hrefURL Shortener

Legal

Privacy policy

This privacy policy describes how personal data is processed when you use Href, a project operated by Weektab.

Controller

Weektab
Owner: Flamur Veliqi
Windthorststr. 9
41061 Moenchengladbach
Germany
Email: [email protected]

Data protection contact

For privacy-related inquiries, please contact [email protected]. No separate data protection officer has been appointed.

What data is stored

For registered accounts, the required fields are username, email address, and password hash. Optional profile information may also be processed and stored if a user enters it, including public profile data, display texts, links, social links, avatar images, and descriptions.

Technical data may also be processed to ensure secure and reliable operation of the service, including request-related data, IP-related security context, login timestamps, link activity, and abuse-prevention signals.

Purposes of processing

Personal data is processed for the provision of user accounts, login protection, short-link creation, public profile pages, link management, abuse handling, and the technical security and stability of the platform.

Legal bases

Processing is carried out under Art. 6(1)(b) GDPR where processing is necessary for the performance of the service, and under Art. 6(1)(f) GDPR where processing is necessary for security, abuse prevention, service operation, and technical integrity.

Retention

Account data is stored until deletion or until an inactive member account reaches 5 years without login activity. In that case, the account and its associated links may be permanently deleted. Optional links may be deleted earlier if an expiry rule or inactivity-based deletion rule has been configured for the relevant link.

Hosting and processors

The production system is operated in a German data center. Cloudflare is used for DNS, CDN, and Turnstile bot protection. ZeptoMail is used for transactional email delivery, including reminder emails.

Cookies and similar technologies

At present, no analytics or advertising tools are used. If technically necessary security-related technologies are used, for example through login protection or Cloudflare Turnstile, they are used solely to provide and secure the service. A consent banner is generally required only for non-essential tracking or marketing technologies. Such technologies are not currently in use.

Your rights

Depending on the legal conditions, you may have rights of access, rectification, erasure, restriction, objection, and data portability. You may also lodge a complaint with a supervisory authority.

Abuse reports

Reports relating to abusive or harmful links can be sent to [email protected].