LinxTime ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our group event coordination platform.
1. Data Controller
LinxTime is the data controller responsible for your personal data.
LinxTimeRyttmastargatan 11
174 59 Sundbyberg
Sweden
For privacy-related inquiries, contact us at: [email protected]
2. Data We Collect
We collect the following categories of personal data:
Account Data
When you create an account, we collect your email address, name, username, and optionally a profile avatar. This data is necessary to provide our services.
Calendar Data
If you connect your Google Calendar, we access your calendar events to determine your availability for booking and to sync confirmed events. This data is only accessed with your explicit consent.
Payment Data
If you subscribe to a paid plan or participate in funded events, we store your Stripe customer ID and transaction history. Payment card details are processed directly by Stripe and never stored on our servers.
Usage Data
We automatically collect information about how you interact with our service, including IP address, browser type, pages visited, and timestamps. This helps us improve and secure our platform.
Communication Data
We store email addresses to send you event confirmations, reminders, and service-related notifications.
3. How We Use Your Data
We use your personal data for the following purposes:
- Provide our services: Create and manage your account, process event coordination, send notifications
- Process payments: Handle subscriptions and event-related pledges via Stripe
- Sync calendars: Import and export calendar events when you connect your Google Calendar
- Improve our platform: Analyze usage patterns to enhance features and user experience
- Security and fraud prevention: Detect and prevent unauthorized access
- Legal compliance: Meet our legal obligations (e.g., tax records)
Legal Basis for Processing (GDPR)
| Purpose | Legal Basis |
|---|---|
| Account creation & service delivery | Contract performance |
| Calendar sync | Consent |
| Payment processing | Contract performance |
| Service improvements & analytics | Legitimate interest |
| Tax & financial records | Legal obligation |
4. Third-Party Services
We share your data with the following third-party services that help us operate LinxTime:
| Service | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Email, payment details |
| Calendar sync | Calendar events, availability | |
| Resend | Email delivery | Email addresses |
| Cloudinary | Image hosting | Avatar images |
We do NOT sell your personal data.
5. Your Rights
Depending on your location, you have the following rights regarding your personal data:
GDPR Rights (EU/EEA Residents)
- Right to access: Request a copy of the personal data we hold about you
- Right to rectification: Request correction of inaccurate data
- Right to erasure: Request deletion of your personal data ("right to be forgotten")
- Right to restrict processing: Request limitation of how we use your data
- Right to data portability: Receive your data in a machine-readable format
- Right to object: Object to processing based on legitimate interests
- Right to withdraw consent: Withdraw consent at any time for consent-based processing
CCPA Rights (California Residents)
- Right to know: Request what personal information we collect, use, and disclose
- Right to delete: Request deletion of your personal information
- Right to correct: Request correction of inaccurate information
- Right to opt-out of sale: We do not sell personal information
- Right to non-discrimination: We will not discriminate against you for exercising your rights
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days (GDPR) or 45 days (CCPA).
6. Data Retention
We retain your data for the following periods:
| Data Type | Retention Period | Reason |
|---|---|---|
| Account data | Until account deletion + 30 days | Grace period for account recovery |
| Payment records | 7 years | Legal and tax requirements |
| Event history | 2 years after event | Service continuity and dispute resolution |
| Usage logs | 90 days | Security and debugging |
You can request deletion of your account and associated data at any time by contacting us or using the account deletion feature in your settings.
7. International Data Transfers
LinxTime is based in Sweden (EU). Your data may be transferred to and processed in countries outside the EU/EEA, including the United States, where some of our service providers operate.
For transfers outside the EU/EEA, we rely on Standard Contractual Clauses (SCCs) approved by the European Commission to ensure adequate protection of your data.
8. Security
We implement industry-standard security measures to protect your data:
- Encryption in transit (TLS/HTTPS) and at rest
- OAuth-based authentication for calendar connections (no password storage)
- PCI-compliant payment processing via Stripe
- Regular security audits and monitoring
- Access controls and employee training
While we strive to protect your data, no method of transmission over the Internet is 100% secure. If you discover a security vulnerability, please contact us immediately.
10. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will notify you by:
- Updating the "Last updated" date at the top of this page
- Sending an email notification for significant changes
- Displaying a notice in the application
Your continued use of LinxTime after changes constitutes acceptance of the updated policy.
11. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- Email: [email protected]
- Address: LinxTime, Ryttmastargatan 11, 174 59 Sundbyberg, Sweden
EU residents may also lodge a complaint with your local data protection authority. In Sweden, this is the Integritetsskyddsmyndigheten (IMY).