Is It UpIsItUp

Privacy Policy

Effective date: April 19, 2026

This Privacy Policy describes how Is It Up ("we", "us", or "our") collects, uses, and shares information when you use our website and hosted uptime monitoring service (the "Service"). If you self-host the software, this policy does not apply to the data you process yourself — only to the marketing site and hosted offering.

1. Information we collect

We collect information in three ways:

  • Account information you provide: your email address when you sign in, the name of your workspace, and the role you have inside it.
  • Monitoring data you configure: the URLs you want us to check, the HTTP method and optional response expectations, the check interval, and any contact addresses or webhooks you set up for down alerts. We then make HTTP(S) requests to the URLs you specify and store the result (status code, response time, error message, TLS certificate expiry where applicable) in our database.
  • Usage and device data collected automatically: IP address, browser user-agent, pages visited, and timestamps — for security, debugging, and basic product analytics.

2. How we use your information

We use the information to:

  • Operate the Service and run the checks you have scheduled.
  • Send you the alerts you have configured (e.g. email, generic webhook).
  • Bill you for paid plans and answer support requests.
  • Protect the Service against abuse and investigate security incidents.
  • Improve the product — in aggregate, anonymised form where practical.

3. Legal bases

For users in the EEA, UK, and similar jurisdictions, we rely on the following legal bases: performance of a contract (to provide the Service you signed up for), legitimate interests (to keep the Service secure and to improve it), and consent where we ask for it (for example, non-essential analytics cookies).

4. Sharing

We do not sell your personal information. We share data only with service providers that help us run the Service, under written contracts:

  • Hosting and database: Supabase and our cloud provider, for storing your account, workspace, and monitoring data.
  • Payments: Stripe, which processes subscription payments. We never see or store your full card number.
  • Email delivery: the transactional email provider you configure (such as Mailgun) or the one we use for our own billing emails.
  • Product analytics: PostHog, for anonymised usage measurement.

We may also disclose information when required by law, to enforce our Terms, or to protect the rights, safety, or property of anyone involved.

5. Retention

We keep your account information for as long as your account is active. Check history is retained for 90 days by default and may be shorter on specific plans; hosts of self-managed deployments can configure their own retention. When you delete your account, we delete or anonymise the associated data within a reasonable window, subject to legal or accounting obligations.

6. Your rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. To exercise these rights, contact us at the address below. We will respond within the time required by applicable law.

7. Security

We use industry-standard safeguards: TLS for data in transit, encryption at rest for our databases, role-based access for our team, and regular backups. No system is perfectly secure — if we ever learn of a breach that affects you, we will notify you as required by law.

8. International transfers

We are headquartered in the United States, and our servers may be located in regions other than the one you live in. Where required, we rely on standard contractual clauses or equivalent safeguards to move data across borders.

9. Children

The Service is not directed at children under 16, and we do not knowingly collect personal information from them. If you believe a child has given us information, contact us and we will delete it.

10. Changes

We may update this Policy from time to time. If the changes are material, we will notify you by email or in the dashboard before they take effect.

11. Contact

Questions about this Policy? Email privacy@isitup.run.