Privacy Policy
1. What we collect
| Data type | Purpose | Retention |
|---|---|---|
| Account email, company name | Account management, alerts | Until account deletion |
| SSH credentials (encrypted) | Connecting to your servers | Until connector deleted |
| Probe results (latency, errors) | Dashboard, incident detection | 90 days |
| Audit logs | Security, compliance | 12 months |
| Payment information | Billing (processed by Paddle) | Per Paddle policy |
2. What we do NOT collect
- Your application data or files — probe files are generated from
/dev/zeroand immediately deleted - Contents of your filesystem — we only measure write/read latency
- Personal data of your end users
- Data beyond what is needed to operate the monitoring service
3. How we use your data
- To operate the monitoring service and send alerts
- To detect and notify you of probe failures
- To generate uptime and performance reports
- To improve the service
- To communicate account and billing information
4. Data sharing
We do not sell your data. We share data only with:
- AWS — hosting (EC2, SES email, S3 backups) — region: us-east-1
- Paddle — payment processing — their privacy policy applies to payment data
5. Security
- SSH keys encrypted at rest with AES-256-GCM
- All data in transit encrypted with TLS 1.2+
- Daily encrypted database backups to S3
- Access logs and audit trails for all admin actions
6. Your rights
- Access — request a copy of your data
- Deletion — delete your account and all associated data
- Correction — update incorrect information
- Portability — export your probe history as CSV
To exercise these rights: privacy@connectwatch.app
7. Cookies
ConnectWatch uses only essential session cookies for authentication. No tracking cookies, no advertising cookies, no third-party analytics.
8. Changes
We will notify you by email of material changes to this policy at least 14 days in advance.