Security Disclaimer

Created on 16 September, 2020 • 4,375 views • 2 minutes read

Our aim is to provide you with a service that is safe, and secure.






We make every effort to ensure the data (your name, email address, passwords, links, and pages) stored on this service is secure, however we ask users to understand that we do not have the same funding as a larger service.


We advise providing as little information to us as possible, and ensuring that you use a unique password.


 


The data we collect from you: (Very little, to ensure low risk)


- Your name


- Your email address


- User Agent (i.e 'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/88.0.4324.146 Safari/537.36', '10')


- Your IP Address


- Your password (Hashed in the database)


- When you were last active on our website


- A number of total logins to the website (With associated IP addresses)


- Links you shorten


- Shortened Link Statistics


 


The above information is stored in a mysql cluster hosted with a reputable hosting provider on a virtual machine hosted in London, United Kingdom.


In addition to above, we also store your name and email address in our Email Newsletter service account with MailChimp.


 


Where is your data transfered to?


- Mailchimp (Newsletter Platform)


- Zopier (Automation platform)


- SQL Cluster based in the United Kingdom


 


We DO NOT intentionally share your data with third parties or sell your data.


 


To minimise risk and ensure maximum security on our site, we follow best practice guidance:


- Unnecessary ports are not exposed to the internet.


- SSH access to the server is locked down.


- We frequently patch the underlying operating system and software stack on our web server(s).


- We ensure the application running on this site is up to date when the developer releases new versions of their software.


- We use modern SSL cipher suites and ensure that the certificate bind to our web servers is valid.


- MFA is enforced on the account we hold with our hosting provider.


- Your interactions with addr.bio are proxied via a global web application firewall solution.


 


Concerned about your online security?


Here are some useful links:


- https://haveibeenpwned.com/


- https://breachalarm.com/


- https://www.dehashed.com/


 


Remember to use unique complex passwords, and store your passwords in a password manager such as 1password.


 


Removing your data from our system:


Deleting your account is simple - Login and head over to the 'Settings' area, select 'Delete account' and enter your account password to proceed.


Upon deleting your account, all associated data is dropped from our 'Live' database.


Note that your account data may reside on our backup systems until older backups are purged.