Privacy Policy

Last updated: December 2025

We built Fanbea to help you share, track, and manage links with confidence. This Privacy Policy explains how Yeabunny Sp. z o.o. ("we", "us", or "our") collects, uses, and protects your information when you use Fanbea or visit pages created with it.

1. Who We Are (Data Controller)

The data controller responsible for your personal data is:

Yeabunny Sp. z o.o.
Święty Marcin 29 / 8, 61-806 Poznań, Poland
Poland
KRS 0000791543, NIP 7831802906
Email: [email protected]

2. Scope of This Policy

This Policy applies when:

  • You visit our website or app for Fanbea.
  • You create and manage an account on Fanbea.
  • You visit public pages or link profiles created using Fanbea.
  • You contact us through email, forms, or support tools.

It does not cover how our customers (page owners) use personal data they independently collect or publish on their own pages. In those cases, they are typically the data controller, and we act mainly as their data processor.

3. Key Terms

  • "Personal data" means any information that identifies or can be linked to an identifiable person.
  • "Processing" means any operation performed on personal data (such as collection, storage, use, disclosure, deletion).
  • "User" or "Customer" means someone who creates an account and builds pages with Fanbea.
  • "Visitor" means someone who visits our website or a public page created using Fanbea.

Terms used in this Policy have the same meaning as in the EU General Data Protection Regulation (GDPR) where applicable.

4. Information We Collect

We collect different types of information depending on how you interact with Fanbea.

4.1 Information You Provide

  • Account and profile details - such as your name or display name, email address, password (stored in hashed form), username/handle, and profile settings.
  • Page content - titles, bios, link labels and URLs, social profiles, images, icons, background images, and any other content you add to your pages.
  • Custom domains and DNS data - including domains you connect and technical configuration needed to make them work with our Service.
  • Support communications - messages you send to us via email, forms, or in-app support, along with related metadata.

4.2 Information Collected Automatically

  • Technical data - IP address, browser type and version, device type, operating system, language settings, and basic log data.
  • Usage data - pages you visit, actions you take (such as logins, settings changes), timestamps, referrers, and performance metrics.
  • Cookies and similar technologies - used to keep you signed in, remember preferences, and measure performance (see "Cookies and Tracking" below).

4.3 Data About Visitors of Public Pages

  • IP address and approximate location (like country or region).
  • Device and browser information.
  • Page URLs visited and referrer URLs.
  • Timestamps and basic interaction data (e.g., link clicks).

We use this information to operate and secure the Service, provide aggregated analytics to page owners, and prevent abuse, spam, and fraud. Where possible, we aggregate or pseudonymise this data.

4.4 Data From Third Parties

  • Authentication providers (for example, when you sign in with a third-party account).
  • Domain or DNS partners (e.g., technical status of domains you connect).
  • Analytics and marketing tools (e.g., campaign attribution or aggregated usage data).

5. How We Use Information

Under GDPR, we must have a legal basis for each purpose. We use your information to:

  • Provide and maintain the Service - including creating and managing accounts, generating and hosting your pages, and running our infrastructure.
    Legal bases: performance of a contract; our legitimate interests in operating a secure and reliable service.
  • Personalise your experience - such as remembering your preferences, themes, and layout choices.
    Legal bases: performance of a contract; your consent for certain non-essential cookies or settings where required.
  • Process payments and manage subscriptions - including billing, invoices, and payment confirmations.
    Legal bases: performance of a contract; compliance with legal obligations (for example, tax and accounting rules).
  • Provide support and communicate with you - including responding to requests and sending important service updates or security alerts.
    Legal bases: performance of a contract; our legitimate interests in providing customer support.
  • Send marketing communications - such as product updates, newsletters, or promotions (where permitted).
    Legal bases: your consent where required; our legitimate interests in promoting our services. You can opt out at any time.
  • Ensure security and prevent abuse - detecting spam, fraud, or misuse, and protecting our systems and users.
    Legal bases: our legitimate interests in security and preventing fraud; compliance with legal obligations where applicable.
  • Comply with law - including tax, accounting, and other regulatory obligations, and responding to lawful requests from authorities.
    Legal basis: compliance with legal obligations.
  • Analyse and improve the Service - understanding how features are used, testing changes, and improving performance and usability.
    Legal bases: our legitimate interests in developing and improving Fanbea; your consent for certain analytics cookies or similar technologies where required.

6. Cookies and Tracking

Fanbea uses cookies and similar technologies to:

  • Keep you signed in and maintain your session.
  • Remember your preferences and settings.
  • Measure the performance and usage of our Service.
  • Support security and fraud prevention.

Where required by law, we use non-essential cookies (such as certain analytics or marketing cookies) only with your consent. You can manage cookie preferences through your browser or any cookie banner or controls we provide. Some features may not work correctly if you disable certain cookies.

7. Sharing of Information

We do not sell your personal information. We may share your information with:

  • Service providers who help us operate Fanbea (e.g., hosting, CDN, email, payment processing, analytics, customer support). They act on our instructions and are bound by confidentiality and data protection obligations.
  • Other users or the public when you choose to publish content on your pages. Links, text, images, and other content you add may be visible to anyone who visits those pages.
  • Professional advisers such as lawyers, auditors, and insurers where necessary to protect our business or comply with legal obligations.
  • Authorities or third parties when required to comply with law, enforce our terms, or protect rights, property, or safety.
  • Business transferees in connection with a merger, acquisition, financing, or sale of all or part of our business, subject to appropriate safeguards.

We do not share your personal data with third parties for their own independent marketing purposes without your consent.

8. International Data Transfers

We are based in Poland. Some of our service providers may process personal data in other countries, including outside the European Economic Area (EEA).

When we transfer personal data outside the EEA, we take steps to ensure an adequate level of protection, for example by relying on adequacy decisions, using Standard Contractual Clauses approved by the European Commission, and applying additional safeguards where appropriate.

9. Data Retention

We keep personal data only for as long as necessary for the purposes described in this Policy, including to meet legal, accounting, or reporting requirements.

In general:

  • Account data is kept while your account is active and for up to 3 years after closure, unless we need to keep it longer for legal or legitimate business reasons.
  • Content on your pages is kept while your account is active or until you remove it or delete your account.
  • Log and security data is typically kept for 3-12 months, unless longer retention is needed for security or legal reasons.
  • Billing and transaction data may be kept for up to 6 years to comply with tax and accounting rules.

When data is no longer needed, we will delete it or anonymise it so it can no longer be linked to you.

10. Your Rights

If the GDPR or similar laws apply to you, you have certain rights regarding your personal data (subject to legal conditions and exceptions):

  • Right of access - to obtain confirmation whether we process your data and to receive a copy.
  • Right to rectification - to ask us to correct inaccurate or incomplete data.
  • Right to erasure - to request deletion of your data in certain circumstances (for example, when it is no longer needed for the purposes for which it was collected).
  • Right to restriction - to request that we limit the processing of your data in certain cases.
  • Right to data portability - to receive your data in a structured, machine-readable format and to transmit it to another controller where technically feasible.
  • Right to object - to object to processing based on our legitimate interests, including profiling, and to direct marketing at any time.
  • Right to withdraw consent - where processing is based on your consent, you can withdraw it at any time. This will not affect processing carried out before withdrawal.

To exercise these rights, please contact us at [email protected]. We may need to verify your identity before fulfilling your request.

You also have the right to lodge a complaint with your local data protection authority if you believe we have processed your data unlawfully.

11. Users as Independent Controllers

Our Users (page owners) may upload or publish personal data of others on their pages (for example, names, images, or contact details). For such data, the User is usually the independent data controller, and we act mainly as their data processor.

Users are responsible for ensuring they have a lawful basis for processing such data and for providing appropriate privacy information to their own visitors where required by law.

12. Children's Privacy

Fanbea is not directed to children under 16 and we do not knowingly collect personal data from them. If you are a parent or guardian and believe your child has provided us with personal data, please contact us so we can take appropriate action.

13. Security

We use administrative, technical, and physical safeguards designed to protect personal data against accidental or unlawful destruction, loss, alteration, and unauthorised access or disclosure.

However, no online service can guarantee perfect security. You are responsible for keeping your login credentials confidential and for notifying us promptly if you suspect any unauthorised access to your account.

14. Third-Party Links and Services

Pages created with Fanbea may contain links to third-party websites, social networks, online shops, or other services, including affiliate links. We do not control and are not responsible for the privacy or security practices of these third parties.

When you follow a third-party link, their own terms and privacy policies apply. We encourage you to review them before providing personal data.

15. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last updated" date at the top and, where appropriate, provide additional notice (for example, by email or in-app notification).

Your continued use of Fanbea after any changes become effective means you accept the updated Policy.

16. Contact

If you have questions about this Policy or your personal data, you can contact us at [email protected].