Skip to content

Privacy Policy

Last updated: February 11, 2026

1. Introduction

This Privacy Policy explains how Status Link ("we," "us," or "our") collects, uses, and protects your personal information when you use our platform and services. We are committed to safeguarding your privacy and ensuring transparency about our data practices.

2. Information We Collect

We collect the following types of information:

Account Information

  • Name, email address, and password (for email/password registration)
  • Profile information provided by OAuth providers (Google) when you choose social login

Integration Data

  • OAuth tokens for connected third-party services (Trello, Jira)
  • Project board data synced from your connected services (board names, lists, cards)

Workspace Data

  • Workspace names, slugs, phases, activities, and settings you create
  • Branding preferences (brand colors, layout style, theme)
  • Uploaded files such as workspace logos

Usage Data

  • Log data such as IP address, browser type, and access times
  • Interactions with the Service for performance and improvement purposes

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Authenticate your identity and manage your account
  • Sync your project boards from third-party services to Status Link workspaces
  • Generate and serve public status pages via magic links
  • Store and display your branding preferences and uploaded logos
  • Send transactional emails (account verification, password resets)
  • Improve the Service and develop new features
  • Respond to support requests and communicate with you

4. Third-Party Services

We use the following third-party services to operate the platform:

  • Supabase — Database hosting (PostgreSQL), authentication, and file storage for uploaded logos
  • Trello API — Board and card data syncing when you connect your Trello account
  • Jira API — Project data syncing when you connect your Jira account
  • Google OAuth — Social login authentication

Each of these services has their own privacy policies. We encourage you to review them. We only share the minimum data necessary for these services to function.

5. Data Retention & Deletion

We retain your data for as long as your account is active or as needed to provide the Service. When you delete your account:

  • Your account information and workspace data will be permanently deleted
  • Stored OAuth tokens for connected integrations will be removed
  • Uploaded files (logos) will be deleted from our storage
  • Public magic links to your workspaces will cease to function

Some data may be retained in backups for a limited period as part of our standard infrastructure operations.

6. Cookies & Session Management

We use cookies and similar technologies for authentication and session management. Specifically:

  • Authentication cookies — Managed by Supabase to maintain your logged-in session and refresh authentication tokens
  • Theme preference — A local storage value to remember your dark/light mode preference

We do not use advertising or third-party tracking cookies.

7. Your Rights

You have the right to:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Update or correct inaccurate personal information
  • Deletion — Request deletion of your account and associated data
  • Portability — Request your data in a portable format
  • Withdrawal of consent — Disconnect third-party integrations or delete your account at any time

To exercise any of these rights, please contact us through our contact page.

8. Data Security

We implement industry-standard security measures to protect your data, including:

  • Row-level security (RLS) policies on all database tables, scoped to authenticated users
  • Encrypted data transmission via HTTPS
  • Secure storage of OAuth tokens and authentication credentials
  • Regular security reviews and updates

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

9. Children's Privacy

The Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected data from a child under 13, we will take steps to delete that information promptly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or by posting a notice on the Service. Your continued use of the Service after the changes take effect constitutes your acceptance of the revised policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at our contact page.