This Privacy Policy explains how cyang.io and Doclinks collect, use, disclose, and protect personal information.
1. Scope
This policy applies to visitors, account users, workspace members, document recipients, and business contacts interacting with cyang.io services.
2. Information We Collect
2.1 Information you provide
- Account and profile details (name, email, organization name)
- Billing and subscription details provided during plan management
- Support and communication content
- Uploaded documents and related metadata
2.2 Information collected automatically
- Device, browser, and network telemetry
- Access logs and security event records
- Usage metrics related to links, views, and delivery workflows
- Abuse and fraud detection signals
2.3 Information from integrations and providers
We may receive operational data from payment, infrastructure, and security providers required to run the service.
3. Why We Use Data
We use personal data to:
- provide and maintain the Service,
- enforce sharing and security policies,
- protect users from abuse, malware, and fraud,
- process billing and account operations,
- improve reliability and product quality,
- comply with legal obligations.
4. Legal Bases (Where Applicable)
Depending on jurisdiction, processing may rely on:
- contractual necessity,
- legitimate interests in secure operations,
- legal obligations,
- consent where required.
5. Sharing and Disclosure
We may share data with:
- subprocessors required to operate the Service,
- payment processors for billing operations,
- legal authorities where required by law,
- advisors and auditors under confidentiality obligations.
We do not sell personal data.
6. Cross-Border Processing
Data may be processed in countries where our providers operate. Where required, transfer safeguards are used for cross-border data handling.
7. Retention
We retain data for as long as needed to provide the Service, satisfy legal obligations, resolve disputes, enforce agreements, and maintain security records.
Retention periods vary by data type, account status, and legal requirements.
8. Your Rights
Depending on jurisdiction, you may have rights to:
- access personal data,
- request correction,
- request deletion,
- object to certain processing,
- request portability,
- withdraw consent where processing depends on consent.
Request rights support at privacy@cyang.io.
9. Cookies and Similar Technologies
We use cookies and comparable technologies for session continuity, security, and product performance. We do not use customer content for advertising profiling.
10. Security Measures
We use layered controls including encryption, access restrictions, abuse monitoring, and operational review processes. See the Security Policy for additional details.
11. Children
The Service is not directed to children under 13 (or higher age where required by local law). If we learn that personal data from a child was collected without required consent, we will take reasonable steps to delete it.
12. Changes to This Policy
We may update this policy as legal requirements and product operations evolve. Material changes will be posted in the Legal and Trust Center with an updated Last Updated date.
13. Contact
- privacy@cyang.io
- legal@cyang.io
If you have security concerns related to personal data handling, contact security@cyang.io.