Lnknst Get support

Privacy Policy

Last updated: May 14, 2026

Legal pack imported from the Appthework SRL source document. Replace bracketed placeholders for registered office, contact email, privacy email, and account dashboard link before publication.

Effective date: May 14, 2026

Version: 1.0

1. Introduction

This Privacy Policy explains how Appthework SRL processes personal data through Lnknst, the authentication and identity access service available at lnknst.com.

Lnknst is used to provide account creation, login, authentication, password reset, verification, account recovery, session handling, profile management and identity access services for applications, websites, platforms and digital services that integrate Lnknst.

Dropthework is one of the services that may use Lnknst, but Lnknst may also be used by other applications operated by Appthework SRL or by third party businesses.

2. Controller information

Service: Lnknst

Website: https://lnknst.com

Operator: Appthework SRL

CUI: 46315821

VAT code: RO47858320

Trade Registry number: J40/11505/2022

Registered office: [insert registered office]

Privacy contact: [privacy email]

Contact email: [contact email]

3. Our roles under data protection law

Depending on the processing activity, Appthework SRL may act in different roles.

For Lnknst account administration, security, fraud prevention, abuse prevention, service analytics, legal compliance and account dashboard features, Appthework SRL acts as controller.

When Lnknst authenticates users on behalf of an integrated application, platform operator, business customer or merchant, Appthework SRL may act as processor or sub processor for that authentication processing.

Integrated applications may act as separate controllers for their own services, products, orders, customer support, legal obligations and use of personal data.

Users should also read the privacy policy of each application they access using Lnknst.

4. Personal data we process

We may process the following categories of personal data.

4.1 Account data

Name.

Email address.

Phone number, where used.

Account identifier.

Verification status.

Profile image, where enabled.

Language or region preferences, where enabled.

4.2 Authentication data

Login timestamps.

Failed login attempts.

Password reset events.

Account recovery events.

Session identifiers.

Authentication method used.

Connected application identifiers.

Security verification events.

4.3 Technical and device data

IP address.

Device data.

Browser data.

Operating system.

Approximate location based on IP.

User agent.

Security logs.

Abuse prevention signals.

4.4 Profile and identity data

Profile details.

Addresses, where enabled.

Preferences.

Connected applications.

Consent history.

Account settings.

Cross application identity metadata required to make the account reusable across integrated applications.

4.5 Communication data

Messages sent to support.

Account recovery correspondence.

Security notices.

Service notifications.

5. Purposes of processing

We process personal data for the following purposes.

  1. To create and manage Lnknst accounts.

  2. To authenticate users across integrated applications.

  3. To provide login, password reset, account recovery and verification.

  4. To maintain reusable identity across applications.

  5. To manage connected applications.

  6. To provide profile, preference and account management features.

  7. To secure accounts and prevent fraud, abuse and unauthorized access.

  8. To investigate suspicious activity or security incidents.

  9. To send service, security and account notifications.

  10. To comply with legal obligations.

  11. To improve service reliability, usability and performance.

  12. To respond to support requests.

We rely on the following legal bases under GDPR.

6.1 Contract performance

Used for account creation, login, authentication, account recovery, profile management and service notifications necessary to provide Lnknst.

6.2 Legitimate interests

Used for security, fraud prevention, abuse prevention, service improvement, troubleshooting, protection of users, protection of integrated applications and platform reliability.

Used where we must retain or disclose information to comply with applicable law, public authority requests or legal claims.

Used where required for optional features, marketing communications, optional preferences or non essential tracking.

Consent may be withdrawn at any time where processing is based on consent.

7. Sharing personal data

We may share personal data with:

  1. Integrated applications where the user chooses to log in using Lnknst.

  2. Appthework operated services, including Dropthework, where those services use Lnknst.

  3. Third party businesses or platforms that integrate Lnknst, only as needed for authentication and account use.

  4. Hosting and infrastructure providers.

  5. Email and communication providers.

  6. Security, monitoring and anti abuse providers.

  7. Analytics providers, where enabled and legally permitted.

  8. Support and technical service providers.

  9. Professional advisers.

  10. Public authorities where required by law.

We do not sell personal data.

8. Data shared with integrated applications

When you use Lnknst to access an integrated application, that application may receive data required to authenticate you and provide its service.

This may include:

  1. Account identifier.

  2. Email address.

  3. Name, where needed.

  4. Verification status.

  5. Connected account status.

  6. Profile data you choose to share or that is required for the application.

  7. Consent or preference data where relevant and enabled.

Integrated applications are responsible for their own privacy policies and their own processing of personal data after they receive it.

9. Retention

We retain personal data only for as long as reasonably necessary for the purposes described in this Policy.

Account data is retained while the account exists and for a reasonable period afterward for legal, security, fraud prevention, dispute and technical reasons.

Authentication logs and security logs are retained for as long as reasonably necessary to protect users, investigate incidents and secure the service.

Support messages are retained for as long as needed to handle the request and maintain business records.

Backup data may remain for approximately 30 days in technical backup systems.

We may retain limited records after deletion where required for legal obligations, fraud prevention, abuse prevention, security, accounting, dispute resolution or legal claims.

10. International transfers

Lnknst data is currently processed in Germany and Romania.

If personal data is transferred outside the European Economic Area, we will use appropriate safeguards required by GDPR, such as standard contractual clauses or other lawful transfer mechanisms.

11. Security

We use technical and organisational measures designed to protect personal data, authentication flows and identity data.

Measures may include access controls, encryption in transit, logging, monitoring, backups, infrastructure controls and account protection mechanisms.

No online service can guarantee absolute security. Users should protect their credentials, devices, email accounts and recovery methods.

12. User rights

Under GDPR, you may have the right to:

  1. Access your personal data.

  2. Correct inaccurate data.

  3. Request deletion.

  4. Request restriction of processing.

  5. Object to processing.

  6. Request portability.

  7. Withdraw consent where processing is based on consent.

Requests may be sent to [privacy email].

We may need to verify your identity before responding.

Some requests may be limited where retention is required for legal obligations, account security, fraud prevention, abuse prevention, dispute resolution or legal claims.

13. Account deletion

Users may request account deletion through [account dashboard link] or by contacting [privacy email], where this feature is not yet available.

Deleting a Lnknst account may affect access to applications that rely on Lnknst authentication.

Some information may be retained where necessary for legal, security, fraud prevention, abuse prevention or dispute purposes.

14. Children

Lnknst is not intended for use by children below the age required by applicable law to create an online account without parental consent.

If we become aware that a child has created an account unlawfully, we may delete or restrict the account.

15. Cookies and similar technologies

Lnknst may use cookies or similar technologies for authentication, session management, security and service operation.

Non essential cookies or tracking technologies will be handled according to applicable cookie rules and any cookie notice provided on lnknst.com.

16. Complaints

You may contact us first at [privacy email].

You also have the right to lodge a complaint with the competent data protection authority.

In Romania, the authority is Autoritatea Națională de Supraveghere a Prelucrării Datelor cu Caracter Personal.

17. Changes to this Policy

We may update this Privacy Policy as Lnknst evolves, as new applications integrate Lnknst, as features change or as legal requirements change.

The updated version applies from the date of publication unless stated otherwise.