Privacy Policy
How SolidOps collects, uses, and looks after the data you share with us.
Who we are
SolidOps is a monitoring and operations platform. When this policy refers to "SolidOps," "we," or "us," it means the entity operating the SolidOps service. Our primary contact for privacy matters is privacy@solidops.tools.
This policy describes how we handle personal data in connection with the SolidOps web application, our website, and any related services. It applies to account holders and anyone whose data we process while providing the service.
Data we collect
We collect data in a few distinct categories, and we try to keep each category narrow.
Account information. When you sign up we collect your email address, a display name, and a hashed password. If you authenticate via a third-party provider (such as GitHub or Google), we receive whatever that provider shares with us, typically an email address and a display name, instead of a password.
Monitoring targets and results. The URLs, hostnames, and check configurations you add to SolidOps are stored so the platform can run your checks. The results of those checks (response codes, latency readings, certificate expiry data, WHOIS records) are stored against your account. This data belongs to you.
Usage and diagnostic data. We log application events (logins, configuration changes, check runs) and basic technical information (IP address, browser type, request timestamps) to operate and improve the service. We do not build behavioural profiles from this data.
Payment information. Payments are processed by Stripe. SolidOps never sees or stores your card number, CVV, or full billing address. We receive a token and a summary (card brand, last four digits, expiry month/year) from Stripe for display purposes. See Stripe's own privacy policy for detail on how Stripe handles payment data.
How we use your data
We use the data we collect to:
- Create and maintain your account and authenticate your sessions.
- Run the monitoring checks you configure and store their results.
- Send alert and incident notifications to the channels you set up.
- Process payments and keep billing records.
- Diagnose failures, investigate abuse, and improve the platform.
- Communicate with you about service changes or security matters.
We do not sell your data, rent it to third parties, or use it to target you with advertising.
Third parties and sub-processors
We rely on a small number of sub-processors to run the service. We share only the data each one needs to do their job.
- Stripe: payment processing. Stripe operates under its own privacy policy and is PCI-DSS certified.
- Cloud infrastructure providers: the servers and object storage that host SolidOps run on infrastructure from one or more major cloud providers. Data is stored in the regions described in the "International transfers" section below.
- Transactional email: alert and system emails are delivered via a transactional email provider. We share only the recipient address and the message content.
We will update this list as new sub-processors are added. Significant changes will be communicated via the "Policy changes" notice below.
Data retention
We keep your data for as long as your account is active. Specific retention windows:
- Monitoring check results: 90 days of history per check. Older results are removed automatically on a rolling basis.
- Incident records: kept for the life of your account, as they form the audit trail for past events.
- Application and access logs: retained for up to 30 days for security and diagnostic purposes, then purged.
- Billing records: retained for as long as required by applicable tax and accounting law (typically 7 years).
When you close your account we will delete your personal data and monitoring configuration within 30 days, except where we are required by law to retain records for longer.
Your rights
Depending on where you are located, you may have the following rights regarding your personal data:
- Access. Request a copy of the personal data we hold about you.
- Rectification. Ask us to correct inaccurate or incomplete data.
- Erasure. Ask us to delete your personal data, subject to any legal retention obligations.
- Export / data portability. Request your monitoring configuration and check history in a machine-readable format.
- Restriction. Ask us to limit how we process your data while a dispute is resolved.
- Objection. Object to certain types of processing, including direct marketing.
To exercise any of these rights, email us at privacy@solidops.tools. We will respond within 30 days. If you are not satisfied with our response you have the right to lodge a complaint with your local data protection authority.
Data security
We apply technical and organizational measures appropriate to the sensitivity of the data we hold:
- All traffic between your browser and SolidOps is encrypted in transit via TLS.
- Passwords are hashed with a memory-hard algorithm and never stored in plaintext.
- Access to production systems is restricted to authorized personnel.
- We monitor our own infrastructure continuously with the same monitoring tools we offer you.
No system is perfectly secure. If you discover a vulnerability, please report it responsibly to security@solidops.tools.
International data transfers
SolidOps is operated from [country, to be confirmed]. Data may be stored or processed in other countries where our infrastructure providers maintain data centers. Where personal data is transferred outside the country in which it was collected, we rely on appropriate legal mechanisms (such as standard contractual clauses) to ensure an adequate level of protection.
We will update this section when hosting regions are finalized.
Changes to this policy
We may update this policy as the product and applicable law evolve. When we make material changes we will update the "Last updated" date at the top of this page and, where practical, send a notice to registered account holders.
Continued use of SolidOps after a policy change takes effect constitutes acceptance of the updated terms. If you disagree with a change, you may close your account at any time.
Contact
Questions or requests about this policy or your personal data can be sent to:
If your question is about a security issue rather than a privacy one, please contact security@solidops.tools instead.