01What We Collect
We collect your email address, username, uploaded profile image, destination URL, social links, optional extra links, CTA settings, theme choices, scheduling settings, support and report submissions, account status, subscription status, and basic click analytics. Payment information is processed by Stripe; we do not store card numbers directly.
We also process technical data such as IP-derived request information, browser and device metadata, security logs, rate-limit events, and error reports where needed to operate and protect the Service.
When a creator uses location blocking, we derive the visitor's country from request information and store an aggregated country code and blocked-visit count. We do not store the visitor's raw IP address as part of this metric.
If you use Telegram Private Hub, we process the connected Telegram chat ID and title, bot permission and connection status, an encrypted group invite, private-link configuration, Telegram's numeric user ID, hub-specific age and rules acceptance, membership status and check times, and compact join, access, and link-click events. We do not store Telegram usernames, names, conversations, message text, captions, or media.
02How We Use It
We use your information to authenticate you, provide your public page and optional Telegram Private Hub, verify Telegram community membership, process billing, send essential account emails, moderate uploads, prevent abuse, operate analytics, provide support, and maintain service security.
03Lawful Bases
We process account, profile, billing, and service communication data because it is needed to provide the Service and perform our contract with you. We process moderation, abuse-prevention, analytics, support, security, and operational records where we have legitimate interests in keeping the Service safe, reliable, and useful. We process some records where required for legal, tax, accounting, or dispute reasons.
04Third Parties
We use Stripe for payment processing and trusted service providers for email delivery, hosting, uploaded image storage, image moderation, rate limiting, and error monitoring. Telegram processes bot, group, and Mini App activity under its own terms and privacy policy when you use Telegram Private Hub. We do not sell your data or use advertising trackers.
Some providers may process personal data outside the UK. Where this happens, we rely on appropriate transfer safeguards such as adequacy arrangements or standard contractual clauses.
05Data Retention
Your account data is retained while your account is active. When you delete your account, your public page goes offline and profile data is removed where practical. Some records may be retained for billing, security, abuse prevention, legal compliance, backups, and audit integrity. Your username may remain reserved to prevent impersonation.
Aggregated blocked-country visit counts remain while the related creator profile is active and are deleted with that profile, subject to limited backup or legal retention.
Telegram hub access records remain while the related hub is active. Raw Telegram hub analytics events and processed webhook update identifiers are deleted after 30 days. Deleting the related account removes its hub configuration, members, links, invites, and events through the account deletion process, subject to limited backup or legal retention.
06Your Rights
You can access, edit, or delete much of your data from the dashboard. Depending on where you live, you may also have rights to request access, correction, deletion, restriction, portability, or objection to some processing. For privacy requests, contact privacy@yesihaveone.io.
If you are in the UK, you can complain to the Information Commissioner's Office at ico.org.uk if you are unhappy with how your personal data is handled.
08Security & Abuse Prevention
We process IP-derived request information and technical metadata where needed for rate limiting, bot detection, fraud prevention, health checks, logs, and investigation of reports or abuse.
09Contact
yesIhaveone is the controller for the personal data described in this policy. Questions and privacy requests can be sent to privacy@yesihaveone.io.