Privacy Policy

Detailed explanation of how we deal with your data

Welcome to the once.to privacy policy! We pride ourselves upon the fact that we’re privacy-focused. Therefore, we try to collect as little personally identifiable information as possible. In this document, you’ll find details on exactly what data we may collect in each situation. You are encouraged to go through the document thoroughly to form a clear understanding of our policy.

In this policy, once.to refers to the service offered by Yktoo Solutions (the “Company” or “We”) through the once.to website (the “Service”). We sometimes refer to “You”, which may be a visitor on one of our websites, a user of one or more of our services (“User” or “Customer”), or a visitor of a link handled by the service (“Visitor”). This document explains what information we collect through your access and use of our service and how we make use of this information.

By visiting once.to and using the services provided here, you consent to the terms outlined in this privacy policy.

1. What happens when you create an account?

When you create a new account as a user, your full name, email address, and IP address will be collected. The email address will serve as your identity for all operations on the service. You will receive all important notifications such as confirmation emails, password reset links, and any updates to our policies and terms of service through this email address. Your email address will not be shared with any external entity or used for any other purpose, except in cases when we are obliged to do so by law.

We are required to take certain measures in order to prevent malicious users (such as spammers and bots) from excessively creating new accounts. This is to prevent an unfair degradation of service to non-malicious users, which might arise from a consistent attack from bots or human users. The Service may use CAPTCHA and email verification to mitigate such issues, record your IP address at any point for blacklisting if found to be in violation of our terms, as well as other techniques.

2. What data do we collect?

We make it a policy to collect as little user information as possible to allow users of the service and visitors on other websites using the service to maintain Internet privacy, and allow anonymity, to the extent possible.

The service’s user data collection is limited to the following:

3. Data storage: location, security, and reliability

The company uses the services of Netlify (USA), Cloudflare (USA), and Scaleway (France/Netherlands) to host all components. All care is taken to securely protect your data, including the encryption of all user data using a secret key accessibly only to the employees of the company (your password is not accessible to anyone as it’s cryptographically hashed). Backups of the entire database are regularly made in the event it is necessary to restore user data.

3.1. Data retention

When a customer deletes their account through the web profile interface, all derived information related to the account (including short links and registered domains) is permanently deleted from all servers. The account itself is kept in our registry for the duration of up to one year. Deleted data may be retained in our backups for another 30 days.

3.2. Data cleanup

In order to maintain the level of performance of the service, we execute periodic data cleanup routines to remove data that we deem either obsolete or irrelevant.

These routines are laid out in the Addendum I to this privacy policy.

4. Data disclosure policy

We do not sell or rent data to any third party, including marketers, advertisers, and tracking agencies.

We may, however, use and disclose data as we believe necessary:

We may, from time to time, contest court orders if there is a public interest in doing so. In such situations, the company will not comply with the court order until all legal or other remedies have been exhausted. Therefore, not all court orders may lead to data disclosure.

5. Modifications to Privacy Policy

We reserve the right to periodically review and change this policy from time to time. We will notify all customers about any such changes through the email address registered with us. Continued use of the service will be deemed as acceptance of such changes.

6. Contact Us

If you have any questions about this Privacy Policy, please contact us via the contact form.

Because email communications are not always secure, please do not include credit card or other sensitive data (such as racial or ethnic origin, political opinions, religion, health, or the like) in your messages to us.

Addendum I: Data Cleanup Policy

Data subject to removalMinimum retention period
Anonymous links with 0 total clicks90 days since creation
Anonymous links with less than 10 total clicks365 days since last clicked

Tags: , , , , ,