Privacy Policy for NotifyNinja

Last Updated: February 2, 2026

1. Introduction

NotifyNinja (“we,” “our,” “us,” or “Company”) operates the https://notifyninja.com website and related uptime monitoring platform (collectively, the “Service”). We are committed to protecting your privacy and ensuring you have a positive experience on our platform. This Privacy Policy explains how we collect, use, store, share, and protect information about you when you use our Service.

This Privacy Policy applies to all users of NotifyNinja, including those who use our Service through Google OAuth authentication. We are committed to full compliance with Google’s data handling policies and applicable privacy regulations.

2. Information We Collect

2.1 Information You Provide Directly

User Account Information:

  • Name, email address, and phone number when you create an account
  • Company name and organizational details
  • Login credentials and authentication information
  • Billing and payment information (processed through secure third-party payment processors)

Configuration and Monitoring Data:

  • URLs and domain names you request us to monitor
  • Server and application configurations you provide for monitoring
  • Custom monitoring settings, test parameters, and alert preferences
  • Custom plugins and scripts you upload for root cause analysis
  • API keys and authentication credentials you provide for cloud platform integrations (AWS, Azure, etc.)

Communication Data:

  • Messages, support tickets, and inquiries you submit to our customer support team
  • Feedback, surveys, and product improvement suggestions

2.2 Information Automatically Collected

Monitoring Activity Data:

  • Results from automatic availability tests (HTTP, DNS, HEAD, TCP, SMTP, SSH, PING, PUSH)
  • Performance metrics including website loading speeds, page load times, and response times
  • SSL certificate expiration dates and renewal tracking information
  • Domain name expiration dates and renewal alerts
  • Network device performance data (routers, switches, firewalls)
  • Application server status and error logs from monitored systems
  • Geographic location data used to monitor page speed from different regions

Device and Access Information:

  • IP address and geolocation data
  • Device type, operating system, and browser information
  • Service access logs and authentication records
  • Timestamps of Service usage and account activity

Cookies and Tracking Technologies:

  • Session identifiers to maintain your authenticated session
  • Preferences and settings stored locally in your browser
  • Analytics data to understand how you use the Service

2.3 Information from Third Parties

Cloud Platform Integrations:

  • Performance data from Amazon Web Services (AWS), Microsoft Azure, and other cloud platforms that you authorize us to monitor
  • Billing and usage information from cloud providers where you grant us access

OAuth and Authentication Providers:

  • If you use Google OAuth to authenticate, we receive your Google account information including name and email address
  • We do not request unnecessary scopes beyond what is required for authentication and Service functionality

3. How We Use Your Information

3.1 Primary Service Delivery

We use collected information to:

  • Provide continuous uptime monitoring and availability testing of your websites, servers, and applications
  • Conduct automatic performance tests using HTTP, DNS, TCP, SMTP, SSH, PING, and PUSH protocols
  • Perform root cause analysis and identify application server errors
  • Monitor SSL certificate and domain name expiration dates
  • Analyze page loading speed from multiple geographic locations
  • Monitor network device performance (routers, switches, firewalls)
  • Send real-time notifications and alerts when outages or issues are detected
  • Track and analyze website performance metrics across monitored infrastructure

3.2 Account Management and Service Improvement

We use your information to:

  • Create, manage, and maintain your account
  • Provide customer support and respond to inquiries
  • Verify your identity and prevent fraud
  • Improve and optimize the NotifyNinja platform and user experience
  • Develop new features and enhancements based on customer needs
  • Conduct analytics to understand Service usage patterns and improve platform reliability

3.3 Communication

We use your information to:

  • Send service-related notifications and alerts about monitored systems
  • Notify you of SSL certificate and domain renewal requirements
  • Provide technical support and respond to customer service requests
  • Send security updates and important account notifications
  • Communicate product updates and feature releases

3.4 Legal and Compliance

We use your information to:

  • Comply with applicable laws, regulations, and legal processes
  • Enforce our Terms of Service and other agreements
  • Protect against fraud, security threats, and illegal activity
  • Establish, exercise, or defend legal claims

3.5 Prohibited Uses

We explicitly DO NOT use your information for:

  • Targeted advertising or personalized advertisements
  • Selling data to third parties or data brokers
  • Training AI models or machine learning algorithms
  • Determining creditworthiness or lending decisions
  • Creating commercial databases for resale
  • Interest-based or retargeted advertising
  • Any purpose unrelated to providing or improving our Service

4. Google User Data Handling

If you use Google OAuth to authenticate with NotifyNinja, the following restrictions apply to your Google user data:

4.1 Data Collected from Google

When you authenticate through Google OAuth, we receive:

  • Your name as registered with Google
  • Your email address associated with your Google account
  • Your Google account unique identifier

We do not request access to your Google Drive files, Calendar, Contacts, or any other Google services beyond what is necessary for authentication.

4.2 Use of Google User Data

Your Google user data is used exclusively to:

  • Authenticate you to the NotifyNinja Service
  • Create or update your NotifyNinja account
  • Contact you regarding Service issues and important security notices

4.3 Restrictions on Google User Data

We are bound by Google’s API Services User Data Policy. Specifically, we:

  • DO NOT use Google user data for advertising purposes
  • DO NOT sell or share Google user data with third parties
  • DO NOT use Google user data to train AI models or machine learning systems
  • DO NOT use Google user data for credit decisions, lending, or determining creditworthiness
  • DO NOT use Google user data for creating commercial databases or selling to information resellers
  • DO NOT use Google user data for any purpose unrelated to providing Service functionality
  • DO NOT combine Google user data with other data sources for prohibited purposes

5. Information Sharing and Disclosure

5.1 We Do NOT Sell Your Data

NotifyNinja does not sell, rent, trade, or transfer your personal information or Google user data to third parties for their independent use.

5.2 Service Providers and Processors

We share information with trusted third parties who assist us in operating the Service:

  • Payment Processors: For processing subscription payments and billing (PCI DSS compliant)
  • Cloud Infrastructure Providers: For hosting and delivering the Service
  • Email and Communication Services: For sending notifications and alerts
  • Analytics Providers: For aggregated, anonymized analytics only
  • Customer Support Tools: For managing and responding to support inquiries

These service providers are contractually required to use your information only as necessary to provide their services to us and must comply with applicable privacy and security standards.

5.3 Cloud Platform Integrations

When you authorize us to monitor cloud platforms (AWS, Azure, etc.), we access performance and configuration data from those platforms. This data sharing is limited to what you explicitly authorize and is used solely for providing monitoring services.

5.4 Legal Requirements and Safety

We may disclose your information when required by law or when we believe in good faith that disclosure is necessary to:

  • Comply with legal obligations, court orders, or government requests
  • Enforce our Terms of Service and other agreements
  • Protect the security or integrity of the Service
  • Prevent fraud or illegal activity
  • Protect the rights, property, and safety of NotifyNinja, our users, or the public

5.5 Business Transfers

If NotifyNinja is involved in a merger, acquisition, bankruptcy, or other business transaction, your information may be transferred as part of that transaction. We will provide notice of any such change and any choices you may have regarding your information.

6. Data Protection and Security

6.1 Security Measures

NotifyNinja implements comprehensive security procedures and technologies to protect the confidentiality, integrity, and availability of your personal information:

  • Encryption: We use TLS/SSL encryption for data transmitted between your device and our servers
  • Data Encryption: Sensitive data is encrypted at rest using industry-standard encryption protocols
  • Access Controls: We restrict access to personal information to authorized employees and service providers who need such access to perform their duties
  • Authentication: Multi-factor authentication options are available for account access
  • Security Audits: We conduct regular security assessments and vulnerability testing
  • Monitoring: We maintain continuous security monitoring to detect and respond to threats

6.2 Security Responsibility

While we implement robust security measures, no system is completely secure. You are responsible for maintaining the confidentiality of your account credentials. Please notify us immediately of any unauthorized access or security breach.

6.3 Sensitive Data Classification

API keys, authentication credentials, and SSL certificate details are treated as sensitive data requiring elevated protection and encryption protocols.

7. Data Retention and Deletion

7.1 Retention Period

NotifyNinja retains your personal information for as long as your account is active or as needed to provide you with the Service. The retention period depends on the type of information:

Account Information:

  • Active account data is retained while your subscription is active
  • After account termination, we retain data for 30 days to allow account recovery
  • Data is deleted or anonymized after 90 days

Monitoring Data and Logs:

  • Performance metrics and test results are retained for 12 months
  • Detailed logs may be retained for shorter periods based on storage and performance considerations
  • Aggregated analytics data may be retained indefinitely in anonymized form

Billing Records:

  • Payment information is retained as required by law (typically 7 years for tax and accounting purposes)
  • Payment information is stored securely by our payment processors

Communication Records:

  • Support tickets and customer communications are retained for 1 year after resolution
  • May be retained longer if required for legal compliance

7.2 Data Deletion and User Requests

You may request deletion of your account and associated personal information at any time by:

  • Contacting our customer support team via email or through your account settings
  • Submitting a deletion request through our web interface

Upon your request:

  • Your account will be permanently deleted
  • Personal information will be removed from active systems
  • Some data may be retained in backups for 30-90 days before permanent deletion
  • Data required to be retained for legal or contractual purposes will be securely stored
  • We will confirm deletion within 30 days of your request

7.3 Automatic Cleanup

  • Session data and temporary files are automatically deleted after periods of inactivity
  • Cookies are removed when your browser session ends (for session cookies) or after their expiration date

8. Your Rights and Choices

8.1 Access Your Information

You have the right to access, review, and obtain a copy of the personal information we hold about you. You can access and update your account information by logging into your account or by contacting us.

8.2 Correct or Update Information

You may correct, update, or modify your account information at any time through your account settings or by contacting our support team.

8.3 Delete Your Account

You may request deletion of your account and associated personal information. We will delete your data as described in Section 7.2 above.

8.4 Manage Communication Preferences

You can manage your notification and alert preferences through your account settings, including:

  • Frequency and types of alerts
  • Notification delivery methods (email, SMS, webhook, etc.)
  • Contact information for alerts

You can unsubscribe from non-essential marketing communications by clicking the unsubscribe link in our emails.

8.5 Data Portability

Upon request, we will provide your personal information in a portable, machine-readable format. Please contact us to request your data in this format.

8.6 Regional Privacy Rights

For EU/EEA Residents (GDPR):

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure (“right to be forgotten”)
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

For California Residents (CCPA):

  • Right to know what personal information is collected
  • Right to know whether your personal information is sold or disclosed
  • Right to delete personal information collected from you
  • Right to opt-out of the sale or sharing of your personal information
  • Right to non-discrimination for exercising your CCPA rights

To exercise any of these rights, please contact us using the information in Section 11 below.

The NotifyNinja Service may contain links to third-party websites and services that are not operated by us. This Privacy Policy does not apply to third-party services, and we are not responsible for their privacy practices. We encourage you to review the privacy policies of any third-party services before providing your information.

When you authorize us to monitor or integrate with third-party services (such as AWS, Azure, or other cloud platforms), your use of those services is governed by their respective privacy policies and terms of service.

10. Children’s Privacy

NotifyNinja is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will promptly delete such information. If you believe we have collected information from a child under 13, please contact us immediately.

11. Contact Us

If you have questions about this Privacy Policy, concerns about our privacy practices, or wish to exercise your rights regarding your personal information, please contact us:

NotifyNinja Support Team
Email: privacy@notifyninja.com
Website: https://notifyninja.com/privacy
Mailing Address: [Your Business Address]

Response Time: We will respond to privacy inquiries within 30 days of receipt.

Data Protection Officer: If you are located in the EU/EEA or have GDPR-related concerns, you may contact our Data Protection Officer at dpo@notifyninja.com

12. Changes to This Privacy Policy

NotifyNinja may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by:

  • Posting the updated policy on our website with an updated “Last Updated” date
  • Sending you an email notification if the changes materially affect how we use your information
  • Requiring your explicit consent if required by applicable law

Your continued use of the Service after updates constitutes your acceptance of the revised Privacy Policy. We encourage you to review this policy periodically to stay informed about how we protect your information.

13. Specific Disclosures for Google OAuth Users

This section provides additional transparency for users who authenticate through Google OAuth, as required by Google’s API Services User Data Policy:

13.1 Scope of Google Data Access

When you use Google OAuth to sign in to NotifyNinja:

  • We request access to your email address and profile information (name)
  • We do NOT request access to your Google Drive, Calendar, Contacts, Photos, Gmail, or any other Google services
  • We request only the minimum scopes necessary for authentication and account creation

13.2 Data Security

Your Google user data is protected with:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest in our secure database
  • Restricted access to authorized personnel only
  • Regular security audits and penetration testing
  • Immediate deletion upon account termination

13.3 Data Sharing Restrictions

Your Google user data is:

  • NOT shared with any third parties
  • NOT used for advertising, marketing, or promotional purposes
  • NOT combined with other data sources for profiling or analysis
  • NOT used to train machine learning or AI models
  • NOT sold, rented, or traded to any other party

13.4 User Rights

You can:

  • Revoke NotifyNinja’s access to your Google account at any time through your Google Account settings
  • Request deletion of your NotifyNinja account (which removes all Google-linked data)
  • Contact Google directly with concerns about Google OAuth: https://support.google.com/accounts

14. CCPA and State Privacy Law Compliance

California Residents and Other Applicable Jurisdictions:

We comply with the California Consumer Privacy Act (CCPA), Virginia Consumer Data Protection Act (VCDPA), and other state privacy laws. Under these laws, you have the right to:

  1. Know: What personal information is collected, used, shared, or sold
  2. Delete: Request deletion of personal information (with limited exceptions)
  3. Opt-Out: Opt-out of the “sale” or “sharing” of your personal information
  4. Correct: Request correction of inaccurate personal information
  5. Limit: Limit how we use your sensitive personal information
  6. Non-Discrimination: We do not discriminate against you for exercising your rights

To submit a request: Contact privacy@notifyninja.com with your name, email, and specific request. We will verify your identity before processing your request and respond within 45 days.

15. International Data Transfers

If you access NotifyNinja from outside the United States, please note that your information may be transferred to, stored in, and processed in the United States or other countries where our servers are located. These countries may have different data protection laws than your country of residence.

By using NotifyNinja, you consent to the transfer of your information as described in this Privacy Policy. If you do not agree to such transfers, please do not use the Service.

For EU/EEA residents, we rely on Standard Contractual Clauses (SCCs) and other lawful mechanisms to ensure adequate protections for international data transfers in compliance with GDPR.

6. Refund Policy

If you are not satisfied with your purchase, within 7 days from the purchase date, we will fully refund the cost of your order.
© 2026 NotifyNinja Inc. All Rights Reserved. Last Updated 2026-01-28