Privacy Policy

Linkinbio (linkmy.bio), operated by Bespoke Tech Solutions (mybts.io), is the launchpad to your latest video, article, recipe, tour, store, website, social post, and other content. We connect your audience to wherever you are online, and make your content more discoverable and easier to manage.

Our Website (located at https://linkmy.bio/) and other digital properties (such as our mobile app and Developer Portal) (together our "Platform") provides information about us and allows individuals and businesses to sign-up as Linkinbio Users (to create a personalised, easily-customisable page), as Subscribers (to subscribe to and follow Linkinbio Users), or as developers (to create functionality that interacts with our Platform) (together, the "Linkinbio Services").

This Privacy Notice only applies to personal information we collect as a controller from:

• visitors to our Platform ("Platform Visitors")
• individuals, representatives of individuals, or companies that sign up to use our Linkinbio Services via a paid plan ("Paid Plan Users") or free plan ("Free Plan Users"), together our "Linkinbio Users"
• individuals that sign up to subscribe to and/or follow User Profiles ("Subscribers")
• individuals that visit and interact with User Profiles ("Profile Visitors")
• developers that sign up to our Developer Portal
• individuals who respond to our surveys, marketing materials or participate in promotions

We use the information we collect for the following purposes:

• To provide and deliver the Linkinbio Services and to assess, maintain and improve their performance and functionality
• To ensure the Linkinbio Services are relevant to you and your device
• For consumer research and to allow you to participate in interactive features
• To provide customer support and process requests or complaints
• To monitor usage and detect technical issues
• To process payments for Paid Plan Users
• To conduct business planning, reporting, and forecasting
• To deliver promotional materials and special offers
• To verify your identity and detect fraud
• To include Linkinbio User content in our advertising campaigns
• To inform our algorithms for relevant recommendations

Our legal basis for collecting and using personal information depends on the specific context in which we collect it. We will normally collect personal information from you only:

• Where we have your consent
• Where we need the personal information to perform a contract with you
• Where the processing is in our legitimate interests (and not overridden by your data protection interests)
• Where we need to comply with legal obligations

We may disclose your personal information to the following categories of recipients:

• Our group companies and third-party service providers
• Social media providers (for login functionality)
• Law enforcement bodies, regulators, and courts when legally required
• Potential buyers during a business transaction
• Payment processors for handling transactions

We use cookies and similar tracking technology (collectively, "Cookies") to collect and use personal information about you. Cookies are small data files that are placed on your computer or mobile device when you visit a website.

We use both first-party and third-party cookies for several reasons. Some cookies are required for technical reasons that are strictly necessary to provide Linkinbio services, and we refer to these as "essential" cookies. Other cookies enable us to track and target the interests of our users for analytics and advertising purposes.

We have put in place appropriate security measures to prevent your personal information from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed.

We limit access to your personal information to employees, agents, contractors and other third parties who have a business need for access. They will only process your personal information on our instructions and they are subject to a duty of confidentiality.

Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country.

We have taken appropriate safeguards to ensure that your personal information will remain protected in accordance with this Privacy Notice. These include implementing data transfer agreements between our group companies and service providers.

We will retain your personal information for the period necessary to fulfill the purposes outlined in this Privacy Notice and in accordance with applicable legal and regulatory requirements.

When determining retention periods, we consider:

• The amount, nature, and sensitivity of the personal information
• The potential risk of harm from unauthorized use or disclosure
• The purposes for which we process the data and whether we can achieve those purposes through other means
• Applicable legal requirements

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• The right to know what personal information we collect and how we use it
• The right to delete your personal information
• The right to opt-out of the sale of your personal information (note: we do not sell personal information)
• The right to non-discrimination for exercising your privacy rights

To exercise your California privacy rights, you can contact us using the methods described in the Contact Us section.

Types of Cookies We Use

• Essential Cookies: Required for the website to function properly
• Analytics Cookies: Help us understand how visitors interact with our website
• Functionality Cookies: Remember your preferences and settings
• Marketing Cookies: Used to deliver relevant advertisements

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our service.

Depending on your location, you may have the following data protection rights:

• Access, correct or update your personal information
• Request deletion of your personal information
• Object to processing of your personal information
• Request restriction of processing
• Data portability
• Withdraw consent
• Lodge a complaint with a data protection authority

We may update our Privacy Notice from time to time in response to changing legal, technical or business developments. When we update our Privacy Notice, we will take appropriate measures to inform you, consistent with the significance of the changes we make.

If you are located in the European Economic Area (EEA) or United Kingdom, you have specific rights under the General Data Protection Regulation (GDPR):

• Right to be informed: You have the right to be informed about how we collect and use your personal data
• Right of access: You can request copies of your personal data
• Right to rectification: You can request that we correct any inaccurate data
• Right to erasure: You can request that we delete your personal data (also known as 'right to be forgotten')
• Right to restrict processing: You can request that we limit how we use your data
• Right to data portability: You can request to receive your data in a structured, commonly used format
• Right to object: You can object to our processing of your data, particularly for marketing purposes
• Rights related to automated decision making: You have rights regarding automated decision making and profiling

How to Exercise Your GDPR Rights

To exercise any of these rights, please contact us using the methods described in the Contact Us section. We will respond to your request within 30 days. There is no fee for making a request, but we may charge a reasonable fee or decline to comply if your request is clearly unfounded, repetitive, or excessive.

Data Protection Authority

If you are located in the EEA or UK, you have the right to lodge a complaint with your local data protection authority if you are unhappy with how we have handled your personal data. For UK residents, this is the Information Commissioner's Office (ICO). For EEA residents, you can find your local authority through the European Data Protection Board website.

International Data Transfers

When we transfer your data outside the EEA or UK, we ensure an adequate level of protection through:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Data Processing Agreements with our service providers
• Only transferring to countries with adequate data protection laws
• Implementing appropriate technical and organizational measures

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights, please contact our DPO using the details set out in the Contact Us section.