SecureLink

Privacy Policy

We take your privacy seriously. Here's exactly what we collect, how we use it, and how we protect it.

Last updated: March 2026

01

Overview

SecureLink provides encrypted request workflows for licensed professionals to collect sensitive client information safely. This Privacy Policy explains what we collect, how we use it, how we store it, and your choices.

02

Information We Collect

We collect account information such as name, email address, agency or company details, and authentication data. We also process form submissions and uploaded files that users request from their clients, including sensitive fields configured by the user. We store audit activity such as request creation, opens, submissions, reveals, and exports. If enabled by account settings, we may also store IP address and user-agent information in audit logs.

03

How We Use Information

We use data to provide, secure, and improve the service. This includes authenticating users, delivering secure links, encrypting and storing submissions, displaying dashboard records, generating audit history, sending transactional emails and alerts, enforcing abuse controls, and meeting legal or security obligations.

04

How Information Is Stored

Sensitive submitted fields are encrypted at rest using AES-256. Uploaded files are encrypted before storage and may be stored in Vercel Blob infrastructure for managed file handling. We apply access controls so account holders can only access data associated with their own account and authorized workflows.

05

Data Sharing

We do not sell personal information. We only share data with service providers needed to operate SecureLink, such as hosting, email delivery, SMS delivery, and managed infrastructure providers. These providers process information under contractual obligations to support our services.

06

Data Retention

Retention is user-configurable, with a default of 30 days for supported workflows. Users may select different retention settings where available. Data may be deleted automatically after the configured retention period or earlier if deleted by the user.

07

Cookies and Session Data

SecureLink uses essential session cookies for authentication and account security. We do not rely on advertising cookies for third-party ad targeting. Session and security cookies are used only to operate and protect the service.

08

User Rights and Controls

Users can request deletion of account data, export of available records, and updates to account details. Depending on applicable law, additional rights may include access, correction, and objection to processing. To submit a privacy request, contact us using the support channel listed below.

09

Security Practices

We use industry-standard safeguards including encryption, access controls, audit logging, and rate-limiting controls to reduce misuse and unauthorized access. No system is perfectly secure, but we continuously work to protect platform and customer data.

10

Contact Information

For privacy questions or requests, contact SecureLink support through the contact details provided on our website.