shrts.io – Privacy Notice
Last updated: 3 June 2025

Key point: We intentionally design the service to store no personal data.

1. What We Keep (and for How Long)
• Slug → Destination mapping — Text — 30 days (KV TTL) — redirect a visitor
• Link‑creation timestamp — Epoch ms — 30 days — abuse‑rate limiting
• Per‑slug click counter — Integer — 30 days — aggregate, anonymous traffic statistics
• IP address hash — SHA‑256 hex — Ephemeral, in‑memory; discarded within an hour — detect flood spam

2. No Cookies or Tracking Pixels from shrts.io
We do not set cookies, local‑storage keys, or fingerprinting scripts.

3. Third‑Party Advertising
The 3‑second vignette ad is served by a third‑party network (e.g. Google AdSense). That network may set its own cookies or identifiers governed by its separate privacy policy. We do not have access to those identifiers.

4. International Data Flow
Edge nodes are located worldwide; transient request data may transit foreign jurisdictions. Because we do not retain personal data, we deem this low‑risk.