Privacy Policy

Last updated: March 27, 2026. This Privacy Policy explains how Swap This Link collects, uses, stores, and discloses personal data when you use our application, site, and related services.

1. Data Controller and Contact

Swap This Link is the data controller for personal data processed through this Service, unless a separate agreement states otherwise. Contact: info@seolutions.biz.

2. Scope

This Policy applies to personal data processed through our app, APIs, emails, marketplace/ticket features, billing linkage, and support interactions. It does not apply to third-party websites, products, or services that we do not control.

3. Data We Collect

• Account data: email address, password hash, role, account status, verification/reset tokens, and authentication/session metadata.
• Profile and app data: optional display identifiers, plan type, subscription linkage IDs, and account preferences.
• Site submission data: submitted URLs, niches, sensitive niche flags, link types, moderation status, moderation notes, and timestamps.
• Domain metric data: third-party API responses for DA/DR/TF, traffic, referring domains, and related metrics captured during site onboarding.
• Swap and ticket data: proposals, statuses, chat messages, link placement URLs, confirmations, cancellations/rejections, and audit history.
• Technical and security data: IP address, user agent, request logs, error logs, and anti-abuse/rate limiting data.
• Communication data: transactional emails (verification, reset, swap notices, billing updates) and support requests.
• Billing metadata: payment and subscription status data returned by WooCommerce and payment providers. We do not store full card numbers.

4. Sources of Data

We collect personal data from:

• You directly (signup, site submission, ticket chat, support requests).
• Your activity in the Service (logs, status updates, moderation actions).
• Third parties you connect or interact with (WooCommerce, payment providers, metrics APIs).

5. How We Use Personal Data

• Provide and maintain accounts, sessions, and user authentication.
• Operate the marketplace, anonymization flow, ticketing, and swap completion workflow.
• Moderate site submissions and enforce quality, trust, and safety rules.
• Fetch and display domain metrics through integrated third-party APIs.
• Determine free/paid access and subscription status based on billing events.
• Send transactional and service notices (security, password reset, ticket, billing).
• Prevent abuse, detect fraud, rate limit abuse patterns, and secure infrastructure.
• Comply with legal obligations and respond to lawful requests.
• Improve product quality, reliability, and user experience.

6. Legal Bases (GDPR/UK GDPR)

Where GDPR or UK GDPR applies, we process personal data under one or more of these legal bases:

• Performance of a contract: account, swap, messaging, and billing-linked features.
• Legitimate interests: security, abuse prevention, service improvement, and fraud controls.
• Legal obligation: tax, accounting, lawful requests, and compliance recordkeeping.
• Consent: where required for specific communications or optional processing.

7. Sharing and Disclosure

We do not sell personal data. We share limited data only as needed:

• With service providers/subprocessors that help operate the Service.
• With other users as part of ticket/swap flows according to product rules.
• With legal authorities where required by law, court order, or valid legal process.
• In connection with mergers, acquisition, financing, or asset transfer.

8. Key Subprocessors and Integrations

• Infrastructure and hosting providers (for app delivery and runtime).
• Neon Postgres (database storage and query processing).
• Resend (transactional email delivery).
• RapidAPI provider(s) for domain metrics retrieval.
• WooCommerce and payment processors for subscription/billing events.

9. International Transfers

Data may be processed in countries other than your own. Where required, we rely on appropriate safeguards for international transfers, such as contractual commitments and technical controls.

10. Data Retention

We retain data only as long as needed for the purposes above and as required by law, including fraud prevention, legal defense, and accounting obligations.

• Account records are retained while your account is active.
• Ticket, moderation, and security logs may be retained for operational integrity, dispute handling, and abuse prevention.
• When deletion is requested and permitted, we delete or anonymize data unless retention is legally required.

11. Security Measures

We implement technical and organizational safeguards including password hashing, session security, access controls, encrypted transport (TLS), monitoring, and role-based restrictions. No method of storage or transmission is completely secure, and we cannot guarantee absolute security.

12. Cookies and Similar Technologies

We use essential cookies needed for secure login/session handling and core functionality. We may also use strictly necessary local storage for product state. You can control cookies through your browser, but disabling essential cookies may break core features.

13. Your Privacy Rights

Depending on your location, you may have rights to:

• Access, correct, update, or delete personal data.
• Request a portable copy of certain personal data.
• Object to or restrict certain processing.
• Withdraw consent where processing is based on consent.
• Appeal or complain to a supervisory authority.

To exercise rights, contact info@seolutions.biz. We may need to verify identity before fulfilling requests.

14. California Privacy Notice (CCPA/CPRA)

If you are a California resident, you may have rights to know, access, correct, delete, and limit certain uses of your personal information, subject to legal exceptions. We do not sell personal information for monetary value and do not knowingly share personal information for cross-context behavioral advertising.

We will not discriminate against you for exercising applicable privacy rights.

15. Children's Privacy

The Service is not directed to children under 18, and we do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us and we will investigate.

16. Automated Decision-Making

We may use automated checks (for example abuse/rate-limit/security checks), but we do not make solely automated decisions with legal or similarly significant effects without appropriate safeguards.

17. Changes to This Policy

We may update this Policy to reflect legal, product, or operational changes. Material updates may be communicated in-app, by email, or both, and the "Last updated" date will be revised.

18. Contact

Privacy questions or requests: info@seolutions.biz.

This Privacy Policy is a practical template and should be reviewed by qualified legal counsel for your jurisdictions, data flows, and compliance obligations.