Privacy Policy

Last Updated: 6 March 2025

Mirage AI LLC (“GetAllMyLinks,” or “Company,” or “we,” or “us,” or “our”) is committed to protecting and respecting your privacy and personal information. This Privacy Policy describes our practices regarding the collection, use, disclosure and other processing of your personal information when you visit our websites (https://getallmylinks.com/, https://app.getallmylinks.com and user landing pages in the format of https://getallmylinks.com/user), interact with us and use our services and products including our deeplink services (collectively, the “Services”) and your privacy rights, including the rights of individuals located in the European Economic Area (“EEA”) and the United Kingdom (“UK”) for who the Company acts as a controller when processing their personal information under this Privacy Policy.

By accessing the Services, you agree to our collection and use of your personal information as described in this Privacy Policy and our Terms and Conditions. However, this does not equate to consent for the processing of your personal information for purposes of EEA and UK data protection laws, for which the legal bases are set out in Section II below.

For purposes of this Privacy Policy, “Personal Information” means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular natural person, consumer or household, as understood under applicable data protection laws. Depending on applicable law, it does not include de-identified or aggregated information, or public information lawfully available from governmental records or other public sources.

I. NOTICE AT COLLECTION: PERSONAL INFORMATION WE COLLECT

We collect your Personal Information when you visit our websites and through other interactions with us, when you sign up or register for a user account, when you request information about our Services, when you visit and interact with user landing pages, when you otherwise use our Services or when you voluntarily provide information to us through our websites, or by emailing or otherwise contacting us. We may also collect your Personal Information from certain third parties.

Depending on how you interact with us, the categories of Personal Information we collect from these sources include the following and as set out in Section II below:

  • Personal identifiers: Name, email address, telephone numbers, account username and password, photos and videos, social media handles and IP address, deeplinks and other content you generate through our Services that identify you;
  • Payment data: Credit card, bank account or other payment information collected and stored through Paddle, our third-party payment processor, and records of Services you purchased, obtained or considered; and
  • Internet or other electronic activity information: Device and browser type and information regarding your interactions with our website and/or mobile application (including your creation, generation and interaction with our deeplinks), IP address, metadata and diagnostic data, details about your browser, network, operating system and device, information generated when you otherwise interact with us (e.g. through customer support), information from cookies and related technologies, and information that you are sharing with us through device settings (e.g. camera access, photos).

We have collected the same categories of Personal Information in the 12 months prior to the date of this Privacy Policy.

If you withhold Personal Information, please note we may not be able to provide certain Services to you.

Cookies and Other Technologies

Cookies are small, sometimes encrypted text files that are stored on computer hard drives or browsers by websites that you visit. They are used to help users navigate websites efficiently as well as to provide information to the owner of the websites. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, please visit www.allaboutcookies.org.

We also allow third parties (including Google and Meta) to use third party cookies, web beacons, and other storage technologies to collect or receive information about how you interact with our websites and apps and elsewhere on the Internet and use that information to provide analytics and other measurements services and for advertising, marketing and/or retargeting purposes. For example, we use Google Analytics to evaluate the use of our website. Google Analytics uses cookies and other identifiers to collect information, such as how often users visit a Site, what pages they visit when they do so, and what other websites they visited prior to visiting our website. For information about Google’s privacy practices, please refer to the Google Privacy Policy: https://policies.google.com/privacy?hl=en-US#infocollect.

When you visit our website and/or use our Services, we use cookies and similar technologies (e.g. web beacons). For more information on how we collect and use cookies, please visit our Cookie Policy.

II. NOTICE AT COLLECTION: HOW WE USE YOUR INFORMATION

We have set out below a description of the reasons why we use your Personal Information (referred to as “processing purposes” below), and, for individuals located in the EEA or the UK, we explain which of the legal bases we rely on to do so.

Categories of Personal Information Processing Purposes Legal Basis (where you are located in the EEA or the UK)
Personal Identifiers; Payment data; Internet or other electronic activity information To provide our Deeplink Services: (i) providing access to certain areas, functionalities, and features of our Services; (ii) communicating with you about your account, activities on our Services and policy changes; (iii) providing you with an account to use with our Services; (iv) generating deeplinks, and metrics and analytics related to deeplink usage; (v) for internal business analytics to monitor, tailor and improve our Services and (vi) carrying out our obligations arising from any contracts entered into between you and us. To manage and perform our contract with you (Art. 6(1)(b) GDPR).
To pursue our legitimate interests to operate our business and provide our Services (Art. 6(1)(f) GDPR).
With your consent where required under applicable law (Art. 6(1)(a) GDPR).
Personal Identifiers; Internet or other electronic activity information To provide you with news and other information about the Company: (i) provide news, (targeted) advertisements, and/or other marketing promotions and offers about our Services and (ii) notify you about changes to our Services. To pursue our legitimate interests to operate and improve our business, and to properly manage and administer our relationship with you (Art. 6(1)(f) GDPR).
With your consent where required under applicable law (Art. 6(1)(a) GDPR).
Personal Identifiers; Internet or other electronic activity information Security: To ensure network and information security, including monitoring authorized users’ access to our Services, preventing cyber-attacks, unauthorized use of our systems and website / mobile apps, prevention or detection of crime, fraud, or other activities that violate our Terms and Conditions or that are illegal, and protection of your Personal Information. To pursue our legitimate interests to ensure our website and mobile apps are safe and secure and to ensure they are used in accordance with our Terms and Conditions (Art. 6(1)(f) GDPR).
Personal Identifiers; Internet or other electronic activity information Transactions: To enable any due diligence and other appraisals or evaluations for any actual or proposed merger, acquisition, financing transaction or joint venture contemplated by us. To pursue our legitimate interests to administer the management of our business (Art. 6(1)(f) GDPR).
Personal Identifiers; Internet or other electronic activity information Legal Claims: To defend and enforce our rights including, against legal claims that involve us, and to manage regulatory matters, investigations, data breaches, and/or data subject requests. To protect our rights and the rights and safety of our users or others. To comply with our legal obligations (Art. 6(1)(c) GDPR).
To pursue our legitimate interests to enforce or defend our rights and interests (Art. 6(1)(f) GDPR).

If you are in the EEA/UK you are able to request a copy of the legitimate interest assessment carried out by us. Where we need to collect the abovementioned categories of Personal Information by virtue of a legal obligation or in light of a contract entered or to be entered into with you, and you do not provide this personal information when requested, we may not be able to comply with our legal obligations, provide you with the Services or perform the contract we have or are trying to enter into with you. In such case, we may have to terminate our relationship with you.

III. NOTICE AT COLLECTION: DISCLOSING YOUR INFORMATION

We have set out below a description of the ways we disclose your Personal Information to certain third parties for a business purpose including in the 12 months prior to the date of this Privacy Policy:

Categories of Consumers’ Personal Information Categories of Third Parties With Which We Shared Personal Information for a Business Purpose
Personal identifiers: Name, email address, telephone numbers, account username and password, photos and videos, social media handles and IP address, deeplinks and other content you generate through our Services that identify you. Service providers that assist us in operating, analyzing, and displaying content on our Services; provide customer support; communicate with you via email; provide business analytics information; provide advertisements; provide website and mobile application hosting services; manage customer’s information and accounts; verify and conduct payment processing; provide legal and accounting services.
Payment Data: Credit card, bank account or other payment information collected and stored through Paddle, our third-party payment processor, and records of Services you purchased, obtained or considered. Service providers that assist us in verifying and conducting payment processing.
Internet or other electronic network activity information: Device and browser type and information regarding your interactions with our website and/or mobile application (including your creation, generation and interaction with our deeplinks), IP address, metadata, details about your browser, network, operating system and device, information generated when you otherwise interact with us (e.g. through customer support), information from cookies and related technologies, and information that you are sharing with us through device settings (e.g. camera access, photos). Service providers that provide data security services and cloud-based data storage; host our Services and assist with other IT-related functions; provide website and mobile application hosting; and provide business analytics information.

Additional Information About How We May Share Personal Information
We also share Personal Information as required or permitted by law to comply with a subpoena or similar legal process or government request, or when we believe in good faith that disclosure is legally required or otherwise necessary to protect our rights and property or the rights, property or safety of others, including to law enforcement agencies, and judicial and regulatory authorities. We may also share your Personal Information with third parties to help detect and protect against fraud or data security vulnerabilities. We may transfer your Personal Information to a third party in the event of an actual or contemplated sale, merger, reorganization of our entity or other restructuring.

No Sale of Personal Information

We do not sell any of your Personal Information to third parties for monetary consideration.

No Profiling to Facilitate Decisions with Legal or Other Significant Effects

We do not engage in the automated processing of Personal Information to create profiles about individuals that are used in furtherance of decisions with legal or other similarly significant effects, such as the provision or denial of financial or lending services, housing, insurance, or access to essential goods or services.

IV. INTERNATIONAL DATA TRANSFERS

Our Services are hosted in the US. Therefore, when you use our Services or otherwise disclose Personal Information to us, this Personal Information will be transferred from your location to the US. We may also share your Personal Information with third party recipients as set out above, that are established in the US or other third countries.

Where such countries outside the EEA or the UK do not offer the same level of data protection as in the EEA or the UK (i.e., as per an adequacy decision of the EU Commission or UK Government), we have put in place appropriate safeguards so that your Personal Information are and remain protected. These may include implementing the Standard Contractual Clauses, sharing Personal Information with recipients who have certified under the EU-US Data Protection Framework, or relying on a derogation for the transfer. You may obtain further information and a copy of the relevant data transfer mechanisms that we have in place by contacting us at [email protected].

V. YOUR PRIVACY RIGHTS

In accordance with applicable law, you may have certain privacy rights depending upon the jurisdiction in which you reside or are located. However, please note that the below rights are not absolute and may be subject to limitations.

U.S. Privacy Rights

State privacy laws in certain U.S. states give state residents various rights with respect to many types of Personal Information we collect about them, with some exceptions. The rights provided under these laws are similar in many respects, with some differences from state to state. We list below the rights that may be applicable to our business under these law, noting that not all rights are available under each state’s privacy law:

  • Right to Know: The right to confirm whether or not we are processing a resident’s Personal Information and to access such data. Laws in some states provide the right to know more detailed information.
    • California’s privacy law gives residents the right to request the following additional information collected since the 12 months preceding their request: Categories of personal information we have collected about them; categories of sources from which such personal information was collected; categories of personal information that the business sold or disclosed for a business purpose about the consumer; categories of third parties to whom the personal information was sold or disclosed for a business purpose; and the business or commercial purpose for collecting or selling your personal information.
    • Oregon’s privacy law gives residents the right to request a list of third party entities to which we have disclosed personal information.
  • Right to Access / Copy: The right to access or request a copy of the Personal Information we have collected from the resident, subject to certain exceptions.
  • Right to Delete: The right to request deletion of their Personal Information that we have collected from or about the resident and to have such information deleted, subject to certain exceptions.
  • Right to Correct: The right to request that we correct inaccuracies in the resident’s Personal Information, taking into account the nature of personal information and purposes of processing such information.
  • Right to Opt-Out of Sale or Sharing of Personal Information: While we do not sell or share your Personal Information for monetary consideration, our use of third-party cookies may constitute a sale or sharing for cross-context behavioral advertising of your Personal Information, such as your Personal Identifiers, under certain U.S. state laws. Thus, you have the right to opt out of the sale or sharing of your Personal Information.

Exercising Your Rights

We will respond to requests from residents of states with data privacy laws that apply to us and will do so with respect to the rights that are provided under the requestor’s state law as of the effective date of that law. The laws in some states listed above may not be in effect as of the date of this Privacy Policy.

To exercise rights to know, access/copy, delete, correct, opt-out or know third parties to whom personal information is disclosed, submit a request through our webform or by contacting us at [email protected]. We will provide a substantive response to these requests within 45 days of the date on which we receive your request. If we require additional information or time to process your requests, we will contact you.

Opt-out Preference Signals and Do Not Track

An opt-out preference signal is sent by a platform, technology, or mechanism on behalf of consumers and communicates a consumer’s choice to opt out of the sale and sharing of personal information for cross-context behavioral advertising with all businesses that recognize the signal, without having to make individualized requests. The signal can be set on certain browsers or through opt-out plug-in tools.

We recognize the Global Privacy Control signal for certain U.S. residents based on IP address and do so at the browser level. This means that if the signal is sent through a specific browser, we will recognize it for that browser only, and only with respect to the identifiers for that browser. If you would like more information about opt-out preference signals, including how to use them, the Global Privacy Control website has such information (https://globalprivacycontrol.org/).

We will respond to opt-out requests as soon as feasibly possible, but no later than 15 business days after receipt of your request. If we require additional information or time to process your requests, we will contact you.

Some browsers have a “do not track” feature that lets you tell websites that you do not want to have your online activities tracked. At this time, we do not respond to browsers’ do not track signals.

Exercising Your Rights Using Authorized Agents

Agents may submit opt-out requests on behalf of individuals under several state data privacy law. For example, California residents can designate an agent to submit all other types of requests. If the agent submits an opt-out request on your behalf, the agent will need to provide us with your signed permission indicating the agent has been authorized to submit the opt-out request on your behalf. Agents can submit opt-out requests here.

If you are a California resident and you use an agent to submit other types of requests, the agent will need to provide us with your signed permission indicating the agent has been authorized to submit the request on your behalf. You will also be required to verify your identity directly with us or confirm with us that you provided the agent with permission to submit the request. Agents can submit requests on behalf of California residents (other than opt-out requests) here.

Please note that this subsection does not apply when an agent is authorized to act on your behalf pursuant to a valid power of attorney. Any such requests will be processed in accordance with state law pertaining to powers of attorney.

Verification of Requests

When you exercise rights other than opt-out rights, we will take steps to verify your identity. We will ask you for at least two pieces of personal information, depending on the nature of the request, and attempt to match those to information that we maintain or collect about you.

If we are unable to verify your identity with the degree of certainty required, we will not be able to respond to the request. We will notify you to explain the basis of the denial.

When We Do Not Act on a Request – Appeal Process

In some cases, we may not act on your requests (e.g., if we cannot do so under other laws that apply). When this is the case, we will explain our reasons for not providing you with the information or taking the action (e.g., correcting data) you requested.

Additionally, you have the right to appeal our decision by contacting us at [email protected] or through our webform within 30 days after your receipt of our decision.

Non-Discrimination

If you exercise any of the rights explained in this Privacy Policy, we will continue to treat you fairly. If you exercise your rights under this Privacy Policy, you will not be denied or charged different prices or rates for goods or services or provided a different level or quality of goods or services than others.

California Shine the Light

California Civil Code Section 1798.83, also known as the “Shine the Light” law, permits California residents that have an established business relationship with a business to annually request, free of charge, information about certain categories of Personal Information a business has disclosed to third parties for those parties’ direct marketing purposes in the preceding calendar year. We do not share Personal Information with third parties for their marketing purposes.

EEA/UK Privacy Rights

If you are located in the EEA or the UK you have the following data privacy rights which may be subject to limitations / restrictions:

  • The right to request access to your Personal Information;
  • The right to request that your Personal Information be corrected or deleted;
  • The right to request that we restrict our processing of your Personal Information;
  • The right to object to the processing of your Personal Information where it is carried out (i) for our legitimate interests unless we can demonstrate compelling legitimate grounds for the processing, and/or (ii) for direct marketing purposes;
  • The right to object to the processing of your Personal Information where that processing is carried out by legitimate interest (including, for direct marketing purposes) or withdraw consent to the processing of your Personal Information; and
  • The right to request that Personal Information be provided to you or a third party in a machine-readable format.

Please contact us at [email protected] in case you wish to exercise any of these above rights.

Finally, you also have the right to file a complaint with the competent data protection authority.

VI. DATA RETENTION

We retain your Personal Information for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting or reporting requirements. To determine the appropriate retention period, the amount, nature and sensitivity of the Personal Information are considered, together with the necessity and purposes for the processing (including, whether such purposes can be achieved through other means) and the potential risk of harm from unauthorized use or disclosure of the Personal Information. In exceptional cases (e.g., in pending litigation matters or where the law requires us to), your Personal Information may need to be kept for longer periods of time.

VII. SECURITY OF YOUR INFORMATION

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy. Unfortunately, no system is 100% secure, and we cannot ensure or warrant the security of any information that you provide to us.

VIII. CHILDREN’S INFORMATION

We recognize the particular importance of protecting privacy where children are involved. The Services are not directed to children under the age of 13 and we do not knowingly collect Personal Information from children under the age of 13. We do not knowingly sell any Personal Information, including the Personal Information of minors under 16 years of age. If you learn that your child under the age of 13 has provided us with Personal Information without your consent, you may contact us as set forth below. If we learn that we have collected any Personal Information from any child under the age of 13 or in violation of any applicable law related to minors, we will promptly take steps to delete such information and terminate the child’s account.

IX. OTHER PROVISIONS

EEA/UK Data Protection Representative

If you are located in the EEA, you can contact our EEA data protection representative, GDPR Local Ltd, for any inquiries regarding the processing of Personal Information. Their contact details are as follows:

  • Name: Adam Brogden
  • Email: [email protected]
  • Tel: +44 1772 217 800
  • Address: GDPR Local Ltd, 1st Floor Front Suite, 27-29 North Street, Brighton, England, BN1 1EB

If you are located in the UK, you can contact our UK data protection representative, GDPR Local Ltd, regarding the processing of Personal Information. Their contact details are as follows:

  • Name: Adam Brogden
  • Email: [email protected]
  • Tel: +44 1772 217 800
  • Address: GDPR Local Ltd, 1st Floor Front Suite, 27-29 North Street, Brighton, England, BN1 1EB

Changes to Our Privacy Policy

We reserve the right to modify this Privacy Policy at any time, so please review it frequently. If we make changes that materially affect our uses of your Personal Information or your privacy rights, we will announce the changes by providing a notice through our website and mobile application and/or, if deemed appropriate, by email.

Third-Party Websites

Our Services may contain links to websites and services that are owned or operated by third parties (each, a “Third-Party Service”) which may include features that collect your IP address, which page you are visiting on our Services, and may set up a cookie to enable the links to function properly. Any information that you provide on such sites is provided directly to the Third-Party Service and we are not responsible for their respective content, privacy or security practices and policies. To protect your information, we recommend that you carefully review the privacy policies of all Third-Party Services that you access.

Our Services may include access to publicly accessible blogs, forums, or social media pages. Personal Information you voluntarily transmit or publish online in such publicly accessible blog, forum, or social media page may be viewed and used by others without any restrictions. Your interactions with these platforms are governed by the privacy policy of the company providing them.

Accessibility

We are committed to ensuring that our communications are accessible to people with disabilities. To make accessibility-related requests or report barriers, please contact us as set forth below.

X. CONTACT US

If you have any questions about our privacy practices or this Privacy Policy, or if you wish to submit a request to exercise your rights as detailed in this Privacy Policy, please contact us at:

Mirage AI LLC
[email protected]