LinkSprig

LinkSprig Logo
Menu
Create Account
Log in
LinkSprig Logo
Create Account
Menu
  • LinkSprig

Privacy Policy

  • Advantage

LinkSprig (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, share, and protect your personal information when you use the LinkSprig platform, including the web dashboard at https://linksprig.com, the LinkSprig desktop client application, and any related APIs, tools, or services (collectively, the “Service”). By using the Service, you consent to the practices described in this policy.

Determination of Personal Information of Users

We collect the following categories of personal information when you register for and use the Service:

Account Information:

  • Full name (first name, last name)
  • Email address
  • Country of residence
  • Company name and company website
  • Password (stored as a securely hashed value; we never store your password in plain text)

LinkedIn Credentials:

  • LinkedIn email address
  • LinkedIn password (stored to enable the desktop client to automate LinkedIn actions on your behalf)

Third-Party Integration Data:

  • Google: OAuth 2.0 refresh tokens and authorized scopes (for Calendar and Gmail access)
  • HubSpot: Access tokens, refresh tokens, token expiry timestamps, and portal identifiers (for CRM integration)

AI Personalization Data:

  • Company details and descriptions you provide for AI-assisted messaging
  • Custom proposal snippets for AI-generated outreach

Payment Information:

  • Razorpay payment IDs, order IDs, subscription
  • IDs, and transaction amounts
  • Billing currency (USD or INR)
  • We do not directly collect or store your credit card numbers, bank account details, or other sensitive financial information. All payment processing is handled by Razorpay, and you should refer to Razorpay’s Privacy Policy for details on how your financial data is handled.

Usage and Device Data:

  • Desktop client version and platform (Windows or macOS)
  • Heartbeat and connection status data (timestamps of last client activity)
  • Campaign task data, outreach results, keyword search history, and analytics
  • Session information (login times, session identifiers)

Automatically Collected Data:

  • IP address and browser user agent (collected by our web server)
  • Cookies and session tokens necessary for authentication and Service functionality

Reasons for Collecting and Processing User Personal Information

We collect and process your personal information for the following purposes:

1. To provide the Service: Your account information and LinkedIn credentials are essential for the core functionality of the platform — managing your outreach campaigns, executing automated LinkedIn tasks via the desktop client, and displaying your dashboard analytics.

2. To manage subscriptions and billing: We use your account and payment data to process subscription fees, handle renewals, maintain billing records, and provide customer support for payment-related inquiries.

3. To enable third-party integrations: When you connect your Google or HubSpot accounts, we store authentication tokens to enable calendar booking, email sending, and CRM lead management on your behalf.

4. To power AI-assisted features: Company details and proposal snippets you provide are used to personalize AI-generated messages for your LinkedIn outreach campaigns. This data is processed in real-time and is not sold or shared with third parties for their own marketing purposes.

5. To improve and secure the Service: Usage data, client version information, and heartbeat signals help us detect issues, monitor service health, deliver software updates, and improve the user experience.

6. To communicate with you: We may use your email address to send critical service notifications (such as password reset emails, subscription confirmations, and security alerts). We will not send unsolicited marketing emails without your explicit consent.

Google User Data — Limited Use Disclosure

LinkSprig’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only request access to Google Calendar and Gmail scopes that are necessary for the features you choose to enable (calendar event creation and email sending for lead engagement).
  • Google OAuth 2.0 refresh tokens are stored securely and are used solely to maintain your authorized session so you do not need to re-authenticate repeatedly.
  • We do not use Google user data for advertising, user profiling, or any purpose unrelated to the Service’s core functionality.
  • We do not sell, rent, or share Google user data with third parties except as required to provide the Service or comply with legal obligations.
  • Access to Google user data is limited to the specific actions you initiate through the LinkSprig dashboard or desktop client (e.g., scheduling a meeting or sending a follow-up email).

Data Storage and Security

Your data is stored in a secure MongoDB Atlas cloud database with encryption at rest and in transit. We implement industry-standard security measures to protect your personal information, including:

  • Password hashing: Your LinkSprig account password is hashed using bcrypt before storage.
  • Secure sessions: Session cookies are configured with HttpOnly flags to prevent cross-site scripting attacks.
  • API key rotation: Desktop client API keys can be rotated at any time from your dashboard for enhanced security.
  • HTTPS: All data transmitted between your browser, the desktop client, and our servers is encrypted using TLS/SSL.

While we take reasonable precautions to protect your data, no method of electronic storage or transmission over the internet is 100% secure. We cannot guarantee absolute security and encourage you to use strong, unique passwords and keep your desktop client software up to date.

Third-Party Services and Data Sharing

Third-Party ServiceData SharedPurpose
RazorpayPayment transaction details, user reference IDsSubscription billing and payment processing
Google APIsOAuth tokens, calendar data, email actionsCalendar booking and Gmail integration
HubSpotOAuth tokens, lead/contact dataCRM lead management
MongoDB AtlasAll account and usage dataSecure cloud database hosting

We do not sell your personal information to advertisers, data brokers, or any other third parties. We may disclose your information if required by law, legal process, or government request, or if necessary to protect the rights, safety, or property of LinkSprig, our users, or the public.

Cookies and Session Management

LinkSprig uses cookies strictly for functional purposes:

  • Session Cookies: Used to maintain your authenticated session while you are logged in. These cookies are essential for the Service to function and cannot be disabled.
  • SameSite Policy: Our session cookies are configured with the SameSite=Lax attribute to protect against cross-site request forgery.

We do not use third-party advertising cookies, tracking pixels, or analytics cookies that follow you across other websites.

Data Retention and Deletion

We retain your personal information for as long as your account is active or as needed to provide the Service. Specifically:

  • Account data: Retained until you request account deletion.
  • Campaign and task data: Retained as part of your usage history for analytics and reporting purposes while your account is active.
  • Payment records: Retained as required by applicable accounting and tax regulations.
  • Third-party tokens: Google and HubSpot tokens are retained until you disconnect the integration or delete your account.

To request deletion of your account and associated data, please contact us at info@linksprig.com. Upon receiving a verified deletion request, we will remove your personal information within 30 days, except where retention is required by law.

Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data (subject to legal retention obligations).
  • Portability: Request your data in a structured, commonly used, machine-readable format.
  • Objection: Object to the processing of your personal data for specific purposes.
  • Revoke Consent: Withdraw your consent for data processing at any time by disconnecting integrations from the Settings page or by contacting us.

To exercise any of these rights, please contact us at info@linksprig.com. We will respond to your request within 30 days.

Children’s Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected data from a minor, we will take steps to delete that information promptly.

International Data Transfers

LinkSprig’s servers and database infrastructure are hosted on cloud platforms that may store data in various geographic regions. By using the Service, you consent to the transfer, processing, and storage of your data in locations outside of your country of residence, in accordance with applicable data protection laws.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. When we make material changes, we will notify you by posting the updated policy on our website and updating the “Last Updated” date at the top of this document. We encourage you to review this policy periodically.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: info@linksprig.com
Website: https://linksprig.com

Scroll to Top