Privacy Policy

Last updated: August 10, 2025

1. Introduction

SmartBio ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our bio link platform and services. This policy complies with the General Data Protection Regulation (GDPR) and other applicable privacy laws.

By using SmartBio, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our services.

2. Information We Collect

2.1 Personal Information You Provide

We collect information you voluntarily provide, including:

Account Information: Username, email address, password
Profile Information: Name, bio, profile images, links, and other content you add
Payment Information: Billing details for Premium subscriptions (processed securely by Stripe)
Communication Data: Messages when you contact our support team
Preferences: Settings, customizations, and feature selections

2.2 Automatically Collected Information

We automatically collect certain information when you use our services:

Usage Data: Pages visited, features used, time spent on platform
Device Information: Browser type, operating system, device identifiers
Log Data: IP addresses, access times, error logs
Analytics Data: Click tracking, link performance (for Premium users)
Cookies and Tracking: Session data, preferences, authentication tokens

2.3 Third-Party Information

We may receive information from third parties such as:

Payment Processors: Stripe for subscription billing
Analytics Services: Service usage statistics
Security Services: Fraud prevention and security monitoring

3. How We Use Your Information

We use your personal information for the following purposes:

3.1 Service Provision

Create and manage your SmartBio account
Provide access to free and premium features
Process payments and manage subscriptions
Enable profile customization and link management
Deliver analytics and performance insights (Premium users)

3.2 Communication

Send service notifications and updates
Provide customer support
Send billing and account information
Notify about feature updates and improvements

3.3 Platform Improvement

Analyze usage patterns to improve our services
Develop new features and functionality
Ensure platform security and prevent abuse
Conduct research and analytics

3.4 Legal and Security

Comply with legal obligations
Protect against fraud and abuse
Enforce our Terms of Service
Respond to legal requests

4. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

Contract Performance: To provide our services and fulfill our Terms of Service
Legitimate Interest: For platform improvement, security, and business operations
Consent: For marketing communications and optional features (where applicable)
Legal Obligation: To comply with applicable laws and regulations

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers who help us operate our platform:

Stripe: Payment processing for Premium subscriptions
Supabase: Database and backend services
Cloudinary: Image hosting and optimization
Email Services: Transactional emails and notifications

5.2 Public Information

Information you choose to make public (such as your profile page, bio, and links) is accessible to anyone who visits your SmartBio profile.

5.3 Legal Requirements

We may disclose information when required by law or to:

Comply with legal processes or government requests
Protect our rights, property, or safety
Prevent fraud or security threats
Enforce our Terms of Service

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity.

6. Data Retention

We retain your personal information for as long as necessary to:

Provide our services to you
Comply with legal obligations
Resolve disputes and enforce agreements
Improve our services

Account Data: Retained while your account is active and for up to 2 years after deletion
Usage Analytics: Retained for up to 3 years for service improvement
Financial Records: Retained for 7 years as required by law
Support Communications: Retained for 2 years after resolution

7. Your Rights Under GDPR

If you are a resident of the European Union, you have the following rights:

7.1 Access and Portability

Right to Access: Request a copy of your personal data
Right to Portability: Receive your data in a machine-readable format

7.2 Correction and Deletion

Right to Rectification: Correct inaccurate personal data
Right to Erasure: Request deletion of your personal data

7.3 Processing Controls

Right to Restrict Processing: Limit how we use your data
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Remove consent for specific processing activities

To exercise these rights, contact us at privacy@smartbio.live. We will respond within 30 days as required by law.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

Encryption: Data encrypted in transit and at rest
Access Controls: Limited access to personal data on a need-to-know basis
Regular Security Audits: Ongoing monitoring and testing of security measures
Secure Infrastructure: Industry-standard hosting and database security
Payment Security: PCI DSS compliant payment processing through Stripe

While we strive to protect your information, no security system is impenetrable. We cannot guarantee absolute security.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure adequate protection for international transfers through:

European Commission adequacy decisions
Standard Contractual Clauses (SCCs)
Service provider certifications (Privacy Shield successors)
Other appropriate safeguards as required by law

10. Cookies and Tracking Technologies

We use cookies and similar technologies to:

Maintain your session and keep you logged in
Remember your preferences and settings
Analyze platform usage and performance
Provide security features and fraud prevention

You can control cookies through your browser settings. However, disabling cookies may limit your ability to use certain features.

11. Children's Privacy

SmartBio is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16, we will delete it immediately.

12. Third-Party Links

Our platform may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

13. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We will notify you of significant changes by email or through platform notifications. The "Last updated" date at the top of this policy indicates when the most recent changes were made.

14. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Officer

Email: privacy@smartbio.live

Support: Contact Page

Data Protection Queries: dpo@smartbio.live

EU Representative: For GDPR-related inquiries from EU residents, you may also contact our EU representative at eu-privacy@smartbio.live.

Consent: By using SmartBio, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your information as described herein.