Alertee LogoAlertee

Last updated August 21st, 2025

Privacy Policy

This privacy policy describes how We collect, use, process, and protect Your information when You use Our Service. Please read this privacy policy carefully to understand Our policies and practices regarding Your information.

Use of the Service is also subject to Our Terms of Service, which can be found at https://alertee.io/terms.

Interpretation and Definitions

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of this privacy policy:

Service means the Alertee data monitoring platform accessible at alertee.io, alertee.app, and alertee.ai

Account means a unique account created for You to access our Service or parts of our Service.

Company (referred to as either "the Company", "Alertee", "We", "Us" or "Our") refers to Alertee.

Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.

Data Source Connection means a connection that You establish through the Service to monitor your data sources for changes, anomalies, and specified conditions.

Organization means a workspace where teams collaborate and manage data monitoring within the Service.

You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Information We Collect

Personal Information

When You register for an Account, We may collect personally identifiable information including:

  • Email address
  • Name
  • Organization name
  • Usage data and preferences

Data Monitoring Information

When You use our Service to monitor data sources, We collect and store:

  • Monitoring results: Data returned from Your monitoring checks, including query outputs, webhook responses, API results, and other data source outputs as configured
  • Check configurations: The monitoring conditions, queries, thresholds, and settings You configure
  • Alert history: Records of when alerts were triggered and sent
  • Performance metrics: Statistics about check execution times, success rates, and results
  • Connection metadata: Data source type, connection details (encrypted), and status information
  • Credentials: Encrypted access credentials for Your data sources (databases, APIs, webhooks, etc.)

Data Collection: We collect and store the specific data returned by Your monitoring checks as configured by You. This may include data values, counts, timestamps, status information, or other results from Your data sources necessary to provide monitoring and alerting services.

How We Use Your Information

We use Your information to:

  • Provide and maintain our Service
  • Execute data monitoring checks as configured
  • Send alerts when conditions are met
  • Manage Your Account and subscriptions
  • Process payments through our payment processor (Stripe)
  • Provide customer support
  • Improve and develop new features
  • Comply with legal obligations

Legal Basis for Processing (GDPR)

Under the General Data Protection Regulation (GDPR), we process Your personal data based on the following legal grounds:

  • Contract Performance: Processing necessary to provide the Service You have subscribed to, including monitoring, alerting, and account management
  • Legitimate Interests: Processing for our legitimate business interests, including service improvement, security, fraud prevention, and analytics, balanced against Your rights and freedoms
  • Legal Obligations: Processing necessary to comply with legal requirements, such as tax records and legal disclosures
  • Consent: Where You have provided explicit consent for specific processing activities, such as marketing communications

Data Processing and Ownership

You retain all rights, title, and interest in and to all data uploaded to or processed through the Service. The Company's rights and obligations with respect to such data are as follows:

(a) The Company shall process data in accordance with our Service functionality and any instructions provided through the Service;

(b) All data processing shall occur in secure environments with appropriate safeguards;

(c) The Company may use aggregated, anonymized patterns and statistical insights derived from Service usage for the limited purposes of improving Service performance, developing new features, creating industry benchmarks, and security threat detection. Such use will not identify You or Your organization;

(d) The Company maintains appropriate security controls and data protection measures;

(e) The Company may access and review data when necessary for Service operations, including but not limited to security monitoring, bug investigation, feature development, and customer support. Such access is logged and limited to authorized personnel on a need-to-know basis.

(f) Data Usage Limitations: We will not use Your data for advertising, marketing to third parties, or training machine learning models without explicit consent. Derived insights are limited to anonymized, aggregated patterns that cannot identify You or Your organization.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance Your experience with our Service:

  • Essential Cookies: Required for Service functionality, including authentication and security
  • Analytics Cookies: Help us understand how You use the Service to improve performance and user experience
  • Preference Cookies: Remember Your settings and preferences

You can control cookie settings through Your browser. Disabling essential cookies may affect Service functionality. We do not use cookies for advertising or cross-site tracking.

Service Analytics

The Company collects and analyzes Service usage data, including user behavior, preferences, and interaction patterns, to improve Service functionality, personalization, and user experience. Such data is handled in accordance with industry standard privacy and security practices.

We use the following analytics services to help us understand and improve our Service:

  • Segment: Analytics data routing and collection service that helps us consolidate analytics data
  • Mixpanel: Product analytics for understanding user behavior and feature usage within the application
  • PostHog: Product analytics and session recording for improving user experience (session recordings are anonymized)
  • Google Analytics: Website analytics for understanding marketing site traffic and engagement

These services process usage data in accordance with their respective privacy policies. We configure these tools to minimize data collection and respect user privacy preferences where technically feasible.

Data Sharing and Disclosure

We do not sell, rent, or trade Your personal information to third parties for their marketing purposes. We may share Your information only in the following limited circumstances:

(a) Service Providers: We may share data with trusted third-party service providers who assist us in operating our Service, such as cloud hosting providers (Encore.dev), authentication services (Clerk), payment processors (Stripe), and email delivery services. We only share the minimum data necessary for these providers to perform their specific functions.

(b) Legal Requirements: We may disclose Your information if required by law, court order, or other legal process, or if we believe in good faith that such disclosure is necessary to comply with legal obligations, protect our rights, or ensure user safety.

(c) Business Transfers: In the event of a merger, acquisition, or sale of assets, Your information may be transferred as part of that transaction, subject to the same privacy protections outlined in this policy.

(d) Consent: We may share Your information with Your explicit consent for specific purposes not covered above.

Data Protection Mechanisms

We implement comprehensive security measures to protect Your data:

(a) Encryption: All data is encrypted both in transit and at rest using industry-standard encryption methods. Each organization's data is encrypted with separate keys to ensure isolation. Credentials and sensitive information receive additional encryption protection.

(b) Access Controls: We implement role-based access controls (RBAC) ensuring that only authorized personnel can access Your data on a need-to-know basis. All access is logged and monitored.

(c) Authentication: We use secure authentication through Clerk. Data source connections are established using the encrypted credentials You provide.

(d) Infrastructure Security: Our Service runs on secure cloud infrastructure with regular security updates and monitoring.

(e) Data Isolation: Customer data is logically isolated using secure multi-tenant architecture. Each organization's data is separated and protected from unauthorized access by other tenants.

(f) Monitoring and Logging: We maintain comprehensive audit logs of all data access and system activities. Automated security monitoring detects and alerts on suspicious activities.

Data Retention and Deletion

General Retention: We retain Your personal information and monitoring data for the length of time needed to fulfill the purposes outlined in this privacy policy, unless a longer retention period is required or permitted by law.

Connection Data: When You disconnect a Data Source Connection, We immediately delete the associated encrypted credentials. Historical monitoring results and alert data may be retained for up to 90 days to provide historical reporting and trend analysis.

Account Deletion: You may request complete deletion of Your Account and associated data by contacting Us at legal@alertee.io. Upon receiving such a request, We will delete Your data within 30 days, except where retention is required by law or necessary for legitimate business purposes such as financial records and audit logs.

Backup Data: Deleted data may persist in encrypted backups for up to 90 days for disaster recovery purposes, after which it is permanently destroyed.

Data Breach Notification

In the event of a data breach that may affect Your personal information, We will notify You and relevant authorities as required by applicable law. We maintain security measures and incident response procedures to minimize the risk of data breaches.

Your Rights

Depending on Your location, You may have certain rights regarding Your personal information:

  • Access: Request access to Your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of Your personal information
  • Portability: Request a copy of Your data in a portable format
  • Objection: Object to certain processing of Your information

To exercise these rights, please contact us at legal@alertee.io.

GDPR Rights for EU/UK Residents

If You are located in the European Union or United Kingdom, You have additional rights under GDPR:

  • Right to Rectification: Correct inaccurate or incomplete personal data
  • Right to Erasure (“Right to be Forgotten”): Request deletion of Your personal data in certain circumstances
  • Right to Restrict Processing: Request limitations on how we process Your data
  • Right to Data Portability: Receive Your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or direct marketing
  • Right to Withdraw Consent: Where processing is based on consent, You may withdraw it at any time
  • Right to Lodge a Complaint: File a complaint with Your local data protection authority

Data Controller: For GDPR purposes, Alertee acts as the data controller for Your personal information. You can contact our data protection officer at: legal@alertee.io

Response Time: We will respond to Your rights requests within one month of receipt, as required by GDPR. Complex requests may require an extension of up to two additional months, of which You will be notified.

Children's Privacy

Our Service is not intended for use by children under the age of 18. We do not knowingly collect personal information from children under 18. If You become aware that a child has provided us with personal information, please contact us immediately.

International Data Transfers

Our servers are primarily hosted in the European Union. However, to provide and improve our Service, Your information may be transferred to, stored in, and processed in countries other than Your own, including but not limited to the United States and other regions where our service providers operate.

When we transfer Your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as standard contractual clauses, adequacy decisions, or other legal mechanisms approved under applicable data protection laws.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date.

For material changes that affect how we process Your personal data, We will provide advance notice via email or prominent notice through the Service. Your continued use of the Service after such changes constitutes acceptance of the updated Privacy Policy.

Contact Us

If You have any questions about this privacy policy or Our privacy practices, You can contact Us:

Email: legal@alertee.io

Website: https://alertee.io