Legal

Privacy Policy

We believe transparency is fundamental to trust. This policy explains exactly what data we collect, why we collect it, and how we protect it.

Effective: April 5, 2026 Last updated: April 5, 2026

Watchplane, Inc. ("Watchplane," "we," "our," or "us") operates the Watchplane uptime monitoring platform (the "Service"). This Privacy Policy describes how we collect, use, disclose, and safeguard information about you when you use our Service. By using Watchplane, you agree to the practices described in this policy.

Information We Collect

Information you provide directly

  • Account information: Name, email address, and password when you register. If you subscribe to a paid plan, we also collect billing information via our payment processor.
  • Monitor configuration: URLs, hostnames, ports, and credentials you enter to configure monitors (HTTP, TCP, DNS, SMTP, gRPC, WebSocket).
  • Team & collaboration data: Email addresses of team members you invite, role assignments, and notification preferences.
  • Support communications: Messages and attachments you send when contacting support.

Information collected automatically

  • Usage data: Pages visited, features used, actions taken in the dashboard, and timestamps.
  • Log data: IP addresses, browser type, operating system, referrer URLs, and session identifiers.
  • Monitor check results: Response times, HTTP status codes, TLS certificate details, DNS records, and error messages returned by your monitored endpoints. This data is stored in our time-series database.
  • Device data: Browser version, screen resolution, and preferred language, used to improve the interface.

Information from third parties

  • OAuth providers: If you sign in with Google or GitHub, we receive your name, email address, and profile picture from that provider.
  • Payment processors: We receive transaction confirmations and billing status from Stripe. We never store full card numbers.

How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service, including running monitoring checks from our distributed probe network.
  • Send alert notifications via email, SMS, Slack, and webhooks when your monitors detect incidents.
  • Detect, investigate, and respond to security incidents and abuse.
  • Analyze aggregate usage patterns to improve performance and add new features.
  • Process payments and manage your subscription.
  • Respond to support requests and communicate Service updates.
  • Power AI-based anomaly detection on your monitor metrics to surface unusual patterns.
  • Comply with applicable laws and enforce our Terms of Service.

We do not sell your personal information or use your monitor data to train our AI models without explicit consent.

Information Sharing and Disclosure

We share your information only in the following circumstances:

Service providers

We work with trusted third-party vendors who process data on our behalf under strict data processing agreements:

  • Infrastructure: Hetzner (compute, storage)
  • Transactional email: Mailgun
  • SMS notifications: Twilio
  • Payments: Stripe

Legal requirements

We may disclose information if required by law, subpoena, court order, or other governmental authority, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business transfers

If Watchplane is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and a prominent in-app notice before your data is transferred and becomes subject to a different privacy policy.

Aggregated data

We may share aggregated, de-identified statistics (e.g., "average HTTP response times across all monitors") that cannot reasonably be used to identify you.

Data Retention

We retain different categories of data for different periods depending on their purpose:

  • Account data: Retained while your account is active and for 90 days after deletion, after which it is permanently erased.
  • Monitor check results: Retained according to your plan's data retention limit (30 days on Free, 1 year on Pro, 2 years on Enterprise). Older data is purged automatically.
  • Billing records: Retained for 7 years to comply with financial regulations.
  • Support tickets: Retained for 3 years from the date of last activity.

You may request early deletion of your account and associated data at any time by contacting privacy@watchplane.com.

Security

We implement technical and organizational measures designed to protect your information against unauthorized access, alteration, disclosure, or destruction:

  • All data in transit is encrypted using TLS 1.2 or higher.
  • Data at rest is encrypted using AES-256.
  • Passwords are hashed using bcrypt with a high work factor and never stored in plaintext.
  • API tokens use a secure random prefix (wp_*) and are hashed in the database.
  • Production infrastructure access is restricted to authorized personnel and requires MFA.
  • We conduct regular security audits and penetration tests.

No method of transmission over the internet or electronic storage is 100% secure. If you believe your account has been compromised, contact us immediately at security@watchplane.com.

Cookies and Tracking Technologies

We use the following types of cookies and similar technologies:

Strictly necessary cookies

Required for the Service to function. These include session tokens and CSRF protection tokens. You cannot opt out of these.

Preference cookies

Store your settings such as theme preference (light/dark mode) and dashboard layout choices. Stored in localStorage.

Analytics cookies

We use privacy-respecting analytics to understand how the Service is used. Analytics data is aggregated and does not include personally identifiable information. You can opt out via your account settings.

Most browsers allow you to control cookies through their settings. Disabling cookies may affect your ability to use certain features.

Third-Party Services and Integrations

When you connect third-party integrations (such as Slack, PagerDuty, or webhook endpoints), we transmit incident data to those services on your behalf. Your use of those services is governed by their respective privacy policies. We encourage you to review them.

Public status pages you create on Watchplane are accessible to anyone with the URL. Be mindful of what information you choose to display publicly, as it may include service names, uptime percentages, and incident history.

Your Rights

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request that we correct inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal obligations.
  • Portability: Request your data in a structured, machine-readable format.
  • Restriction: Request that we limit how we process your data in certain circumstances.
  • Objection: Object to processing based on legitimate interests.
  • Withdrawal of consent: Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, email privacy@watchplane.com. We will respond within 30 days. We may need to verify your identity before processing your request. If you are in the EU/EEA, you also have the right to lodge a complaint with your local supervisory authority.

International Data Transfers

Watchplane is headquartered in the United States. If you are accessing our Service from the European Economic Area, United Kingdom, or other regions with data protection laws that differ from US law, your information will be transferred to and processed in the United States.

We transfer data under lawful mechanisms including the EU Standard Contractual Clauses (SCCs) and the UK Addendum where applicable. By using our Service, you acknowledge that your information may be processed in countries with different privacy protections than your home country.

Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly. If you believe we have inadvertently collected such data, please contact us at privacy@watchplane.com.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy on this page with a new "Last updated" date.
  • Sending an email to the address associated with your account.
  • Displaying a prominent notice in the Watchplane dashboard.

Your continued use of the Service after the effective date of any changes constitutes your acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out:

We take privacy seriously and will respond to all inquiries within 30 business days.