Privacy Policy for LinkEase

Last updated: 21 July 2025

1. Introduction

At LinkEase LLC (“Company,” “we,” “us,” or “our”), safeguarding your personal information is a core commitment. This Privacy Policy describes what data we collect, why we collect it, how we use it, the limited circumstances in which we share it, and the controls and rights you have. If you do not agree with any part of this Policy, please delete the App and discontinue use of the Services.

2. Who We Are & How to Contact Us

Controller: LinkEase LLC, 30 N Gould St Ste N, Wyoming 82801, USA
Email: mail@linkease.app

We do not currently maintain an establishment or representative in the EEA or UK. Our Services are primarily offered to users outside those territories. Individuals in the EEA/UK may still exercise their rights by contacting us at the address above.

3. Age Restrictions

The Services are not available to anyone under fourteen (14) years of age. We do not permit parental consent as a substitute for this minimum age. If we discover that we hold personal data of a child under 14, we will delete it without undue delay.

4. Information We Collect & Why

*See § 6 for full list of legal bases.

We do not collect phone numbers or two‑factor‑auth tokens.

5. How We Use Your Information

• Operate & maintain the App (Firebase backend, Google Maps SDK).
• Personalise content and features.
• Communicate service updates; send marketing only with prior consent.
• Protect users and enforce our Zero‑Tolerance Policy.
• Research & improve functionality and user experience.
• Comply with legal obligations and defend legal claims.

6. Legal Bases for Processing (GDPR/UK GDPR)

1. Contract performance – delivering the Services you request.
2. Consent – precise location, marketing emails, analytics cookies; you may withdraw at any time.
3. Legitimate interests – fraud prevention, basic analytics, service improvement, balanced against your rights.
4. Legal obligation – accounting, tax, court orders.
5. Vital interests – preventing serious harm.
6. Establishment, exercise, or defence of legal claims.

7. How We Share Information

1. Other users – content you post or share publicly.
2. Service providers (processors) – Firebase Cloud Firestore/Functions/Authentication (EU multi‑region), push notifications, customer support – bound by contract.
3. Google Maps Platform – delivers map tiles and places data. Google acts as an independent controller; see Google Privacy & Terms.
4. Advertising & measurement partners – limited pseudonymised identifiers for cross‑context behavioural ads with your opt‑in consent; California residents may opt‑out via settings or Global Privacy Control (GPC).
5. Legal, safety & compliance – when required by law or to protect rights and safety.
6. Business transfers – merger, acquisition, or sale, under continued protection of this Policy.

We do not sell personal information for monetary consideration.

8. International Transfers

Primary servers are in Frankfurt, Germany (EU). When data is transferred outside the EEA/UK (e.g., to Google LLC in the U.S.) we rely on Standard Contractual Clauses plus supplementary technical measures (TLS 1.2+, encryption at rest, key management in the EU). We conduct a Transfer Impact Assessment and will provide a redacted copy of the SCCs on request.

9. Data Retention – 90‑Day Rule

We retain identifiable personal data no longer than 90 days from the date of (a) collection or (b) account deletion/inactivity, whichever comes first, unless a longer period is necessary to comply with a legal obligation or resolve disputes. After 90 days data is either deleted or irreversibly anonymised. Aggregate statistics (non‑identifiable) may be kept indefinitely.

10. Your Privacy Rights

• Access/Portability – obtain a copy of your data.
• Rectification – correct inaccurate data.
• Erasure – delete your data (subject to legal holds).
• Restriction & Objection – limit or object to processing based on legitimate interests.
• Withdraw Consent – at any time without affecting prior processing.
• Automated Decision‑Making – object to profiling; request human review.
• CPRA (California) – opt‑out of sharing; request disclosure or deletion.

To exercise any right, email mail@linkease.app. We verify requests and respond within one month.

11. Cookies & Tracking

• Mobile App – does not store marketing cookies. Analytics and crash SDKs run only after you grant in‑app consent.
• Website – sets essential cookies for security. Non‑essential cookies load only after you accept our Cookie Banner.
• Global Privacy Control signals are honoured for California residents and result in an automatic opt‑out from analytics and sharing.

We no longer rely on the deprecated “Do Not Track” header.

12. Safety & Moderation

Automated filters (Firebase App Check) and human moderators review content. In‑app Report tools let users flag abuse. We aim to assess reports within 24 hours and act expeditiously. Users can block others. Serious violators may be banned and reported to authorities.

13. Security Measures

• End‑to‑end TLS 1.2+; encryption at rest (AES‑256).
• Firebase Security Rules & IAM principle of least privilege.
• Annual independent penetration test & regular vulnerability scans.
• 24/7 monitoring, DDoS mitigation, and incident‑response plan.
• Breach notification to authorities and affected users within 72 hours where required by law.

14. Changes to This Policy

We will post any changes here and, for material changes, notify you in‑app or by email 30 days before they take effect. Continued use after that date constitutes acceptance.

15. Complaints & Contact

Questions or complaints? Email mail@linkease.app. You may also complain to your local data‑protection authority or the Wyoming Attorney General.

© 2025 LinkEase LLC. All rights reserved.