LinkReboot

Privacy Policy

Last updated: May 16, 2026

LinkReboot ("we", "us", or "our") operates the website at linkreboot.com. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

1. Information We Collect

Account Information: When you create an account, we collect your email address and password. Passwords are securely hashed and never stored in plain text.

Profile Information (optional): On the Profile page you can save additional details to your account: full name, company, and a billing address (line 1, line 2, city, state/region, postal code, country). All of these are optional; the platform works without them. They're used to populate the “Bill To” block of your invoice PDFs.

Payment Information: When you purchase credits or a service, your payment is processed securely by our third-party payment provider, Stripe. We do not collect, store, or have access to your full credit card number or payment card details. Stripe may collect information necessary to process your payment, including your card number, billing address, and transaction details. Please refer to Stripe's Privacy Policy for details on how they handle your payment data.

Usage Data: We collect information about how you use the platform, including domains you view (both paid and free), domains you add to your owned-domains list, searches you perform, credits you purchase, and complaints you file.

Owned Domain Enrichment Data: When you add a domain to your owned list, we cache live data about that domain alongside the row: its current registration / expiration / last-changed dates, its nameservers, and the HTTP status code and final destination URL we observe when probing it. This data is associated with your account so you can see it on the Owned Domains page. Section 3 explains how we obtain it.

Service Order Information: When you purchase a service, we record the order (the service, amount paid, status, and timestamps) and associate it with your account. To fulfil the order you submit a plain-text “requirements” brief describing what you need; this is stored with the order, retained for our records, and shared internally with the team member fulfilling your order. We may also attach a delivery note or, where an order is cancelled, a cancellation note and process a refund through Stripe. Please do not include sensitive personal data or credentials in the requirements brief.

Contact Form Submissions: If you contact us through our website, we collect your name, email address, and message content.

Automatically Collected Data: We may collect standard log data such as your IP address, browser type, operating system, referring URLs, and timestamps when you access our site.

Analytics and Performance Data: We use privacy-friendly, cookieless analytics (Vercel Analytics and Vercel Speed Insights) to understand aggregate traffic and page-load performance. These collect anonymized information such as the pages visited, referring URLs, approximate location derived from your IP address (the raw IP is not stored by the analytics product), device and browser type, and page-load timing metrics. They do not set cookies and are not used to build cross-site advertising profiles.

Error and Diagnostic Data: We use an error-monitoring service (Sentry) to capture application errors so we can diagnose and fix them. Diagnostic reports may include your IP address, the URL and request context in which the error occurred, and browser/device information.

Bot Protection Data (hCaptcha): To protect our forms from abuse and automated attacks, we use hCaptcha on our sign up, login, password change, contact, and domain complaint forms. When you complete a captcha challenge, hCaptcha may process information such as your IP address, browser and device characteristics, interactions with the challenge, and a captcha response token. Your captcha response token is transmitted to our server (or, in the case of password change, to Supabase's authentication endpoint) to verify you are human before your submission is processed. Use of hCaptcha is governed by the hCaptcha Privacy Policy and Terms of Service.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our platform and services
  • Process credit purchases, service purchases, and domain unlock transactions
  • Fulfil service orders using the requirements brief you submit, deliver the result, and process service refunds where applicable
  • Generate invoice PDFs (using your name, company, and billing address if provided)
  • Maintain your Owned Domains list and refresh the registry / HTTP data shown there
  • Handle complaints and process credit refunds
  • Respond to your inquiries and support requests
  • Send service-related communications, such as account, purchase, and complaint notifications
  • Send periodic reminder and product-update emails, which you can opt out of at any time from your Profile settings
  • Monitor performance, diagnose errors, and analyze aggregate usage to maintain and improve the platform
  • Detect and prevent fraud or abuse

3. Third-Party Services and Outbound Requests

We do not sell your personal information to third parties. We use the following third-party services and outbound requests to operate the platform:

  • Supabase: Provides authentication and database hosting. Your account information, profile, owned-domains list, and usage data are stored on Supabase infrastructure.
  • Vercel: Hosts and serves the website and our serverless API, and provides the cookieless analytics and performance monitoring described in Section 1. Requests you make to the site are processed on Vercel's infrastructure.
  • Stripe: Processes credit purchases, service purchases, and any related refunds. When you make a purchase, your payment details are handled directly by Stripe. We only receive confirmation of the transaction and do not store your card details.
  • RDAP (Registration Data Access Protocol): We query public RDAP services in two situations — (a) when you file a “domain not available” complaint, to verify the registration date, and (b) when we enrich your owned-domains list, to surface registration / expiration / last-changed dates and nameservers. In both cases the only data sent is the domain name. No personal information is transmitted.
  • Direct HTTP Probes (Owned Domains): To populate the HTTP status code and destination URL on your owned-domains list, our server makes outbound HTTP requests directly to each domain in your owned list, following up to five redirect hops. We send a generic browser User-Agent and do not include any personal information in the request. The same approach is used to verify the “link removed” complaint flow against the referring page.
  • hCaptcha (Intuition Machines, Inc.): We use hCaptcha to distinguish human users from automated bots on our sign up, login, password change, contact, and complaint forms. hCaptcha may receive your IP address, browser and device characteristics, and interaction data with the challenge. Information collected by hCaptcha is subject to the hCaptcha Privacy Policy.
  • Brevo (Sendinblue): Sends the welcome email and the optional reminder / product-update emails, and stores your email address (and name, if provided) for that purpose. If you opt out of these emails from your Profile settings, you are removed from the associated contact list. Transactional emails are unaffected by the opt-out. Use of Brevo is subject to the Brevo Privacy Policy.
  • Mailtrap: Sends certain transactional emails, such as credit-purchase, service-order, and admin credit-grant confirmations. Only the recipient email address and the message content are shared.
  • Sentry (Functional Software, Inc.): Receives application error reports for diagnostics, which may include your IP address and the request context in which the error occurred, as described in Section 1.

We may also share your information in the following circumstances:

  • Legal Requirements: We may disclose your information if required by law, regulation, legal process, or governmental request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

4. Data Security

We implement industry-standard security measures to protect your personal information. However, no method of electronic transmission or storage is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your account information for as long as your account is active or as needed to provide our services. If you request account deletion, we will remove your personal data within a reasonable timeframe, except where we are required to retain it by law.

6. Cookies and Similar Technologies

We use cookies and similar technologies primarily to maintain your authentication session and remember your preferences. These are essential for the platform to function. We do not use cookies for advertising, and our analytics and performance tools (Vercel Analytics and Vercel Speed Insights) are cookieless.

Third-party services integrated into our platform (such as Stripe and hCaptcha) may also set cookies or use similar technologies in order to function. These third-party cookies are governed by the respective privacy policies of those services.

7. Your Rights

Depending on your location, you may have the right to:

  • Access, correct, or delete your personal data
  • Object to or restrict the processing of your data
  • Request a copy of your data in a portable format
  • Withdraw consent at any time

To exercise any of these rights, please contact us through our contact page.

8. Children's Privacy

Our platform is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have any questions about this Privacy Policy, please reach out through our contact page.