Personal Data

We care about privacy, for real.

The phrase "we care about your privacy" has somehow been milked a bit lately. Many times, it stands like that in a cookie banner where you're asked to accept sometimes hundreds of cookies and tracking from all sorts of sources. That's not caring about privacy, for us. But we mean it for real.
Inga cookies No crumbling cookies When your customers are about to click away from your landing page, they don't need to start by closing some annoying cookie banner. We don't use cookies, neither here on länk.bio* nor on our customers' landing pages. Nice, right?
Innehåll på landningssida No tracking We said no to Google Fonts and Google Analytics. You shouldn't unnecessarily be tracked, and the same goes for your customers and visitors. For instance, when you embed a Youtube video, we do it with a nocookie address limiting tracking.
* Necessary cookies might be used for registered users making card payments via the control panel, and in the integration of Facebook and Instagram accounts. These cookies are temporary, expire quickly, and contain no personal information. Read more about this in the privacy policy below.
snabbstagram

Sweuropean service

We're not the only link-in-bio service, but probably the best one for you as a European customer. With most competitors, you need to make sure yourself that you use them in compliance with GDPR. For example, Linktree is an American service. By doing that, you're sharing your customers'/visitors' personal data with an American server. That's not good news for your data protection officer.

Länk.bio is a Swedish service and is located at the world's first climate-positive data center, in Falun. As a business owner, you don't have to buy services from abroad in another currency, and you can deduct the VAT as usual. Moreover, both yours and your customers' data remain within Sweden and the EU.
snabbstagram

More actions we've taken

fonts

About 50 million sites use Google Fonts, but not us. For our own and our customers' installed fonts, we use the service Bunny Fonts, a privacy-friendly alternative.

videos

When you embed a Youtube video or live stream, we do it with a link to youtube-nocookie.com to limit tracking and cookies in your customer's browser.

encryption

When you email us, the letters are encrypted, and the same goes for the storage where all invoices (with personal information) are located. No one, not even our suppliers, can access the data.

local files

Instead of connecting to a CDN (content delivery network) to fetch the files (e.g., JavaScript) required by the service, we've instead downloaded them and linked to them locally.

Privacy Policy

The personal data we collect can come from you as a customer of Länk.bio, or visitors to one of our customers' landing pages, for example (lank.bio/accordion). Personal data may also be saved when you contact us by email or phone call. Länk.bio is a registered trademark owned by the company JMD Media AB (559482-3048), which is also the personal data controller for Länk.bio. With reference to law, below we mean the Data Protection Regulation, GDPR, and other applicable data protection legislation.

As a visitor and in case of contact

When you visit this website (link.bio), we as the first party do not save any personal data at all. We do not use cookies on the website, and have no built-in tracking. The only third-party service you as a visitor come into contact with is Bunny Fonts, to load the site's fonts. The service is European and adapted to fulfill the requirements of GDPR and similar applicable laws. Read Bunny Font's GDPR/privacy policy here: https://bunny.net/gdpr/ .

When you visit one of our customers' landing pages (e.g. lank.bio/accordion), cookies or tracking are not normally used either. We save certain types of user data for statistics, but nothing that can be used to identify a person. For example, IP addresses are saved to measure the number of unique visitors to the page, but the IP address is saved in an encrypted format that cannot be decrypted back.

If you contact us by e-mail, your name and e-mail address, and any other information you provided in the e-mail, will be stored for a maximum of 90 days or until we are asked to delete stored information about the person(s) in question.

As a customer

When you create a profile, you can do this either as an individual or as a company. If the account is for a private person, we collect social security number, name, street address, zip code, city and e-mail address. If the account is for business customers, we collect organization numbers (personal identification numbers for sole proprietorships), except for the above mentioned for private individuals.

Why do we collect personal data?

As a customer with us, it is required that we save certain personal data for the service to function, so that we can make payments to the customer, issue invoices and have contact with our customers.

When you create a profile, you can do this either as an individual or as a company. If the account is for a private person, we collect name, street address, zip code, city and email address. If the account is for business customers, we collect organization numbers in addition to those mentioned above for private individuals. This data is saved for the following purposes:
  • Fulfillment of agreement.
  • To be able to connect the subscription to a person or a company.
  • To be able to send complete invoices with the information required for accounting.
  • To find a customer's account and profiles during contact (support) between the customer and the company (JMD Media AB).
E-mail address is saved to be able to send electronic invoices, as well as for sending important news and newsletters. "Important News" includes information such as (but not limited to) downtime, updates, contract changes. When you as a customer register an account, and accept these terms, you also agree to the sending of newsletters by e-mail. You can revoke this consent at any time through a link in each newsletter, and on the control panel.

We use industry standards such as SSL/TLS and one-way hash algorithms to store, process and communicate sensitive information such as personal data and passwords in a secure manner.

The right to retrieve saved information, and the right to be forgotten

As a customer, you have the right to receive extracts from all information that is stored about you. Extracts are delivered electronically in a readable format. You have the right to ask us to update incorrect information or supplement information that is incomplete.

You as a customer can also delete your account at any time. When deleting a user account, all data that we have saved about you as a customer is also deleted. A user account cannot be deleted if the user is the sole administrator of one or more profiles, this must then be transferred to another user via the control panel. When deleting a profile (landing page, not user account), the card details saved by Stripe for the profile are also deleted. Our service provider makes regular backup copies of the database where personal data is stored, but these backup copies are kept for a maximum of 14 days.

A deleted account may therefore be deleted completely after up to 14 days. There are few exceptions to the right to erasure, such as if it must be retained because the Company must fulfill a legal obligation (for example, according to the Accounting Act).

How is personal data shared?

We only share personal data with third parties when it comes to contact with authorities, for example in case of possible violations of the law. For card payments, a "customer profile" is created with our card provider Stripe, but we do not share any information about our customers with them. The only thing we save in a customer profile at Stripe is our internal customer number, something that no outsider can trace to either a person or a company. We save the customer number solely for the purpose of being able to track payments if needed, for example for troubleshooting purposes.

User created by another user

If a user invites additional users to administer one or more profiles in the control panel, a user account will be created and an email will be sent to the new user. The new user will need to accept these terms and conditions to activate their account. If the terms are not accepted within five (5) days of the account being created, the account and any personal data will be deleted automatically.

How are card details saved?

In the aforementioned customer profile, which is created when a customer makes their first card payment, payment methods and card details are also saved. JMD Media AB/Länk.bio does not have access to this complete information. We can retrieve the customer's saved payment methods and see the card type (e.g. Visa/Mastercard), the card's last four digits and its expiry date. We ourselves do not save any card details.

How long is the personal data saved?

The data we collect for our customers as long as the customer in question wishes to be a registered user. Registered users can delete their landing pages and/or users at any time, and thus all personal data that we have saved is removed. This includes any card details that our card provider Stripe has saved, as well as the customer profile saved with Stripe.

Regular backups are made of Länk.bio, and our entire database. These are saved for a maximum of 14 days. A deleted user can therefore remain in a backup copy after it has been deleted, but for a maximum of 14 days after deletion.

There are few exceptions to the right to erasure, such as if it must be retained because the Company must fulfill a legal obligation (for example, according to the Accounting Act).

How do I know which personal data has been saved?

You have the right to receive extracts from all information that we hold about you. Extracts are delivered electronically in a readable format. You have the right to ask us to update incorrect information or supplement information that is incomplete. You can at any time request that the data relating to you be deleted.

What are cookies?

According to the Electronic Information Act, visitors to a website for privacy purposes must be informed that cookies are being used. The information in the cookie can be used to track a user's browsing. A cookie is a small text file that the website you visit requests to be saved on your computer in order to provide access to various functions. It is possible to set your browser so that it automatically refuses cookies. You can find more information on the Swedish Post and Telecommunications Authority's website.

Definitions of cookies: "Necessary" cookies are those that do not require consent to be used, and which are required for the site to function. Non-necessary cookies can be marketing and tracking cookies, which Länk.bio does not normally use either as a visitor or as an administrator. "Third-party cookies" are cookies from parties other than JMD Media AB/Länk.bio, such as from our partners and which may be used when using external services.

When are cookies used?

As a visitor to the lank.bio website, no cookies are used. As a visitor to a customer's landing page (for example https://lank.bio/dinbutik), third-party cookies may in some cases be used, if the owner of the landing page in question has added Youtube or Bambuser blocks to his landing page, which third parties store cookies. We refer to Google's and Bambuser's current personal data policy for purposes related to this. If consent to use these third-party cookies would be required, for example if they are used for marketing and tracking, the owner of the landing page is responsible for informing about this.

The control panel, which is used to administer the landing page, uses certain necessary cookies. These are used when the user is redirected to a third party in the browser, for example when integrating Meta accounts. These cookies never store any personal data, and are only used up to a maximum of 10 seconds, before they automatically expire. List of these necessary cookies follows:
  • Name of cookie: "lankbio_settings_page", used when an administrator is sent to Meta/Facebook and back to länk.bio to integrate an Instagram/Meta Business account. The cookie contains a unique ID number for the profile, which means that the user returns to the correct part of the control panel after the integration is complete. Expires after 10 seconds.
  • Name of cookie: "meta-connection-error", used in integration between länk.bio and Meta. In the event of an error in the integration, an error code is stored in this cookie, to display the error in the control panel when the user returns. Expires after 5 seconds.
None of the above cookies store personal data, expire quickly after storage and are considered strictly necessary for Länk.bio to function.

Necessary third-party cookies may be used for card payments, then from our service provider Stripe. We refer to Stripe's cookie policy for purposes ( https://stripe.com/se/legal/cookies-policy ).

The customer, who registers an account on Länk.bio and uses these functions, accepts the use of the above cookies.