Get a Demo

Data Retention and Privacy Policy

Effective Date: August 18, 2025

This LINK Privacy Statement (“Privacy Statement”) describes how Fermyon Inc. (DBA Link!, Linktoany.com and ShoppinPal) and our affiliated entities collect, use, process, and share your personally identifiable information. This Statement describes your choices regarding any applicable rights of access, deletion, and correction of your personal information. Where we refer to “information” in this Privacy Statement, it means any information that relates to an identified person.

This Privacy Statement applies to and any other website that links to this Statement (the “Site”). This Privacy Statement also applies to the information that we collect through the services we offer (“Services”), communities, through marketing and customer engagement, or branded social media pages.

This Privacy Statement does not apply to the information we collect about employees (our employment policies apply) or job applicants. This Privacy Statement also does not apply to information collected by third parties, like third-party websites, social media platforms or accounts, third-party service providers, or other third-party services or applications that integrate with our Services. This Privacy Statement also does not apply to any information that is not personally identifiable, like aggregated or anonymous information.

Our Services are not directed at children under the age of 16, and we do not knowingly collect information from individuals under the age of 16. If you are under the age of 16, you may not use the Services or provide your information to us through the Site or otherwise.

1. Purpose

The purpose of this Policy is to define the guidelines for the privacy, retention, storage, and deletion of data collected, processed, and maintained by LINK in the course of delivering the Services to the Merchant. The aim is to ensure compliance with applicable laws, regulations, and contractual obligations, while safeguarding personal and confidential business information.

2. Scope

This Policy applies to all data collected from Merchants, their merchants, and other stakeholders through the Services, including but not limited to Personally Identifiable Information (PII), transaction data, integration logs, and system-generated metadata.

3. Categories of Data Covered

The following categories of data are covered under this Policy:

  • Merchant account details, contact information, and preferences.
  • Merchant data shared through integrations or migrations, including names, contact details, and transaction records.
  • Technical logs, API request/response data, and other integration-related records.
  • Payment-related transaction metadata (excluding full payment card details).
  • Support tickets, communications, and related metadata.

 

4. Data Retention Principles

LINK adheres to the principle of retaining data only for as long as it is necessary to fulfill the purposes for which it was collected, or as required by applicable law or contractual obligations. Data retention durations will be based on operational necessity, legal requirements, and risk considerations.

5. Retention Periods

The following retention periods will generally apply:

  • Integration and transactional logs: Retained for up to 30 days, unless extended for specific troubleshooting or compliance purposes.
  • Migration datasets: Retained until migration completion and verified, then deleted within 30 days.
  • Merchant and Merchant records: Retained for the duration of the contractual relationship plus up to 12 months for administrative closure, unless otherwise required by law.
  • Support-related data: Retained for 12 months after ticket closure, unless required longer for compliance or dispute resolution.
  • Legal or compliance holds: Data subject to investigation, litigation, or regulatory requirements will be retained until the hold is lifted.

 

6. Data Retention and Privacy Terms

  • We Do Not Sell Your Data. LINK does not sell or trade Merchant or merchant data under any circumstances.
  • Data shall only be stored for as long as needed by LINK. Personally Identifiable Information (PII) shall be kept to a minimum and stored only where required and for only as long as required. With integrations (data sync) there is no database storage, only within logs as needed for support (log rotation is enforced typically in 30 days, unless a longer duration is needed for specific use cases). For onboarding/migrations specific data sets may be persisted through the duration of the migration – for example since Merchant and Product records will be needed to be matched with each Sale/Invoice, the data will be persisted until the point sales migrations are complete and then deleted within a period of 30 days.

 

7. Data Deletion and Destruction

When the retention period for any category of data expires, LINK will securely delete or destroy the data in a manner that prevents its recovery or misuse. Deletion will be verified and documented as part of internal compliance procedures.

8. Personal Information We Collect

We collect or receive information in the ways we describe in this section.

8.1 Categories of Information Information You Provide Us

  • When You Create an Account
  • Content or Information You Provide in the Services
  • Content You Provide Through Our Site
  • Support Channels or Communities
  • Marketing Information
  • Partner Program
  • Payment Processing Information
  • Technical, Device, and Connection Information
  • Cookies and Other Tracking Technology
  • Other Information Sources

 

Information You Provide Us: When you sign up to create an account in the Service, download content from the Site, fill out a form or survey or respond to communications, you provide us with information like your name, email address, address, company, phone number or other information. When you register for a community or a partner program, we collect account registration information like your name, email address, address, company, phone number, or other information. You may provide comments, communications, feedback, ratings, or other information when you use the Services or any of our communities or partner programs.

When You Create an Account: When you create an account, you provide us with your account registration and profile information (name, email address, company, and similar information). We automatically track certain information about your use of the Services, partner programs, or communities. We collect information about you when you login and how you interact with the Services, the features you use, clicks, log information about your use of the Services, and how you interact with other users.

Content or Information You Provide in the Services: The Services allow you to create connections or integrations between the third-party applications you use. When you use the Services, information or content is transferred from one application to another application. We collect the information that is transferred between the third-party applications. Other users may provide information about individuals when they submit content or information through the Services. Users may also provide information about their teammates, including name and email address, to invite teammates to use the Services. Similarly, an administrator may provide your contact information if they designate you as a user, the billing contact, technical contact, or administrator. You or your administrator may integrate the Services with third-party applications. In such case, we will receive information that allows us to identify your account within the third-party applications (like name, email address, phone number, tokens, or other identifying information), the log data, content, and device information. The information or content we receive from your organization is subject to your organization’s privacy policies. When you integrate our Services with a third-party application, the information we receive depends on the settings, permissions, and privacy Statement controlled by that third-party application.

Content You Provide Through Our Site: If the Site or our social media platform pages allow you to upload content or information, we will collect the content or information you upload. For example, when you provide feedback, participate in any interactive features, surveys, contests, promotions, sweepstakes, activities, or events, you may provide us information or content.

Information You Provide Through Support Channels or Communities: You may provide information or content to us through the customer support or chat functionality we make available on the Site, in the Services, or other sites that we control. When you engage with our support team, in addition to your account information, we may ask you to provide additional information about your issue, which may include information about your technology, software, internet connection, or screenshots. To submit information to a community site, we may require you to create an account within the community (we will collect your account registration information like name, email, company, address, and phone number). If you have an account in the Services, we will associate your community membership and activities with your Services account. As a community member, you and other members may submit questions, provide answers, engage with members through chat or comments, create content or webinars to share with the community, or solicit feedback or help from other community members.

Marketing Information: We receive information about you directly from you when you engage with the Site and automatically when you engage with the Site or open or click the emails we send you. We receive information from third-party sources like lead generation providers, content sponsors, event sponsors, or social media platforms. The information we collect from third-party sources may include marketing or demographic information, contact information (name, email, company, address, job title), information about your profile on those platforms, or information about purchasing intent. We may combine this information with the information we collect.

Payment Processing Information: When you create a paid account within the Services or otherwise initiate a transaction with us, we will use a third-party payment processor to process the payment. We do not collect your credit card number, expiration date, or pin number. The transaction details we retain are those details that allow us to verify that you paid for the Services or transaction, including price, currency, date of payment, payment method, name, and account name. We will combine that information with your account information.

Technical, Device, and Connection Information: When you use the Services or interact with our Site, we automatically collect information about the device you use to access the Site or Services. When you interact with our branded social media sites, the social media platform automatically collects information and provides it to us. This information includes information that identifies you and connection type, settings, operating system, browser type, internet protocol (IP) address, URLs of referring/exit pages, device identifiers, and crash data.

Cookies and Other Tracking Technology: We use cookies, web beacons, pixels, or other tracking technology on the Site and in the Services to provide functionality, personalize your experience and recognize you across services or devices. This information includes IP addresses, location, device type, browser type, internet service provider (ISP), referring/exit pages, operating system, date/time stamp, click data, device-identifying data. We may combine this automatically collected information with other information that you provide us through other channels. When you interact with our social media sites, the social media platform automatically collects information and provides it to us.

Other Information Sources:

We receive information about you from other sources like third-party service providers, public databases, and our business and channel partners. This information may include business contact information, address, job title, email address, phone number. We may combine this information with information we collect through other means.

8.2. Personal Information We CollectWe use the information we collect for the following purposes:

  • to provide and support the Services,
  • to improve the Services,
  • to provide, support, and improve the Site, our partner programs, or communities,
  • to process your requests,
  • to process your payments or transactions,
  • to provide you with information about our products and services,
  • to combine information about you with other information we receive from third parties,
  • to tailor the content or information that we provide to you,

 

to protect the integrity or security of our business, the Site, Services, or third-party applications, or we may also use your information to: carry out our obligations, enforce our rights, comply with any legal obligation (including assisting our customer to comply with their legal obligations), where it is necessary for our legitimate interests, or to fulfill any other purpose for which you provided the information.

9. How we use the information we collect

We use the personal data we collect for or on behalf of Merchants, to provide our services and the functionality of our application:

We may also use personal data for related internal purposes, including:

  • To provide information about the application, such as important updates or changes to the application and security alerts
  • To measure performance of and improve the application
  • To respond to inquiries, complaints, and requests for customer support

 
In addition, Company may use personal data as we believe necessary or appropriate to
(a) comply with applicable laws and lawful requests and legal processes, such as to respond to subpoenas or requests from government authorities;
(b) enforce the terms and conditions that govern our application;
(c) protect our rights, privacy, safety or property, and/or that of you or others; and
(d) protect, investigate and deter against fraudulent, harmful, unauthorized, unethical or illegal activity

10. Sharing of Personal Information

We may share information when one of the following circumstances applies:

With your Consent: : We may share your information with companies, organizations, and other third parties with your consent or to fulfill the purpose for which you provided the information.

With our Partners: We may share information with our partners (including resellers, referral, integration partners, experts in our community, or developer platform partners) for the purposes of the partnership agreement or to enable our partner programs.

To Provide the Services, Partner Programs, or Communities: : We may share your information with your teammates, account administrators, billing, or technical account users. We will also share your information with third-party applications (at your direction or the direction of an account owner) when an account holder uses the Services. To deliver the Site, Services, partner programs, or communities, we may share your information with our service providers. If you participate in our partner programs or communities, we may share your information with other partners, community members, customers, or other users (like when you comment or share information, rate an expert, or express interest in a partner integration).For Business Purposes: We provide information to vendors and services providers to help us provide the Site, Services, partner programs and communities, and for our business purposes. Examples of our service providers include hosting or infrastructure providers, chat widgets, helpdesk ticket providers, website hosts, customer relationship management providers, email providers, collaboration tools, and other service providers.

To Market our Services or Partner Programs: We may share information that you provide us with third-party service providers who help us market our Services or our partner programs. These service providers may provide virtual or live events, email marketing tools, sales engagement, or lead generation tools.

For Corporate Transactions: We may share personal data with actual or prospective acquirers, their representatives, and other relevant participants in, or during negotiations of, any sale, merger, acquisition, restructuring, divestiture, or change in control involving all or a portion of our business or assets, including in connection with a bankruptcy or similar proceedings. If we undergo a sale or corporate restructure, we may disclose information to a buyer or other successor in interest.

For Legal Reasons: We may share your information if we believe that it is necessary to comply with any court order, law, legal obligation, or legal process, including to respond to any government or regulatory request. We may share your information if we believe that it is necessary to enforce our rights, or the rights of our customers, or users. We may share your information if we believe that it is necessary or appropriate to protect our rights or safety or the rights or safety of our customers, other users, partners, or service providers.

With Third-Party Widgets: If you click on a widget or social media feature, like the Twitter “tweet” button or Facebook “like” button, these widgets will share information with the widget provider (like IP address, the which page you are visiting on the Services and may set a cookie to enable the feature to function correctly).

11. Your Rights and Choices

Automatically Collected Information: There are various resources available to you to manage cookies. In most modern browsers, you can block or delete cookies by clicking Settings > Privacy > Cookies. Instructions for blocking or deleting cookies in other browsers may be available in each browser’s privacy or help documentation. You can also disable or delete the stored data used by technology similar to cookies, such as Local Shared Objects or Flash cookies, by managing your browser’s “add-on settings” or visiting the website of its manufacturer. To find out more about cookies, including how to see what cookies are used and stored and how to manage and delete them, visit If you disable or refuse cookies, some parts of the Site or Service may then be inaccessible or not function properly.

Our Marketing Activities: If you would like to opt-out of receiving our marketing, you can opt-out by sending an opt-out email to privacy@linktoany.com. If we sent you a promotional email, you may opt-out by clicking the opt-out link at the bottom of the email or sending us a return email asking to be omitted from future email distributions. This-opt out does not apply to information necessary to deliver the Services, communities, or partner programs, like your account information or notices we send about the Services’ operation. If you have an account in the Services, you can manage your communication preferences (including opt-outs) in the settings page of your account profile.

Services: You can review and change your personal information in the Services by logging into the Service and visiting your account profile page. You may also send us an email at privacy@linktoany.com to request access to, correct, or delete any personal information that you have provided to us. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect. You can manage your communication preferences within the settings page of your account profile.

12. Your California privacy rights

As a California resident, you have the rights listed below. However, these rights are not absolute, and we may decline your request as permitted by the CCPA.

  • Information. You can request the following information about how we have collected and used your Personal Information during the past 12 months:

o The categories of Personal Information that we have collected.
o The categories of sources from which we collected Personal Information.
o The business or commercial purpose for collecting and/or selling Personal Information.
o The categories of third parties with whom we share Personal Information.
o Whether we have disclosed your Personal Information for a business purpose, and if so, the categories of Personal Information received by each category of recipient.
o Whether we’ve sold your Personal Information; and, if so, the categories of Personal Information received by each category of recipient.

  • Access.You can request a copy of the Personal Information that we maintain about you.
  • Deletion.You can ask us to delete the Personal Information that we maintain about you.
  • NondiscriminationYou are entitled to exercise the rights described above free from discrimination. This means that we will not penalize you for exercising your rights by taking actions such as by denying you goods or services, increasing the price/rate of goods or services, decreasing the service quality, or suggesting that we may penalize you as described above for exercising your rights. However, the CCPA allows us to charge you a different price or provide a different service quality if that difference is reasonably related to the value of the Personal Information we are unable to use.

 

13. Right to information, access and deletion

You can request to exercise your information, access and deletion rights in the following ways:

  • Email : privacy@linktoany.com
  • Identity verification. The CCPA requires us to verify the identity of the individual submitting the request before providing a substantive response to the request. A request must be provided with sufficient detail to allow us to understand, evaluate and respond. The requester must provide sufficient information to allow us to reasonably verify that the individual is the person about whom we collected information. A request may also be made on behalf of your child under 13.
  • Deletion.You can ask us to delete the Personal Information that we maintain about you.
  • Authorized agents. California residents can empower an “authorized agent” to submit requests on their behalf. We may require the authorized agent to have a written authorization confirming that authority.

 

14. Dispute Resolution

You may direct any questions or complaints about this Privacy Statement to us by contacting us through the channels indicated below. Any disputes arising out of or related to this Privacy Statement will be handled in accordance with the dispute resolution process indicated in your contract with LINK that refers to this Privacy Statement, if applicable.

15. Notice of Changes

The Services, the Site, and our business may change from time to time. As a result, we may make changes to this Privacy Statement. We reserve the right to update or modify this Privacy Statement at any time and from time to time. If we make changes to this Privacy Statement, we will post the changes on this page and will indicate at the top of this page and the date these terms were last revised. If we make material changes, we will notify you through the Services user interface, as a pop up on the Site, in an email notification, or through other reasonable means. Your continued use of the Site or Services after the date any such notice constitutes your acceptance of the modifications.

16. Exceptions

In certain cases, data may be retained beyond the standard retention period to comply with legal obligations, enforce agreements, resolve disputes, or protect the rights, property, or safety of LINK, the Merchant, or others.

17. Data Security Measures

LINK implements administrative, technical, and physical safeguards to protect retained data from unauthorized access, alteration, disclosure, or destruction. These measures are designed to ensure compliance with industry best practices and applicable data protection laws.

18. Contact Information

If you have any questions or comments about this notice, how we collect and use your information, your choices or rights regarding such use, or wish to exercise your rights, please do not hesitate to contact us at:

Phone: (858) 327-3775

Email: privacy@linktoany.com

Postal Address:

LINK, Inc.
Attn: Legal Department/Privacy
11777 San Vicente, Suite 600, CA 90049