Privacy Policy

Last updated: May 2026

Scope

This policy covers unlock.best—the marketing website, creator dashboard, locked-link flows, uploads, integrations, APIs, analytics dashboards, moderation channels we operate, measurement tags deployed site-wide—and related documentation surfaces.

Information we collect

Accounts. When you register, we store your email address and authentication artefacts processed through Supabase (credential hashes and session material are governed by Supabase authentication practices).

Configured links. Creators store titles, pasted rewards, HTTPS destinations (pages or file downloads), thumbnails, teaser embed URLs, integrations, monetization profiles, popup copy visitor scripts appearance tasks quotas, bookkeeping metadata—everything you explicitly save via the dashboard APIs upload flows or integrations.

Visitors. When visitors open locked links we collect technical telemetry needed for unlock verification, analytics, bookkeeping, and abuse prevention—for example abbreviated IP fingerprints, coarse geography inferred from HTTP headers when available, trimmed referrer/user-agent excerpts, session identifiers, timestamps, completion events, and fraud-prevention signals. Dashboards ordinarily show aggregates so we minimize unnecessary identifiable detail where practical.

Partners you attach. Monetization lockers, payment processors, SSOs, CDNs, trackers, scripts, and integrations you enable may independently collect visitor data—their disclosures apply separately.

Support. Conversations routed through moderation or support queues are stored long enough to respond, investigate policy violations, comply with lawful requests, and defend our rights where necessary.

Cookies and similar technologies

Cookies and browser storage authenticate dashboard sessions persist preferences optionally power measurement tags—for example analytics on marketing pages—with controls browsers vendors furnish when offered.

Integrations—including monetization wrappers, visitor scripts, payment processors, lockers, SSOs, trackers, CDN edges—may load vendors that impose their cookies. Honor each supplier policy and furnish visitor disclosures required by statutes or publisher rules.

How we use information

Operate unlock flows, dashboards, APIs, quotas, uploads, integrations, moderation channels, bookkeeping, billing, and analytics.
Send operational notices about security, policies, and lawful marketing solely when statutes or consent allow.
Create aggregate diagnostics and roadmap analytics while minimizing unnecessary identifiable detail.
Comply with law, subpoenas, taxes, bookkeeping, audits, underwriting, mergers, reorganizations, and defend lawful claims when needed.

Sharing

We share limited personal information with subprocessors—for example hosting, databases, transactional email, observability tooling, bookkeeping advisers—that process data pursuant to confidentiality agreements restricting onward use.

We disclose personal information after reasonable review when law requires—for example subpoenas—or when narrowly necessary to investigate misconduct, safeguard users, enforce policies, cooperate with authorities, or defend legal claims.

After visitors unlock a link they typically leave unlock.best. Websites, lockers, pasted rewards, downloads, trackers, redirects, and integrations afterward are configured by creators and third-party services—not hosted by unlock.best unless we expressly say otherwise.

Retention

We keep different categories of data for periods driven by operational need, bookkeeping, abuse prevention, security, integrations, backups, lawful preservation, taxes, audits, underwriting, contractual duties, or investigative holds. You may request deletion of your creator account; we respond in good faith, subject to overriding legal obligations.

Security

We apply safeguards such as encryption in transit, credential hashing handled by Supabase, access controls, monitoring, and dependency hygiene. No architecture is flawless—maintain your own backups of destinations, pasted rewards, integration secrets, and revenue records you rely on.

Your rights

Depending on where you live, you may have rights to access, correct, delete, or restrict certain processing, or to object to marketing. Contact us through official channels listed on the site to make a request; we verify identity to reduce fraud. This page is a summary, not tailored legal advice for your jurisdiction.

Children

unlock.best is not directed at children under 13. If you believe we collected a child's personal information, contact us and we will take appropriate steps.

International transfers

Subprocessors may process data in multiple countries. Where cross-border transfers require safeguards, we use contractual mechanisms (for example standard contractual clauses) together with technical and organizational measures appropriate to the risk.

Changes

We may update this policy by posting a new "Last updated" date. Continued use of unlock.best after the effective date constitutes acceptance of the revised policy.

Contact

For privacy questions, use the official contact methods published on unlock.best (for example links in the site footer such as Discord). We may publish a dedicated privacy inbox later.