Skip to main content
Short answer: ShortPen stores and processes analytics data in the EU and follows GDPR principles. You control what is collected (clicks, scans, and optional events), can export it, and can delete it at any time.

What data ShortPen processes

  • Link and QR interactions: clicks, scans, referrer, device, country, and similar metrics are shown in your analytics.
  • Optional events (“conversions”): only if you create a Pixel and configure triggers.
  • Workspace and organization context: your organization, workspaces, domains, tags/folders, and users/roles for collaboration and access control.
  • Storage location: all data is hosted in the EU and processed in accordance with GDPR requirements.

Your privacy controls

  • Turn tracking on/off per item: enable event tracking only where you need it.
  • Granular organization: keep client/project data isolated with workspaces, folders, and tags.
  • Export & delete: export link data or remove links/workspaces when no longer needed. See related guides below.

How to exercise your GDPR rights in ShortPen

  1. Access your data For a quick view, open link-level analytics or workspace analytics to see collected metrics.
  2. Delete what you no longer need Remove individual links (and their analytics) or archive/delete a workspace if a project has ended.
  3. Limit or stop event collection Disable event tracking on specific links or uninstall/remove the Pixel snippet where not required.
  4. Request account deletion or portability If you need a full account-level deletion or a formal data portability package, contact support from the owner account (include your organization name and workspace scope).
You must let your site visitors know if you use ShortPen tracking (for example, the Pixel or link analytics). Add ShortPen to your site’s Privacy Policy or Cookie Policy so users understand what data you collect and why.

Where to include it

Add ShortPen to:
  • Your Privacy Policy, under “Analytics” or “Tracking Tools”
  • Your Cookie Policy, if the Pixel or any tracking cookies/signals are active
  • Your Consent Banner, if required by your local data protection law (for example, GDPR, ePrivacy, or CCPA)

FAQ

In the EU, processed in accordance with GDPR requirements.
ShortPen may use cookies or similar signals as part of analytics/event tracking you enable. Ensure your site’s consent banner reflects your configuration before deploying the Pixel.
Yes. Basic link/QR analytics work without installing the Pixel. The Pixel is only required for custom post-click events.