Privacy Policy

Privacy Policy

Last updated: 25 April 2026

This Privacy Policy explains how Siz.la ("we," "us," or "our") collects, uses, stores, and protects your personal information when you use our URL shortening service at https://siz.la (the "Service"). We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), and the California Consumer Privacy Act (CCPA).

By using Siz.la, you agree to the practices described in this policy.

1. Who We Are

Siz.la is a URL shortening service operated from the United Kingdom. For the purposes of UK and EU data protection law, we are the data controller of your personal information.

Contact: [email protected]

2. Information We Collect

We collect the following categories of information:

Information you provide to us

  • Account information: email address, username, and password (stored as a hash)
  • Payment information: processed by our third-party payment provider; we do not store full card details on our servers
  • Affiliate program details: payout email, payment method, and tax information where required
  • Communications: any messages you send us via email or support channels

Information collected automatically

  • Shortened URL data: the original (long) URL you submit, the generated short alias, and creation timestamp
  • Click data on shortened links: timestamp, referring URL, browser type, operating system, device type, approximate geographic location (derived from IP), and language preferences
  • Service usage data: IP address, login times, account activity, and pages viewed on Siz.la
  • Cookies and similar technologies (see Section 7)

Information we do not collect

  • We do not knowingly collect special category data (e.g. health, religion, biometrics)
  • We do not collect information from users known to be under 13

3. How We Use Your Information

We process your personal data for the following purposes and on the following legal bases:

  • To provide the Service (contractual necessity): creating and managing your account, generating short links, serving redirects, displaying your dashboard and analytics
  • To process payments (contractual necessity): handling subscriptions, affiliate payouts, and refunds via our payment processor
  • To communicate with you (contractual necessity / legitimate interests): account notifications, service updates, security alerts, and responses to support enquiries
  • To improve the Service (legitimate interests): analysing aggregated usage patterns, debugging, and developing new features
  • To prevent abuse and protect users (legitimate interests / legal obligation): detecting spam, phishing, malware, fraud, and violations of our Terms of Service
  • For marketing (consent): sending occasional product updates or offers, only where you have opted in. You can withdraw consent at any time.
  • To comply with legal obligations (legal obligation): responding to lawful requests from authorities, tax record-keeping, and similar

4. Sharing Your Information

We do not sell your personal information. We share data only in the following circumstances:

  • Service providers acting on our behalf, including hosting, payment processing, email delivery, and analytics providers. These providers are bound by contract to process data only as instructed and to keep it secure.
  • Legal and safety reasons, where we are required by law, court order, or to protect the rights, property, or safety of Siz.la, our users, or others
  • Business transfers, in the event of a merger, acquisition, or sale of assets, in which case we will notify you before your data is transferred and becomes subject to a different privacy policy
  • With your consent, for any purpose disclosed at the time of collection

5. International Data Transfers

Siz.la is operated from the United Kingdom. If you access the Service from outside the UK, your information may be transferred to, stored, and processed in countries other than your own. Where we transfer personal data outside the UK or EEA, we use appropriate safeguards such as the UK International Data Transfer Agreement, EU Standard Contractual Clauses, or transfers to jurisdictions deemed adequate by the UK government or European Commission.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes set out in this policy:

  • Account data: retained while your account is active and for up to 12 months after closure, unless we are required to keep it longer for legal or accounting purposes
  • Shortened links and click analytics: retained for the lifetime of the account; deleted when the account is closed or when you delete the link, unless retention is required to investigate abuse
  • Payment records: retained for at least 6 years to meet UK tax and accounting obligations
  • Support communications: retained for up to 3 years after the issue is resolved
  • Backups: anonymised or deleted on a rolling basis

7. Cookies and Similar Technologies

We use cookies and similar technologies to:

  • Keep you signed in and remember your preferences (essential cookies)
  • Measure traffic and improve performance (analytics cookies)
  • Detect and prevent abuse (security cookies)

You can control cookies through your browser settings or our cookie banner. Disabling essential cookies may prevent parts of the Service from working correctly.

8. Your Rights

Under UK and EU GDPR, you have the right to:

  • Access the personal data we hold about you
  • Rectify inaccurate or incomplete data
  • Erase your data ("right to be forgotten") in certain circumstances
  • Restrict processing of your data
  • Object to processing based on legitimate interests or direct marketing
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent at any time, where processing is based on consent
  • Lodge a complaint with the UK Information Commissioner's Office (ICO) at https://ico.org.uk or your local EU supervisory authority

To exercise any of these rights, email [email protected]. We will respond within one month.

California Residents (CCPA)

If you are a California resident, you have additional rights:

  • Right to know what personal information we collect, use, disclose, and sell
  • Right to delete personal information we have collected from you
  • Right to opt out of the sale or sharing of your personal information — Siz.la does not sell or share personal information as defined by the CCPA
  • Right to non-discrimination for exercising your CCPA rights
  • Right to correct inaccurate personal information

To exercise these rights, email [email protected]. We will not discriminate against you for making a request.

9. Security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), hashed passwords, access controls, and regular security reviews. However, no method of transmission or storage is 100% secure. If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and notify affected users without undue delay.

10. Children's Privacy

Siz.la is not directed at children under the age of 13 (or 16 in the EEA, where applicable). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact [email protected] and we will delete it.

11. Third-Party Links

Siz.la generates short links that redirect to destinations chosen by users. We do not control the content of those destinations and are not responsible for their privacy practices. We recommend reviewing the privacy policy of any third-party site you visit.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email (where we have your address) and by posting a prominent notice on the Service. The "Last updated" date at the top of this policy indicates when it was last revised. Continued use of the Service after changes take effect constitutes acceptance of the updated policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us at:

Email: [email protected]

We aim to respond to all enquiries within 5 working days.