Privacy Policy

Last Updated: March 25, 2026 · Effective: March 25, 2026

DoorLink ("we", "us", "our") is a real-time video communication platform for visitor management and household connectivity, operated by Zipp Labs B.V., registered in the Netherlands.

This Privacy Policy describes how we collect, use, store, and protect your personal information when you use the DoorLink mobile application ("App"), the DoorLink visitor web application, and related services (collectively, the "Service").

By using the Service, you agree to the collection and use of information as described in this policy.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

Email address (required for authentication)
Password (stored as a cryptographic hash, never in plaintext)
Display name
Phone number (optional)
Profile photo (optional)

1.2 Device Information

To deliver push notifications and enable core functionality, we collect:

Push notification tokens (Apple Push Notification service, Firebase Cloud Messaging, VoIP tokens)
Device type, platform (iOS or Android), and operating system version
Device identifiers used solely for push notification delivery

1.3 NFC and BLE Device Data

If you register hardware devices with your household:

NFC tag unique identifiers (UID) and read counters
BLE beacon identifiers (UUID, major, minor)

These identifiers are used solely to associate physical devices with your household for visitor verification.

1.4 Call and Communication Data

Call initiation and completion timestamps
Call duration and status (answered, rejected, missed, timed out)
Visitor names (provided by the visitor)
Text messages left by visitors
Audio and video messages (when the feature is used)

1.5 Technical and Usage Data

IP address (used for rate limiting, security, and abuse prevention)
API request metadata (route, method, timestamp) for audit logging
Authentication session data (token issuance and expiry)

1.6 Visitor Data

Visitors who use the web application to initiate calls are not required to create an account. We collect only the name they voluntarily provide and their IP address for rate limiting. Visitor video and audio streams are transmitted in real time and are not recorded or stored by DoorLink.

2. How We Use Your Information

We use the information we collect exclusively to provide and improve the Service:

Authenticate your identity and maintain your session
Deliver push notifications for incoming visitor calls
Enable real-time video and audio communication between visitors and household members
Display call history and visitor messages
Register and verify NFC tags and BLE beacons
Manage household memberships and settings
Send transactional emails (account verification, password reset)
Prevent abuse, enforce rate limits, and maintain security

      We do NOT use your data for: advertising, ad targeting, selling to third parties,
      behavioral profiling, cross-app tracking, or any purpose unrelated to the Service.
    

3. Third-Party Services

DoorLink integrates with the following third-party services to deliver core functionality:

Service	Purpose	Data Shared
LiveKit	Real-time video and audio communication	Room tokens, call session metadata
Apple Push Notification service (APNs)	iOS push notifications (standard and VoIP)	Device push tokens
Firebase Cloud Messaging (FCM)	Android push notifications	Device push tokens
Mailjet	Transactional email delivery	Email address, email content

Each third-party service processes data in accordance with their own privacy policies. We do not share your personal data with any other third parties, data brokers, or advertisers.

4. Data Storage and Security

All data is transmitted over encrypted connections (HTTPS/TLS)
Passwords are cryptographically hashed using bcrypt before storage
Authentication tokens are stored as SHA-256 hashes in the database
Access tokens expire after 1 hour; refresh tokens expire after 7 days
Visitor session tokens expire after 5 minutes
Mobile app authentication tokens are stored using encrypted device storage (MMKV with encryption key)
Database connections use SSL/TLS encryption with certificate verification
NFC verification uses AES-128 encryption and AES-CMAC authentication
The API enforces rate limiting to prevent brute-force attacks
Infrastructure is protected by firewall rules, SSH key-only access, and intrusion detection (Fail2ban)

5. Data Retention

Data Type	Retention Period
Account data	Retained while your account is active
Call history	90 days
Visitor messages	Per household settings (default: 90 days)
Push notification tokens	Deactivated on logout; removed after 90 days of inactivity
Audit logs	Up to 1 year for security and compliance purposes
Video and audio streams	Not stored — transmitted in real time only

When you delete your account, we permanently remove your personal data in accordance with Section 7.

6. Camera and Microphone Usage

DoorLink requests access to your device's camera and microphone solely for the purpose of real-time video and audio calls with visitors. These permissions are requested at the time of use and can be revoked at any time through your device's system settings.

Video and audio streams are transmitted directly between participants via WebRTC and are not recorded, stored, or analyzed by DoorLink.

7. Your Rights

Under applicable data protection laws (including the GDPR), you have the right to:

Access — Request a copy of the personal data we hold about you
Rectification — Correct any inaccurate or incomplete personal data
Erasure — Delete your account and all associated personal data
Data Portability — Request your data in a structured, machine-readable format
Restriction — Restrict the processing of your personal data in certain circumstances
Objection — Object to the processing of your personal data
Withdraw Consent — Withdraw consent at any time where processing is based on consent

To exercise any of these rights, contact us at privacy@doorlink.io. We will respond within 30 days.

Account Deletion

You can delete your account directly from the DoorLink mobile app (Settings → Delete Account). Account deletion permanently removes your personal data, revokes all active sessions, and deactivates your household memberships. This action cannot be undone.

8. International Data Transfers

Our servers are located in the European Union (Amsterdam, Netherlands). If you access the Service from outside the EU, your data may be transferred to and processed in the EU. We ensure that any such transfers comply with applicable data protection laws, including the GDPR.

9. Children's Privacy

DoorLink is not intended for use by children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

Update the "Last Updated" date at the top of this page
Notify you through the App or via email for significant changes
Provide a summary of key changes

We encourage you to review this Privacy Policy periodically. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@doorlink.io
General Support: support@doorlink.io
Company: Zipp Labs B.V., The Netherlands