← Back to Waydly

Privacy Policy

Last updated: May 2026

What we collect

Waydly is a smart-link platform. We collect the minimum data needed to run the product:

  • Account data: your email address (used for magic-link sign-in) and the plan you're on. No password is ever stored — we use single-use magic links via email.
  • Links you create: the short URL, the action it triggers (e.g. WhatsApp number, form fields, calendar URL), and any routing rules you configure.
  • Click events: when a visitor clicks one of your links, we log a privacy-respecting event containing the country, device class, and referrer — no IP addresses, no fingerprinting, no cross-site tracking.
  • Form submissions: when one of your hosted forms is submitted, we store the form values so you can see them in your dashboard. You control which fields are collected.

What we DON'T collect

  • No third-party analytics (Google Analytics, Facebook Pixel, Mixpanel, etc.)
  • No IP addresses or precise geolocation
  • No browser fingerprinting
  • No advertising cookies
  • No data sold to third parties — ever

Where your data lives

Waydly runs entirely on Cloudflare's edge network. Your data is stored in:

  • Cloudflare D1 — primary database (users, links, form submissions)
  • Cloudflare KV — session tokens and hot link lookups
  • Cloudflare Workers Analytics Engine — anonymized click event data
  • Cloudflare R2 — uploaded assets (logos, etc.)

Cloudflare is GDPR-compliant and offers EU-resident data storage. We do not transfer your data outside Cloudflare's infrastructure.

Email

We send transactional email via Resend. This includes magic-link sign-in emails and (if you opt in) notifications when your forms are submitted. We never send marketing email without explicit consent.

Cookies

Waydly uses a single HttpOnly session cookie (waydly_session) for authentication. No tracking cookies, no advertising cookies, no analytics cookies. The cookie is deleted on sign-out.

Your rights (GDPR, CCPA)

You can at any time:

  • Export all your data (request via the contact email below)
  • Delete your account and all associated data (request via the contact email)
  • Correct any data we hold about you (most fields are user-editable in your dashboard)

We respond to data-rights requests within 30 days.

Children

Waydly is not intended for users under 16. If you believe a child has created an account, contact us and we'll delete it.

Changes to this policy

We may update this policy occasionally. Material changes will be announced by email to active users. The most current version is always live at this URL with the "Last updated" date at the top.

Contact

For privacy questions, data exports, or account deletion requests: maria.smyles@gmail.com