Legal

Privacy Policy

What we collect, why we collect it, who we share it with, and the rights you have over it.

Last updated: 11 June 2026

1. Who we are

DevLinked operates devlinked.co.uk and is the data controller for the personal data described in this policy. We are a UK-based marketplace connecting clients with freelance developers and agencies.

Contact for anything privacy-related: support@devlinked.co.uk.

2. What we collect

Account data — your name, email address and phone number, collected at registration and verified by one-time passcode.

Profile data — what you choose to publish: company details, location, bio, specialisms, tech stack, rates, portfolio items and profile photo. Profiles are public by design.

Listing and activity data — job listings you post, responses you make, watchlist items, reviews you give and receive, and messages exchanged with our AI intake assistant.

Payment data — records of what you paid, when and for what. Card details are collected and stored by Stripe, our payment processor; they never touch our servers.

Technical data — IP address, device and browser information, and authentication session cookies needed to keep you logged in.

3. How we use your data

To operate the marketplace: publishing listings, unlocking contact details after a paid response, displaying profiles and reviews, and processing payments.

To verify identity: sending one-time passcodes to your email and phone. Verification is mandatory before an account goes live.

To communicate: transactional emails (verification codes, payment receipts, response notifications, review notifications) and platform notifications you can manage in your account settings. Transactional messages cannot be opted out of while you hold an account.

To improve the intake experience: when you describe a project on our homepage, the conversation is processed by an AI model to pre-fill your listing form. The conversation is used only for that purpose.

To keep the platform safe: investigating reports of misuse, preventing fraud and enforcing our terms.

4. Legal bases

We rely on performance of a contract for operating your account, listings, responses and payments; on legitimate interests for platform security, fraud prevention and service improvement; and on consent for optional notifications, which you can withdraw at any time in settings.

5. Who we share data with

Service providers who process data on our behalf: Supabase (database, authentication and file storage), Stripe (payments and VAT), Postmark (transactional email), our SMS provider (phone verification codes) and Anthropic (AI intake assistant). Each processes data only to provide their service to us.

Other users: your public profile is visible to anyone; as a client, your contact details and attachments are shared with a developer only after they pay to respond to your listing.

We do not sell personal data, and we do not share it with advertisers.

6. International transfers

Some of our providers process data outside the UK. Where they do, transfers are protected by UK-approved safeguards such as the UK International Data Transfer Agreement or adequacy regulations.

7. Retention

We keep account data while your account is active. If you delete your account we remove or anonymise your personal data within 30 days, except where we must keep it longer — payment records are kept for 6 years to meet UK tax and accounting obligations, and we may retain limited records needed to enforce our terms or resolve disputes.

Reviews remain visible after account deletion in anonymised form, as they form part of the other party’s history.

8. Your rights

Under UK GDPR you can ask us to access, correct, delete or export your personal data, and you can object to or restrict certain processing. Email support@devlinked.co.uk and we will respond within one month.

If you are unhappy with how we handle your data, you can complain to the Information Commissioner’s Office (ico.org.uk).

9. Cookies

We use essential cookies only: authentication session cookies that keep you signed in, and security cookies used during payment. We do not use advertising or cross-site tracking cookies.

10. Changes to this policy

If we materially change this policy we will notify you by email or in-app notice before the change takes effect. The “last updated” date at the top of this page always reflects the current version.