Privacy Policy

This Privacy Policy explains how PositiveBacklink ("we", "us") collects, uses, and protects your information when you use our backlink exchange platform.

1. Information We Collect

Account Information

When you create an account, we collect your email address and a hashed password. If you sign in with Google OAuth, we receive your email and basic profile data from Google.

Site Information

To match you with exchange partners, we collect the domains you connect, their niche category, language, and publicly available SEO metrics (domain authority, traffic estimates, indexed pages).

Usage Data

We collect anonymized analytics including pages viewed, features used, and approximate location (country-level) for service improvement.

2. How We Use Your Information

• To operate the link exchange matching engine and ABC Triangular method
• To run the AI Watchdog (12-hour link verification scans on your sites)
• To process credit transactions and account billing
• To send transactional emails (exchange offers, Watchdog alerts, account notices)
• To improve the service, debug issues, and prevent abuse

3. Information Sharing

We do not sell your personal data. We share information only with:

• Exchange partners — limited site metadata (domain, niche, metrics) is shown to potential partners during matching
• Service providers — Supabase (database & auth), Vercel (hosting), Cloudflare (CDN/DNS) under data processing agreements
• Legal compliance — when required by law or to protect rights, property, or safety

4. Your Rights (GDPR / CCPA)

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your account and associated data
• Export your data in a machine-readable format
• Withdraw consent for non-essential processing

To exercise any of these rights, email us at the address below.

5. Data Retention

We retain account data while your account is active. After account deletion, personal data is purged within 30 days, except where retention is required by law (e.g., billing records for tax compliance).

6. Security

We use industry-standard security: TLS encryption in transit, encryption at rest, hashed passwords (bcrypt/argon2 via Supabase Auth), and regular security reviews. No system is 100% secure, but we work hard to protect your data.

7. Children's Privacy

PositiveBacklink is not intended for users under 16. We do not knowingly collect data from children.

8. Changes to This Policy

We may update this policy occasionally. Material changes will be announced via email or in-product notice 30 days before taking effect.