Privacy Policy

Last updated: February 2026

1. Data Controller

The data controller is JDevelop, SIREN 938123072. For any questions regarding your personal data, please contact us at contact@jdev.li.

2. Data Collected

We collect the following personal data: username and password hash (required for account creation), email address (optional, for password recovery), hashed IP addresses and user-agent strings (for click analytics), and session cookies (for authentication and language preferences).

3. Purpose of Processing

Your data is processed for the following purposes: providing the URL shortening service, authenticating users, generating aggregated click analytics (browsers, devices, referrers), password recovery, and abuse prevention.

4. Legal Basis

Data processing is based on: your consent (account creation), the performance of a contract (providing the Service), and our legitimate interest (security and abuse prevention). [PLACEHOLDER: Legal basis to be validated by a DPO or legal counsel.]

5. Data Retention

Account data is retained as long as your account is active. Click analytics data is retained indefinitely in aggregated form. Upon account deletion, your personal data is removed and links are anonymized (dissociated from your identity). [PLACEHOLDER: Define specific retention periods.]

6. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the right to: access your personal data (available via the data export feature in Settings), rectify inaccurate data, erase your data (available via account deletion in Settings), restrict processing, data portability (JSON export), and object to processing. To exercise these rights, contact contact@jdev.li or use the self-service options in your account settings.

7. Cookies

We use strictly necessary cookies for session management and storing your language preference. No advertising or tracking cookies are used. These cookies are exempt from consent requirements under ePrivacy regulations as they are essential for the service to function.

8. Data Security

We implement appropriate technical measures to protect your data, including: password hashing (Argon2), IP address hashing (SHA-256), HTTPS encryption, secure session cookies, and API key hashing. [PLACEHOLDER: Security measures to be audited.]