OneClick Paylink Privacy Policy

Last Updated: 2026-06-09

1. Introduction

OneClick Paylink (“OneClick,” “we,” “us,” or “our”) is a service operated by Head Start Solutions, LLC that lets creators (“Sellers”) sell digital products through shareable payment links, and lets customers (“Buyers”) purchase those products. Because OneClick acts as the merchant of record for purchases, we are responsible for the personal data processed in connection with those purchases, including calculating and remitting applicable sales taxes.

This Privacy Policy explains what personal information we collect from Sellers, Buyers, and visitors to our websites, how we use and share it, and the rights and choices available to you.

2. Information We Collect

2.1. Information Sellers Provide

Account Information: When you create a Seller account, we collect your name, email address, and profile details. Authentication is handled by our identity provider (Clerk), which also processes this information on our behalf. If you sign in with a third-party account (such as Google), we receive basic profile information from that provider.

Payout and Verification Information:To pay you, our payment partner (Stripe) collects information such as your bank or payout account details, address, date of birth, and government-issued identification, as required by financial regulations (including “know your customer” and anti-money-laundering laws). This information is collected and stored by Stripe under its own privacy policy; we receive only limited information, such as your verification status and payout status.

Product Content: We store the products, files, descriptions, and pricing you upload in order to deliver them to Buyers.

2.2. Information Buyers Provide

Purchase Information: When you buy a product, we collect your email address (to deliver your purchase and receipt) and your billing country or address (to determine the correct tax treatment of your purchase).

Payment Details: Card and other payment credentials are collected and processed directly by Stripe. We never receive or store your full card number. We receive limited payment metadata, such as the card brand, last four digits, and whether the payment succeeded.

Transaction Records: We keep records of your purchases, including the product, amount paid, tax collected, currency, and date, as required for receipts, refunds, disputes, and tax compliance.

2.3. Information Collected Automatically

Usage and Device Data: When you use our websites, we and our analytics provider (PostHog) collect information such as your IP address, browser type, operating system, pages viewed, and actions taken. We use this to understand how the service is used and to keep it secure.

Cookies and Similar Technologies: We use cookies that are necessary for the service to function (for example, keeping you signed in) and cookies that help us measure and improve the service. You can control cookies through your browser settings; disabling essential cookies may prevent parts of the service from working.

2.4. Information from Third Parties

We may receive information about you from our service providers — for example, payment outcome and fraud signals from Stripe, or authentication events from Clerk — and combine it with information you provide.

3. How We Use Your Information

We use personal information to:

  • Provide the service: process payments, deliver purchased products, send receipts, pay out Sellers, and provide customer support.
  • Comply with the law: calculate, collect, and remit sales taxes, VAT, and similar taxes; keep required financial records; respond to lawful requests; and meet our obligations under financial and anti-fraud regulations.
  • Keep the service safe: detect and prevent fraud, abuse, and security incidents, and enforce our Terms of Service.
  • Improve the service: analyze usage, diagnose problems, and develop new features.
  • Communicate with you: send transactional messages (receipts, payout notices, security alerts) and, where permitted, product updates. You can opt out of non-essential emails at any time.

Where laws such as the EU/UK General Data Protection Regulation (GDPR) apply, we rely on the following legal bases: performance of a contract (providing the service), compliance with legal obligations (tax and financial regulations), our legitimate interests (security, fraud prevention, and service improvement), and your consent where required (for example, for certain cookies or marketing emails).

4. How We Share Your Information

We do not sell your personal information, and we do not share it with third parties for their own advertising.

We share personal information only as follows:

  • Service providers: companies that process data on our behalf to run the service — currently Stripe (payment processing and Seller payouts), Clerk (authentication), Convex (application database and backend), Vercel (website hosting), and PostHog (product analytics). Each is bound by contractual obligations to protect your data.
  • Between Buyers and Sellers: when you purchase a product, the Seller can see your email address and the details of your purchase so they can provide support. Sellers may not use this information for unrelated marketing without your consent.
  • Tax and government authorities: as merchant of record, we report and remit taxes on purchases, which may involve sharing transaction information (such as purchase amounts and Buyer location) with tax authorities where required by law.
  • Legal requirements: when we believe disclosure is required by law or necessary to protect our rights, users, or the public.
  • Business transfers: in connection with a merger, acquisition, or sale of assets, in which case this policy will continue to apply to your data until you are notified otherwise.

5. Data Retention

We keep personal information for as long as needed to provide the service and meet our legal obligations. In particular, transaction and tax records are retained for as long as tax and accounting laws require (typically 7–10 years, depending on the jurisdiction), even if you close your account. Account information is kept until you delete your account or ask us to delete it, after which we delete or anonymize it except where retention is legally required.

6. Security

We protect personal information with industry-standard measures, including encryption in transit, access controls, and reliance on PCI-DSS-compliant payment infrastructure (card details are handled by Stripe and never touch our servers). No system is completely secure; if we become aware of a breach affecting your personal data, we will notify you and the relevant authorities as required by law.

7. International Data Transfers

We are based in the United States, and our service providers may process data in the United States and other countries. Where we transfer personal data from the European Economic Area, the United Kingdom, or Switzerland, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or an applicable adequacy decision.

8. Children’s Privacy

OneClick Paylink is not intended for anyone under 18, and we do not knowingly collect personal information from minors. If you believe a minor has provided us personal information, contact us and we will delete it.

9. Your Rights and Choices

Depending on where you live, you may have the right to access, correct, delete, or receive a copy of your personal information, to restrict or object to certain processing, and to withdraw consent where processing is based on consent. If you are in the EEA or UK, you also have the right to lodge a complaint with your data protection authority. If you are a resident of California or another US state with a privacy law, you have comparable rights, and we do not “sell” or “share” personal information as those terms are defined in those laws.

To exercise any of these rights, email us at support@oneclickpaylink.com. We will verify your request and respond within the time required by applicable law. Note that we may need to retain certain transaction records to meet tax and financial obligations even after a deletion request.

10. Third-Party Links and Services

Seller pages may link to external sites, and our service relies on third-party providers (such as Stripe and Clerk) whose privacy practices are described in their own policies. We encourage you to review those policies.

11. Changes to This Privacy Policy

We may update this policy from time to time. The “Last Updated” date above reflects the most recent revision. If we make material changes, we will notify Sellers by email or through the service before the changes take effect.

12. Contact

For questions about this Privacy Policy or our data practices, contact:

Head Start Solutions, LLC
Email: support@oneclickpaylink.com