Privacy Policy

As an open-source self-hosted service, you have complete control over your data. This policy explains how data is handled when you deploy and use the Link Redirect Service on your own Cloudflare account.

Last Updated: January 10, 2026

Table of Contents

1. Introduction

Welcome to Link Redirect Service, an open-source, self-hosted link redirection service. As a self-hosted solution, you deploy and manage the service on your own Cloudflare account, giving you complete control over your data and privacy.

This Privacy Policy explains how data is handled when you deploy and use the Link Redirect Service. Since you are self-hosting, you have full ownership and control over all data processed by the service.

2. Data Control & Ownership

As a self-hosted solution, you have complete control over all data processed by the Link Redirect Service. This includes:

  • Full Ownership: All data generated by your deployment belongs to you
  • Control Over Collection: You decide what data to collect through configuration
  • Data Processing: You control how data is processed and used
  • Access Management: You manage who has access to your deployment and data
  • Data Deletion: You can delete any data at any time

The Link Redirect Service does not collect or store any data about your deployment unless you explicitly configure it to do so. All data resides on your Cloudflare account.

3. Information Collected

When you deploy the Link Redirect Service, it may collect certain information depending on your configuration:

3.1 Link-Related Data

The service may store information about the links you create:

  • Original target URLs
  • Generated short link paths
  • Source identifiers (if configured)
  • Creation timestamps

3.2 Analytics Data (Optional)

If you enable analytics, the service may collect:

  • Click counts for each link
  • Geographic location of visitors (based on IP address)
  • Referral sources
  • Device information (browser, operating system)
  • Timestamp of clicks

3.3 Session Data

For admin interface access, the service uses temporary session cookies to maintain authentication. This data is stored locally in the user's browser and on your Cloudflare Workers KV (if configured).

4. Data Storage

All data collected by your self-hosted deployment is stored on your Cloudflare account:

  • Cloudflare Pages: Hosts the application code and static assets
  • Cloudflare Workers KV: Optional storage for analytics and session data
  • Cloudflare Workers Logs: Optional logging of requests and errors

You are responsible for managing your Cloudflare account's data retention policies and backups. The Link Redirect Service does not store any data on external servers.

5. Data Security

The Link Redirect Service implements several security features to protect your data:

  • AES-256 Encryption: For sensitive data like encrypted links
  • JWT Authentication: Secure session management for the admin interface
  • HTTPS Only: All communications are encrypted over HTTPS
  • Access Control: Password-protected admin interface
  • Domain Validation: Optional whitelist for allowed target domains

However, as the deployer and administrator, you are responsible for:

  • Setting strong passwords
  • Securing your Cloudflare account
  • Regularly updating the service to the latest version
  • Configuring appropriate access controls

6. Your Responsibilities

As a self-hosted service deployer, you are responsible for:

  • Compliance: Ensuring your use of the service complies with applicable laws and regulations, including privacy laws in your jurisdiction
  • Privacy Notice: Providing a privacy notice to your users if you're using the service for public links
  • Data Management: Implementing appropriate data retention and deletion policies
  • Security: Maintaining the security of your deployment and Cloudflare account
  • Updates: Keeping the service updated with the latest security patches

It's your responsibility to review and understand Cloudflare's privacy policy and terms of service, as they govern the infrastructure your deployment runs on.

7. Children's Privacy

As the deployer of the Link Redirect Service, you are responsible for ensuring compliance with children's privacy laws in your jurisdiction. The service itself does not have specific age restrictions, but you should:

  • Not knowingly collect personal information from children under the age of 13 without proper parental consent
  • Implement appropriate age verification if your use case targets minors
  • Comply with relevant laws like COPPA (USA), GDPR (EU), and other regional regulations

8. Changes to This Policy

This Privacy Policy may be updated by the Link Redirect Service project maintainers from time to time. Updates will be published in the project's GitHub repository. As a deployer, you are responsible for reviewing and implementing any changes that may affect your deployment.

You may also customize this privacy policy for your specific deployment to reflect your own practices and policies.

9. Contact & Support

For questions about the Link Redirect Service's privacy practices or the project itself, please:

  • Visit GitHub: github.com
  • Submit an Issue: Report bugs or ask questions through GitHub Issues
  • Join Discussions: Participate in the project's GitHub Discussions

For questions about your specific deployment, please refer to your own internal documentation and Cloudflare's support channels.