact Data

If you use our built-in CRM features:

• Saved Contacts: Information about contacts you save to your CRM
• Tasks and Notes: Reminders and notes you create for follow-ups
• Tags and Categories: How you organize your contacts

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 To Provide and Improve Our Services

• Create and manage your account and digital profile
• Enable profile sharing via QR codes, NFC, and links
• Process subscriptions and product purchases
• Provide analytics and insights about your profile performance
• Maintain and improve platform functionality
• Develop new features and services

3.2 Communication

• Send transactional emails (account verification, password resets, payment confirmations)
• Deliver in-platform notifications about account activity
• Respond to your inquiries and provide customer support
• Send marketing communications about new features or products (only if you opt-in)

3.3 Security and Fraud Prevention

• Detect and prevent fraudulent transactions
• Monitor for suspicious activity and policy violations
• Enforce our Terms of Service
• Protect the rights and safety of addlinq and our users

3.4 Legal Compliance

• Comply with applicable laws and regulations in Sri Lanka
• Respond to legal requests and prevent illegal activities
• Maintain records as required by law

4. How We Share Your Information

We do not sell your personal data to third parties. We may share your information only in the following circumstances:

4.1 Service Providers

We work with trusted third-party service providers to operate our platform. These providers have access to your data only to perform specific tasks on our behalf and are obligated to protect your information:

• AWS (Amazon Web Services): Cloud hosting and data storage (servers located in Singapore)
• Resend: Email delivery service for transactional and notification emails
• PayHere: Payment processing for card transactions (they handle payment security independently)

4.2 Public Profile Information

Information you choose to include in your public profile is visible to anyone who accesses your profile link or scans your NFC card/QR code. This may include:

• Your name, photo, and bio
• Contact information you choose to display
• Social media links and website URLs
• Gallery photos and videos
• Any other information you add to your profile

You have full control over what information is public through your profile settings and visibility controls.

4.3 Analytics Sharing

We provide you with analytics about who views your profile. This means:

• If someone with an addlinq account views your profile, you can see their name and profile
• Anonymous views are recorded but not linked to specific individuals
• Aggregate data may be used for platform improvement

4.4 Legal Requirements

We may disclose your information if required by law or in response to:

• Valid legal processes (court orders, subpoenas)
• Government or law enforcement requests
• Situations involving potential threats to public safety
• Enforcement of our Terms of Service

4.5 Business Transfers

If addlinq is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you via email and/or a prominent notice on our platform of any such change in ownership or control of your personal information.

5. Data Storage and Security

5.1 Where We Store Your Data

All user data is stored on secure AWS (Amazon Web Services) servers located in Singapore. We chose AWS for its industry-leading security standards and reliability.

5.2 Security Measures

We implement multiple layers of security to protect your data:

• Encryption: Data is encrypted in transit using SSL/TLS and at rest
• Password Protection: Passwords are hashed using industry-standard algorithms
• Access Controls: Strict internal access controls limit who can view user data
• Regular Backups: Automated backups to prevent data loss
• Security Monitoring: Continuous monitoring for suspicious activity
• Secure APIs: All API communications are authenticated and encrypted

5.3 Data Retention

We retain your information for as long as your account is active or as needed to provide services. Specifically:

• Active Accounts: Data retained indefinitely while account is active
• Deleted Accounts: Profile data removed from public view immediately; complete deletion within 30 days unless you permit us to retain your email for product updates
• Transaction Records: Financial records retained for 7 years as required by Sri Lankan law
• Backups: Data may persist in backup systems for up to 90 days after account deletion

5.4 Security Limitations

While we take reasonable precautions to protect your data, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we continuously work to improve our security measures.

6. Your Rights and Choices

6.1 Access and Update

• You can access and update most of your information through your account settings
• You can modify your profile information, contact details, and preferences at any time
• For data not accessible through settings, contact us at addlinq.official@gmail.com

6.2 Data Export

• You can export your profile data, analytics, and CRM contacts through your account settings
• Exported data will be provided in a machine-readable format (JSON or CSV)
• Contact us if you need assistance with data export

6.3 Account Deletion

• You may delete your account at any time through account settings
• Upon deletion, your profile will be immediately removed from public view
• Before final deletion, we will ask if you want to keep your email for future product updates
• If you decline, all your data will be permanently deleted within 30 days
• Some data may be retained for legal or business purposes (e.g., transaction records)

6.4 Marketing Communications

• You can opt-out of marketing emails by clicking "unsubscribe" in any marketing email
• You can manage notification preferences in your account settings
• Transactional emails (account verification, password resets, payment confirmations) cannot be disabled as they are essential to the service

6.5 Cookie Preferences

We use minimal cookies for essential functions:

• Essential Cookies: Required for login and basic functionality (cannot be disabled)
• Analytics Cookies: Used for our built-in analytics (can be disabled in settings)

We do NOT use third-party tracking cookies or advertising cookies.

7. Children's Privacy

addlinq is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13.

Users between the ages of 13 and 18 should have parental or guardian consent before creating an account.

If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information promptly. If you believe a child under 13 has created an account, please contact us at addlinq.official@gmail.com.

8. International Data Transfers

addlinq is based in Sri Lanka and our services are primarily intended for users within Sri Lanka. However, please note:

• Your data is stored on AWS servers located in Singapore
• By using our services, you consent to the transfer of your data to Singapore
• We ensure that all data transfers comply with applicable data protection laws
• Our third-party service providers may have servers in various locations but are contractually obligated to protect your data

9. Third-Party Links and Integrations

Your addlinq profile may contain links to third-party websites, social media platforms, or services. This Privacy Policy does not apply to those third-party sites.

We are not responsible for the privacy practices of third-party sites. We encourage you to read the privacy policies of any third-party sites you visit.

When you link your profile to third-party services (e.g., social media accounts), those services may collect information about visitors who click on your links according to their own privacy policies.

10. Business Accounts and Organizations

If you create an Organization account on addlinq:

• The organization administrator can manage team member profiles and view their analytics
• Team members' profile data may be accessible to organization administrators
• Organizations are responsible for ensuring their team members consent to this data sharing
• When you leave an organization, the administrator may retain access to historical data from your time with the organization

11. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours of becoming aware of the breach
• Provide details about what information was compromised
• Explain the steps we are taking to address the breach
• Offer guidance on how you can protect yourself
• Report the breach to relevant authorities as required by law

12. Analytics and Tracking

Our Built-In Analytics: We use our own analytics system (not Google Analytics or other third-party trackers) to understand how users interact with our platform. This helps us improve the service.

What We Track:

• Page views and profile visits
• Link clicks and engagement metrics
• Feature usage patterns
• Device and browser information
• Approximate location (city/country level)

No Third-Party Trackers: We do not use Google Analytics, Facebook Pixel, or other third-party tracking tools. Your activity on addlinq is not shared with advertising networks.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

When we make significant changes, we will notify you by:

• Sending an email to your registered email address
• Displaying a prominent notice on our platform
• Updating the "Last Updated" date at the top of this policy

We encourage you to review this Privacy Policy periodically. Your continued use of addlinq after any changes indicates your acceptance of the updated policy.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We aim to respond to all privacy-related inquiries within 72 hours.

15. Your Consent

By using addlinq, you consent to the collection, use, storage, and sharing of your information as described in this Privacy Policy. If you do not agree with our practices, please do not use our services.