Last updated: April 13, 2026
This policy describes how URL Zen (“URL Zen,” “we,” “us,” or “our”) handles information when you use our websites, applications, and related services (collectively, the “Service”). The Service is a multi-tenant link management platform for organizations, including short links, optional custom domains, team access, and click analytics.
This policy applies to visitors to our marketing site, people who create or administer accounts and workspaces, and end users who interact with shortened links or branded domains that resolve through the Service (for example, when a short link redirects to a destination URL).
Account and identity data. If you sign in, we rely on our authentication provider (for example, Clerk) to process credentials and basic profile details such as name and email. We store or sync identifiers needed to operate your account and tie it to your organization memberships.
Organization and workspace data. We collect information you or your admins provide about organizations (such as workspace name and subdomain slug), invitations, roles, and verified custom domains you connect.
Links and configuration. We store short codes, destination URLs, optional expiry or status fields, and related settings you configure in the product.
Analytics and redirect events. When someone uses a short link, we may log event data used for analytics and abuse prevention, such as timestamps, technical metadata (for example user agent and referrer), approximate location derived from IP (such as country), device-oriented signals, and a hashed or truncated form of IP rather than retaining full raw IP where we design the system that way. Exact fields can evolve with the product but will remain consistent with this purpose.
Service diagnostics and security. We collect standard server and application logs, error reports, and usage telemetry needed to operate, secure, debug, and improve the Service, including caching layers used for performance (for example, edge or Redis-backed lookups as described in our architecture).
We use the information above to:
Depending on your region, we may rely on bases such as performance of a contract, legitimate interests in operating and securing a SaaS product (balanced against your rights), consent where we ask for it, or legal obligation.
We use service providers to run the Service—for example cloud hosting, authentication, database or backend platforms (such as Convex), caching providers, and email delivery. They process data on our instructions and under contractual safeguards appropriate to the service.
We may disclose information if we believe in good faith it is necessary to comply with law, protect the rights and safety of URL Zen and others, or enforce our agreements.
We do not sell your personal information as that term is commonly understood in U.S. state privacy laws.
We retain information for as long as needed to provide the Service, comply with law, resolve disputes, and enforce our agreements. Retention periods can differ by data category; some technical logs have shorter lifetimes than account or billing records.
We implement technical and organizational measures appropriate to the nature of the Service. No method of transmission or storage is completely secure.
We may process information in the United States and other countries where we or our providers operate. Where required, we use appropriate safeguards for cross-border transfers.
Depending on your location, you may have rights to access, correct, delete, or export certain information, or to object to or restrict certain processing. You can often manage profile details through your authentication provider and in-product settings. To exercise other rights, contact us using the details below. You may appeal certain decisions as provided by applicable law.
The Service is not directed to children under 13 (or the age required by local law), and we do not knowingly collect their personal information.
Short links redirect to destinations chosen by our customers. Those sites have their own privacy practices; we are not responsible for how third parties handle data after a redirect.
We may update this policy from time to time. We will post the updated version and revise the “Last updated” date. Material changes may require additional notice as required by law.
Questions about this policy or your data: use the contact or support method published on our website or in the product, or write to the operator of URL Zen at the business address we provide for legal notices (if any).
See also our Terms of Service.