Privacy Policy

1. Introduction

PathCanary ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our synthetic monitoring platform and services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Name and email address
• Organization name
• Password (encrypted)
• Billing information (processed through Stripe)

2.2 Monitoring Data

To provide our synthetic monitoring services, we collect:

• URLs and domains you configure for monitoring
• Test results, timing metrics, and performance data
• Screenshots and HAR files from test runs
• Alert configurations and notification preferences

2.3 Technical Information

We automatically collect:

• IP addresses and browser information
• Usage patterns and feature interactions
• API access logs
• Cookie data for authentication

3. How We Use Your Information

We use the collected information to:

• Provide and maintain the PathCanary monitoring service
• Execute synthetic browser tests on your configured funnels
• Send alerts and notifications about incidents
• Process payments and manage subscriptions
• Improve our services and develop new features
• Communicate with you about service updates
• Ensure security and prevent fraud

4. Data Sharing and Disclosure

4.1 Third-Party Services

We share data with trusted third-party service providers:

• Supabase - Database hosting and authentication
• Stripe - Payment processing
• n8n - Workflow automation (self-hosted)

4.2 Legal Requirements

We may disclose your information if required by law or in response to valid legal requests from public authorities.

5. Data Security

We implement industry-standard security measures:

• End-to-end encryption for data in transit (TLS/SSL)
• Encrypted storage for sensitive data at rest
• HMAC-signed API communications
• Row-level security (RLS) in our database
• Regular security audits and updates
• Multi-factor authentication support

6. Data Retention

We retain your data according to your subscription plan:

• Free Plan: 7 days of monitoring data
• Starter Plan: 30 days of monitoring data
• Pro Plan: 90 days of monitoring data
• Enterprise Plan: 1 year of monitoring data

Account information is retained until you request deletion or your account is terminated.

7. Your Rights

Under GDPR and similar regulations, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your data
• Portability: Export your data in a structured format
• Objection: Object to certain processing activities
• Restriction: Request limited processing of your data

To exercise these rights, contact us at privacy@pathcanary.com

8. Cookies

We use essential cookies for authentication and session management. We do not use tracking cookies or third-party advertising cookies. You can disable cookies in your browser settings, but this may limit platform functionality.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses approved by the European Commission.

10. Children's Privacy

PathCanary is not intended for children under 18. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through our platform. The "Last updated" date at the top indicates when the policy was last revised.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: