Privacy Policy

Last updated: June 24, 2026

PingWatchdog ("we", "us", "our") respects your privacy. This policy explains what data we collect, how we use it, and your rights under the General Data Protection Regulation (GDPR) and other applicable privacy laws.

1. Data We Collect

1.1 Account Data

When you create an account, we collect:

• Email address
• Name (if provided)
• Account preferences and settings

1.2 Monitoring Data

When you use our monitoring Service, we collect:

• URLs and endpoints you configure for monitoring
• Uptime/downtime status and response times for those endpoints
• HTTP status codes and response headers from monitored endpoints
• SSL certificate expiry dates for monitored endpoints

1.3 Usage Data

We automatically collect:

• IP address and browser information when you access the Service
• Pages visited and features used within the Service
• Timestamps of account activity

1.4 Payment Data

We do not store full payment card details. Payments are processed by our payment processor (Paddle / Lemon Squeezy), which collects and stores payment information in accordance with their privacy policies. We receive only transaction metadata (amount, date, last 4 digits).

2. How We Use Your Data

We use your data for these purposes:

• Providing the Service: Checking your endpoints, sending alerts, generating status pages
• Account management: Authentication, billing, support communications
• Service improvement: Analyzing usage patterns to improve reliability and features
• Legal compliance: Meeting our legal obligations, responding to lawful requests
• Security: Detecting and preventing fraud, abuse, and unauthorized access

We do not sell your personal data. We do not use your monitoring data for any purpose other than providing the Service to you.

3. Legal Basis for Processing (GDPR)

Under the GDPR, our legal bases for processing your data are:

• Contractual necessity: Processing required to provide the Service you signed up for (account creation, monitoring, alerts)
• Legitimate interests: Service improvement, security, and fraud prevention, where these interests are not overridden by your rights
• Legal obligation: Compliance with applicable laws and regulations
• Consent: Where you have explicitly given consent (e.g., marketing emails, which you can opt out of at any time)

4. Data Retention

We retain your data as follows:

• Account data: Retained while your account is active. Deleted within 30 days of account deletion.
• Monitoring data: Retained according to your plan's data retention period (90 days for Free, 1 year for Solo, 3 years for Team). Older data is automatically purged.
• Usage logs: Retained for 90 days for security and debugging purposes.
• Payment records: Retained for the period required by tax and accounting laws (typically 10 years for EU businesses).

5. Data Storage and Transfers

All data is stored on servers located in the European Union (Germany). We do not transfer your data outside the EU.

If we ever need to transfer data outside the EU, we will ensure appropriate safeguards are in place (Standard Contractual Clauses or equivalent) and notify you.

6. Data Sharing

We share your data only in these limited circumstances:

• Service providers: Infrastructure providers (Hetzner), payment processors (Paddle or Lemon Squeezy), and email delivery services (Resend). These providers process data on our instructions and are bound by data processing agreements.
• Legal requirements: When required by law, court order, or governmental authority.
• Business transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. You will be notified.

We never sell, rent, or trade your personal data.

7. Your Rights

Under the GDPR and applicable laws, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data ("right to be forgotten")
• Restriction: Request limited processing of your data
• Portability: Receive your data in a structured, machine-readable format
• Objection: Object to processing based on legitimate interests
• Withdraw consent: Withdraw consent where processing is based on consent

To exercise any of these rights, email us at privacy@pingwatchdog.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.

8. Cookies

We use only essential cookies required for the Service to function (session authentication, CSRF protection). We do not use tracking cookies, analytics cookies, or advertising cookies. No cookie consent banner is required under EU law for essential cookies.

9. Security

We implement appropriate technical and organizational measures to protect your data, including encryption in transit (TLS), encryption at rest, access controls, and regular security reviews. However, no method of transmission or storage is 100% secure.

10. Children's Privacy

The Service is not intended for individuals under 16 years of age. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us.

11. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email or through the Service. Continued use after changes take effect constitutes acceptance.

12. Contact

For privacy-related inquiries or to exercise your rights:

Email: privacy@pingwatchdog.com

Data Controller: Phillip Wilson
Address: Available upon request via email