Analytics with restraint
Track countries, ASN, device family, browser, OS, referrer, and allow-or-block outcomes without turning the product into an identity warehouse.
Private by default
Short links without identity drag.
Create an account code once, store it offline, and manage your links without email, password, or phone number.
0
passwords stored
1x
account code reveal
real
IP policy pipeline
Identity surface
Deliberately minimized
- No email
- No password reset flow
- No phone number
- Server-generated account code only
hash(account_code) stored
plain secret never recoverable
Abuse-aware redirects
Resolve fast, inspect IP reputation, apply global or per-link policy, log the outcome, and then redirect or stop the request cleanly.
Anonymous usage model
Users authenticate with a high-entropy account code shown once at registration. The server keeps only a password-style hash, not the recoverable secret.
Why it matters
Privacy-first does not mean abuse-blind.
Blocking controls
MaxMind lookups, custom network-flag datasets, rate limiting, bot heuristics, IP rules, and blocked-visit review in the admin area.
Operational controls
Feature flags, maintenance mode, landing-copy placeholders, audit logs, and split admin authentication isolated from anonymous user sessions.
Common questions
Can I recover my account code?
No. The platform is designed so the secret is shown once and only a hashed representation is stored server-side.
Do you fingerprint users for login?
No. Device hints can support abuse scoring, but browser fingerprinting is never treated as the primary identity factor.
Can links be blocked selectively?
Yes. The redirect engine can combine global IP rules, per-link IP rules, Tor/VPN/proxy flags, and bot signals.