ViaLink Privacy Policy
Effective Date: April 1, 2026
Linpert, inc. (the “Company”) establishes and discloses this Privacy Policy as follows in order to protect the personal information of data subjects and to handle related grievances promptly and smoothly, in accordance with Article 30 of the Personal Information Protection Act of the Republic of Korea.
Article 1 (Purposes of Processing Personal Information)
The Company processes personal information for the following purposes. The personal information being processed will not be used for any purpose other than the following, and if the purpose of use changes, the Company will implement necessary measures, such as obtaining separate consent, in accordance with Article 18 of the Personal Information Protection Act.
- Membership registration and management: identity verification for membership-based services, maintenance and management of membership status, prevention of fraudulent use of the Service, and various notices and notifications
- Service provision: deep link creation and management, click redirection, deferred deep linking, attribution analytics, and dashboard provision
- Marketing and advertising: development of new services, provision of customized services, and provision of event and advertising information (with consent)
- Service improvement: analysis of access frequency, statistics on service usage, and improvement of service quality
Article 2 (Items of Personal Information Processed)
| Category | Items Collected | Collection Method |
|---|---|---|
| Sign-up (required) | Email, password (encrypted), name | Sign-up form |
| Sign-up (optional) | Profile image, company name | In-service settings |
| Social login | Email, name, profile image (Google OAuth) | Google authentication |
| Service use | Access IP address, browser type and version, OS information, device model, screen resolution, access timestamps, service usage records | Automatically collected |
| Deep link clicks | Click IP address, User-Agent, Referer, device fingerprint (hashed) | Automatically collected |
| Payment (upon upgrading to a paid plan) | Payment method information | Collected via payment gateway (the Company does not store card numbers) |
Article 3 (Processing and Retention Period of Personal Information)
The Company processes and retains personal information within the retention and use period prescribed by applicable laws, or the retention and use period consented to by the data subject at the time of collection.
| Information Retained | Retention Period | Legal Basis |
|---|---|---|
| Member information | Until membership withdrawal | Personal Information Protection Act |
| Records on contracts or withdrawal of offers | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records on payment and supply of goods, etc. | 5 years | Act on Consumer Protection in Electronic Commerce |
| Records on consumer complaints or dispute resolution | 3 years | Act on Consumer Protection in Electronic Commerce |
| Records on display and advertising | 6 months | Act on Consumer Protection in Electronic Commerce |
| Website access logs | 3 months | Protection of Communications Secrets Act |
| Deep link click fingerprints (hashed) | 72 hours | Service operation purposes (deferred deep linking) |
Article 4 (Provision of Personal Information to Third Parties)
The Company processes the personal information of data subjects only within the scope specified in Article 1, and provides personal information to third parties only in cases falling under Articles 17 and 18 of the Personal Information Protection Act, such as with the consent of the data subject or pursuant to special provisions of law.
The Company does not currently provide personal information to any third party.
Article 5 (Outsourcing of Personal Information Processing)
For the smooth provision of the Service, the Company outsources personal information processing as follows.
| Contractor | Outsourced Work | Retention Period |
|---|---|---|
| Google LLC | Social login (Google OAuth) | Until membership withdrawal or termination of the outsourcing agreement |
| Amazon Web Services | Cloud server operation and data storage | During the period of service use |
Article 6 (Rights and Obligations of Data Subjects and How to Exercise Them)
Data subjects may exercise the following rights related to the protection of personal information against the Company at any time:
- Request to access personal information
- Request to correct errors, etc.
- Request to delete
- Request to suspend processing
These rights may be exercised through the settings page within the Service or by email (support@vialink.app), and the Company will take action without delay. If a data subject requests the correction of an error in their personal information, the Company will not use or provide the relevant personal information until the correction is completed.
Article 7 (Destruction of Personal Information)
When personal information becomes unnecessary, such as upon expiration of the retention period or achievement of the purpose of processing, the Company will destroy the personal information without delay.
- Destruction procedure: unnecessary personal information is destroyed with the approval of the personal information protection officer.
- Destruction method: information in electronic file format is deleted using technical methods that render the records unrecoverable, and personal information printed on paper is shredded or incinerated.
Article 8 (Measures to Ensure the Security of Personal Information)
The Company takes the following measures to ensure the security of personal information:
- Password encryption: passwords are stored encrypted using the bcrypt hash function.
- Encryption in transit: all communications are encrypted with TLS 1.3.
- Access control: access to personal information is restricted to the minimum number of personnel.
- Installation and updating of security programs: an intrusion detection system is operated to guard against hacking and similar threats.
- Retention of access records: records of access to personal information processing systems are retained for at least one year.
Article 9 (Installation, Operation, and Refusal of Automatic Collection Devices)
The Company uses cookies to provide customized services to users.
- Purpose of cookies: maintaining login sessions and analyzing service usage statistics
- Refusing cookies: you may refuse the storage of cookies in your web browser settings. However, if you refuse cookies, you may have difficulty using services that require login.
Article 10 (Personal Information Protection Officer and Contact Information)
The Company is responsible for overseeing the processing of personal information, and has designated a personal information protection officer as follows to handle complaints and provide remedies for data subjects in relation to the processing of personal information.
Business and Contact Information
- Corporate Name: Linpert, inc.
- Registered Address: 2810 N Church St STE 88319, Wilmington, DE 19802, United States
- Contact: support@vialink.app | (302) 300-4089
- Copyright: © 2026 Linpert, Inc. All rights reserved.
Data subjects may direct all inquiries, complaints, and requests for remedies related to personal information protection arising from the use of the Service to the contact above. The Company will respond to and process inquiries from data subjects without delay.
Article 11 (International Data Subjects and Regional Provisions)
The Company provides services globally and ensures the protection of data subjects’ privacy rights in accordance with major international regulations.
1. For Residents of the European Economic Area (EEA) and the United Kingdom (UK) (GDPR Compliance)
If you are located in the EEA or the UK, you have the following additional rights under the General Data Protection Regulation (GDPR):
- Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.
- Right to Object and Restrict Processing: You may object to the processing of your personal data for direct marketing purposes or on grounds relating to your particular situation.
- Right to Withdraw Consent: If our processing is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
- Lodging a Complaint: You have the right to lodge a complaint with a local supervisory authority (Data Protection Authority) in your country of residence if you believe our processing of your personal data infringes on the GDPR.
2. For California Residents, USA (CCPA/CPRA Compliance)
If you are a resident of California, the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), grants you specific rights:
- Right to Know and Access: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you over the past 12 months.
- Right to Opt-Out of Sale or Sharing: The Company does not “sell” or “share” (for cross-context behavioral advertising) your personal information to third parties as defined under California law.
- Right to Non-Discrimination: We will not discriminate against you (such as denying services or charging different prices) for exercising any of your CCPA/CPRA rights.
3. International Data Transfers
The personal information we collect may be transferred to, stored, and processed in countries outside of your country of residence where our cloud servers and infrastructure operate. The Company ensures that such international transfers are protected by appropriate safeguards, including the implementation of Standard Contractual Clauses (SCCs) approved by the European Commission, to guarantee an adequate level of data protection.
4. Children’s Privacy
Our Service is intended for a general audience and is not directed to children. We do not knowingly collect or solicit personal information from children under the age of 13 (or under 16 in the EEA). If we learn that we have inadvertently collected personal information from a child under these ages, we will delete that information as promptly as possible. If you believe a child has provided us with personal information, please contact us at support@vialink.app.
Article 12 (Changes to this Privacy Policy)
This Privacy Policy applies from April 1, 2026. Previous versions of the Privacy Policy can be found below.
- Effective April 1, 2026 (current)