Security & Compliance
Spinlink captures only what's necessary for AI visibility analytics—no personal information, no payment data, no sensitive content.
Data Collection
Our integrations capture request metadata only: URLs, status codes, referrers, and user agents. This is used to measure which AI platforms send traffic to your site.
We never collect:
- Request or response bodies
- Form submissions or cookies
- Authentication headers
- Personal, payment, or health information
Credential Management
Integration credentials are stored in a dedicated vault service with customer-specific encryption. OAuth tokens are encrypted at rest and auto-refresh before expiration.
All authentication actions are logged for audit. You can revoke access at any time from the Settings page on your Spinlink dashboard.
Infrastructure
All data is encrypted in transit and at rest. Our infrastructure providers maintain SOC 2 Type II and ISO 27001 certifications.
Enterprise Features
Single Sign-On (SSO)
Streamline access with SAML or OIDC authentication, integrating with your existing identity provider.
Role-Based Access Control
Fine-grained permissions to assign roles, define access levels, and protect sensitive data.
Automated Backups
Daily backups ensure data safety, with secure storage retained for one week.
Premium Support
Priority support via email or Slack to keep your operations running smoothly.
Data Retention
Analytics data is retained for 90 days. Disconnecting an integration removes stored credentials immediately.