GDPR & KVKK Compliant

Built for privacy, not around it

Lynq Studio is designed from the ground up to respect user privacy while giving you the web and app analytics data you need. No workarounds, no gray areas.

No personal data collected

We don't collect names, emails, or IP addresses from website or app visitors. Visitor IDs are randomly generated and cannot be linked to a real person.

First-party only

Our tracking runs entirely on your domain. No data is sent to third-party servers. No cross-site tracking. No advertising networks involved.

EU-hosted infrastructure

All data is processed and stored within the European Union. No transfers to the US or other non-EU countries.

Privacy by design

IP addresses are hashed with a daily-rotating salt and never stored. We use pseudonymous identifiers only. Data minimization is built into every query.

Data retention controls

You control how long data is kept. Default retention is 2 years. You can request deletion of all data at any time.

Full data portability

Export all your data anytime as CSV or JSON. Your data belongs to you — we never lock you in.

Do your visitors need a cookie consent banner?

Lynq uses a first-party cookie solely for anonymous visitor counting. We don't collect personal data, don't track across sites, and don't share data with anyone.

Under GDPR, analytics cookies can be processed under “legitimate interest” (Article 6(1)(f)) when implemented with strong privacy safeguards — which Lynq provides by default.

Many legal advisors consider this approach compliant without a consent banner. However, we recommend consulting your own legal advisor for your specific jurisdiction and use case.

KVKK Compliance (Turkey)

Lynq Studio complies with the Turkish Personal Data Protection Law (KVKK, Law No. 6698). Our approach:

  • No personal data (kişisel veri) collected from website or app visitors
  • Data processed within EU — adequate protection recognized by KVKK
  • Customer data handled per KVKK Articles 5 and 6 (contractual necessity)
  • Data deletion available upon request per KVKK Article 7

What we collect vs. what we don't

What we collect

  • Page URLs and titles
  • Referrer URLs
  • Browser type and version
  • Operating system
  • Device type (mobile/desktop)
  • Country and city (from hashed IP)
  • Screen resolution
  • Browser language
  • UTM campaign parameters
  • Custom events and conversions (if configured)

What we never collect

  • Names or email addresses
  • IP addresses (hashed and discarded)
  • Browser fingerprints
  • Cross-site browsing history
  • Form inputs or keystrokes
  • Financial or health data
  • Social media profiles
  • Advertising identifiers
  • Third-party cookies
  • Any personally identifiable information
Read full Privacy PolicyTerms of ServiceContact DPO