PRIVACY POLICY

This Privacy Policy describes how Updog Monitoring ("we," "us," or "our") collects, uses, and shares information about you when you use our website at https://updog.ninja and our monitoring services (collectively, the "Services").

By using our Services, you agree to the collection, use, and sharing of your information as described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Services.

TABLE OF CONTENTS

1. WHAT INFORMATION DO WE COLLECT?
2. HOW DO WE USE YOUR INFORMATION?
3. WHEN AND WITH WHOM DO WE SHARE YOUR INFORMATION?
4. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
5. HOW LONG DO WE KEEP YOUR INFORMATION?
6. HOW DO WE KEEP YOUR INFORMATION SAFE?
7. DO WE COLLECT INFORMATION FROM MINORS?
8. WHAT ARE YOUR PRIVACY RIGHTS?
9. CONTROLS FOR DO-NOT-TRACK FEATURES
10. DO WE MAKE UPDATES TO THIS POLICY?
11. HOW CAN YOU CONTACT US ABOUT THIS POLICY?
12. HOW CAN YOU REVIEW, UPDATE, OR DELETE YOUR DATA?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you provide to us

We collect personal information that you voluntarily provide to us when you register for an account, express an interest in obtaining information about us or our Services, participate in activities on the Services, or otherwise contact us.

Personal Information Provided by You. The personal information we collect depends on the context of your interactions with us and the Services, the choices you make, and the features you use. The personal information we collect may include:

• Names
• Email addresses
• Passwords (stored in hashed form)
• Billing addresses
• Payment information (processed securely by Stripe)
• Contact preferences

Sensitive Information. We do not process sensitive personal information.

Payment Data. We may collect data necessary to process your payment if you make purchases, such as your payment instrument number and the security code associated with your payment instrument. All payment data is stored by Stripe. You can find their privacy policy at https://stripe.com/privacy.

Information automatically collected

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity but may include device and usage information, such as your IP address, browser and device characteristics, operating system, language preferences, referring URLs, device name, country, location, information about how and when you use our Services, and other technical information. This information is primarily needed to maintain the security and operation of our Services, and for our internal analytics and reporting purposes.

The information we collect includes:

• Log and Usage Data. Log and usage data is service-related, diagnostic, usage, and performance information our servers automatically collect when you access or use our Services and which we record in log files. This log data may include your IP address, device information, browser type, and settings and information about your activity in the Services (such as the date/time stamps associated with your usage, pages and files viewed, searches, and other actions you take such as which features you use), device event information (such as system activity, error reports, and hardware settings).
• Device Data. We collect device data such as information about your computer, phone, tablet, or other device you use to access the Services. Depending on the device used, this device data may include information such as your IP address, device and application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information.

Information collected through our monitoring services

When you use our monitoring services, we collect information about the websites, servers, and endpoints you configure for monitoring, including:

• URLs and IP addresses of monitored endpoints
• Response times and status codes
• SSL certificate information (expiry dates, issuer details)
• Domain registration information (expiry dates, registrar details)
• Heartbeat/cron job check-in timestamps
• Incident and downtime records

2. HOW DO WE USE YOUR INFORMATION?

We use personal information collected via our Services for a variety of business purposes described below. We process your personal information for these purposes in reliance on our legitimate business interests, in order to enter into or perform a contract with you, with your consent, and/or for compliance with our legal obligations.

We use the information we collect or receive:

• To facilitate account creation and authentication. We use your information to create and manage your account and keep it secure.
• To provide our monitoring services. We use your configuration data to monitor your websites, servers, SSL certificates, domains, and heartbeat endpoints, and to send you alerts when issues are detected.
• To send administrative information to you. We may use your email to send you service-related notifications, including updates about your account, security alerts, and important service announcements.
• To fulfill and manage your orders. We may use your information to fulfill and manage your orders, payments, and subscriptions made through the Services.
• To respond to user inquiries and offer support. We may use your information to respond to your inquiries and solve any potential issues you might have with the use of our Services.
• To send you marketing and promotional communications. We may use your email address to send you marketing communications, if this is in accordance with your marketing preferences. You can opt out of our marketing emails at any time.
• To improve our Services. We may use your information to analyze usage patterns and improve our Services, including developing new features and functionality.
• To enforce our terms, conditions, and policies. We may use your information to enforce our Terms of Use and other policies.
• To respond to legal requests and prevent harm. If we receive a subpoena or other legal request, we may need to inspect the data we hold to determine how to respond.

3. WHEN AND WITH WHOM DO WE SHARE YOUR INFORMATION?

We may share information in specific situations described in this section and/or with the following categories of third parties:

• Payment Processors. We share your payment information with Stripe to process payments for our Services. Stripe's use of your personal information is governed by their privacy policy.
• Notification Services. When you configure integrations (such as Slack, Microsoft Teams, Telegram, PagerDuty, or webhooks), we share relevant alert information with these services to deliver notifications. Only the information necessary for the alert is shared.
• Infrastructure Providers. We use Fly.io to host our Services. Your data may be processed on their infrastructure in accordance with their privacy and security practices.
• Analytics Providers. We use Plausible Analytics, a privacy-focused analytics service that does not use cookies and does not collect personal data. Visit https://plausible.io/privacy for more information.
• Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
• Legal Obligations. We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.
• Vital Interests and Legal Rights. We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person, or as evidence in litigation in which we are involved.

4. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

We use cookies and similar tracking technologies to access or store information. We use only essential cookies that are necessary for the operation of our Services:

• Session Cookies. We use session cookies to keep you logged in while you use our Services. These cookies are deleted when you close your browser or log out.
• Security Cookies. We use security cookies to authenticate users, prevent fraudulent use of login credentials, and protect user data from unauthorized parties.

We do not use advertising cookies or third-party tracking cookies. Our analytics provider (Plausible) does not use cookies.

5. HOW LONG DO WE KEEP YOUR INFORMATION?

We keep your information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless otherwise required by law.

Account Information. We retain your account information for as long as your account is active. If you close your account, we will delete your personal information within 30 days, except as required for legal, tax, or regulatory purposes.

Monitoring Data. We retain monitoring data (check results, incidents, events) based on your subscription plan:

• Free plan: 7 days
• Business plan: 30 days
• Pro plan: 60 days
• Enterprise plan: 90 days

After the retention period, monitoring data is automatically deleted.

6. HOW DO WE KEEP YOUR INFORMATION SAFE?

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. These measures include:

• Encryption of data in transit using TLS/SSL
• Encryption of data at rest
• Secure password hashing using industry-standard algorithms
• Regular security updates and monitoring
• Access controls and authentication requirements
• Hosting on secure, SOC 2 compliant infrastructure

However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.

7. DO WE COLLECT INFORMATION FROM MINORS?

We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 years old or that you are the parent or guardian of such a minor and consent to such minor dependent's use of the Services. If we learn that personal information from users less than 18 years of age has been collected, we will take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at updogninja@proton.me.

8. WHAT ARE YOUR PRIVACY RIGHTS?

In some regions (like the UK, EEA, and other jurisdictions), you have certain rights under applicable data protection laws. These may include the right to:

• Request access to your personal data and obtain a copy of it
• Request correction of inaccurate personal data
• Request deletion of your personal data
• Object to processing of your personal data
• Request restriction of processing of your personal data
• Request data portability to receive your data in a structured, commonly used format
• Withdraw consent at any time where we rely on consent to process your personal data

To exercise these rights, please contact us at updogninja@proton.me. We will respond to your request within 30 days.

Account Information. You can review and update your account information at any time by logging into your account settings. You can also delete your account by contacting us. Upon your request to delete your account, we will deactivate or delete your account and information from our active databases within 30 days.

Opting out of marketing communications. You can unsubscribe from our marketing email list at any time by clicking the unsubscribe link in our emails or by contacting us. You will still receive transactional emails related to your account and the Services.

If you are a resident in the United Kingdom and you believe we are unlawfully processing your personal information, you have the right to complain to the Information Commissioner's Office (ICO). You can find their contact details at: https://ico.org.uk/make-a-complaint/

9. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. We respect DNT signals. Our analytics provider (Plausible) does not track individual users, so there is no tracking to disable.

10. DO WE MAKE UPDATES TO THIS POLICY?

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last updated" date and the updated version will be effective as soon as it is accessible. If we make material changes to this Privacy Policy, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.

11. HOW CAN YOU CONTACT US ABOUT THIS POLICY?

If you have questions or comments about this Privacy Policy, you may contact us at:

Updog Monitoring
37 Newleaze
Steeple Ashton
Trowbridge BA14 6EF
United Kingdom
updogninja@proton.me

12. HOW CAN YOU REVIEW, UPDATE, OR DELETE YOUR DATA?

Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please contact us at updogninja@proton.me.

You can also manage much of your personal information directly through your account settings, including:

• Updating your name and email address
• Changing your password
• Managing your notification preferences
• Viewing and managing your monitors and integrations
• Managing your subscription and billing information