Privacy Policy

1. Introduction

SiteIsDead.dev ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our uptime monitoring service.

By using SiteIsDead.dev, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when using our Service:

• Account Information: Email address, name, and profile picture from Google OAuth
• Contact Information: Phone number(s) for receiving downtime alerts
• Monitored Websites: URLs and names of websites you choose to monitor
• Payment Information: Billing details processed through Stripe (we do not store credit card numbers)

2.2 Automatically Collected Information

When you use our Service, we automatically collect:

• Monitoring Data: Uptime status, response times, and incident logs for your monitored websites
• Usage Data: How you interact with our Service, features used, and settings configured
• Device Information: Browser type, operating system, IP address, and device identifiers
• Cookies and Tracking: Session cookies for authentication and functionality

2.3 Third-Party Data

We receive information from third-party services:

• Google OAuth: Basic profile information (email, name, profile picture)
• Stripe: Payment processing and subscription status
• Telephony Provider: Call delivery status and metadata

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Delivery

• Monitor your websites for uptime and performance
• Send phone call alerts when downtime is detected
• Provide uptime statistics and incident reports
• Maintain and improve Service functionality

3.2 Account Management

• Create and manage your account
• Process payments and manage subscriptions
• Provide customer support
• Send important service updates and notifications

3.3 Service Improvement

• Analyze usage patterns to improve features
• Troubleshoot technical issues
• Develop new features and services
• Ensure security and prevent fraud

3.4 Legal Compliance

• Comply with legal obligations
• Enforce our Terms of Service
• Protect our rights and property
• Respond to legal requests

4. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who perform services on our behalf:

• Supabase: Database hosting and authentication
• Stripe: Payment processing
• Telephony Provider (Twilio): Phone call delivery
• Hosting Provider (Vercel): Application hosting

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Legal Requirements

We may disclose your information if required to do so by law or in response to:

• Court orders or legal processes
• Government or regulatory requests
• Protection of our rights or property
• Investigation of fraud or security issues

4.3 Business Transfers

If SiteIsDead.dev is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership.

5. Data Security

We implement appropriate technical and organizational measures to protect your information:

• Encryption: Data is encrypted in transit (TLS/SSL) and at rest
• Access Controls: Strict access controls and authentication requirements
• Secure Infrastructure: Hosted on secure, industry-standard platforms
• Regular Audits: Security assessments and vulnerability testing
• Data Minimization: We collect only necessary information

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as necessary to provide our Service and comply with legal obligations:

• Account Data: Retained while your account is active
• Monitoring Data: Retained for 90 days (or as specified in your plan)
• Incident Logs: Retained for 1 year
• Payment Records: Retained for 7 years for tax and accounting purposes

When you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it by law.

7. Your Rights and Choices

You have the following rights regarding your personal information:

7.1 Access and Portability

• Request a copy of your personal information
• Export your monitoring data and settings

7.2 Correction and Update

• Update your account information through your dashboard
• Correct inaccurate information

7.3 Deletion

• Delete your account and associated data directly from your dashboard Settings menu
• Request deletion of specific information by contacting us

Self-Service Account Deletion: You can permanently delete your account at any time through the Settings dropdown in your dashboard. This will immediately:

• Cancel any active subscriptions
• Delete all monitored sites and incident history
• Remove your personal information from our systems
• Process the deletion within 30 days, except where retention is required by law

7.4 Opt-Out

• Unsubscribe from marketing emails (we don't send these currently)
• Disable non-essential cookies

To exercise these rights, please contact us at privacy@siteisdead.dev. We will respond to your request within 30 days.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws.

We ensure that such transfers comply with applicable data protection laws and that your information receives adequate protection through:

• Standard contractual clauses approved by relevant authorities
• Adequacy decisions by data protection authorities
• Service providers certified under recognized privacy frameworks

9. Children's Privacy

Our Service is not intended for children under 13 years of age (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately, and we will delete such information.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to provide and improve our Service. We respect your privacy choices and provide granular control over non-essential cookies.

10.1 Cookie Consent Management

When you first visit our website, you'll see a cookie consent banner that allows you to choose which types of cookies to accept. Your preferences are stored locally in your browser (using localStorage, not cookies) and expire after 6 months. You can change your preferences at any time by clicking the cookie settings button.

10.2 Types of Cookies We Use

Necessary Cookies (Always Active)

These cookies are essential for the website to function and cannot be disabled:

• Authentication: Session management and login state
• Security: CSRF protection and fraud prevention
• Functionality: Core Service features and user preferences

Analytics Cookies (Optional)

These cookies help us understand how visitors use our website. We use Umami Analytics, a privacy-focused analytics service that:

• Collects anonymous usage statistics
• Does not track personal information
• Does not use traditional cookies (uses localStorage)
• Is GDPR compliant by design
• Only loads if you consent to analytics

Marketing Cookies (Optional)

Currently not in use. If we implement marketing or advertising in the future, these would:

• Track conversions from advertising campaigns
• Enable retargeting and personalized ads
• Measure ad effectiveness
• Only load with your explicit consent

10.3 Managing Your Cookie Preferences

You have full control over non-essential cookies:

• Cookie Banner: Choose your preferences when you first visit
• Settings Button: Click the floating cookie icon (bottom-left) to change preferences anytime
• Browser Settings: You can also control cookies through your browser settings
• Script Removal: When you disable analytics, we immediately remove tracking scripts from your browser

Note: Disabling necessary cookies through browser settings may prevent the Service from functioning properly.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect and how we use it
• Right to delete your personal information
• Right to opt-out of the sale of personal information (we do not sell your information)
• Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@siteisdead.dev with "California Privacy Rights" in the subject line.

12. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right of access to your personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to restrict processing
• Right to data portability
• Right to object to processing
• Right to withdraw consent

Our legal basis for processing your information includes:

• Contract: Processing necessary to provide our Service
• Consent: You have given explicit consent
• Legitimate Interests: For service improvement and security
• Legal Obligation: Compliance with applicable laws

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on our website
• Sending an email notification
• Displaying a notice in your dashboard

The "Last Updated" date at the top of this policy indicates when it was last revised. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.