Privacy Policy
Last updated: 13 March 2026
This Privacy Policy explains how Crowswatch ("we", "us", "our") collects, uses, stores, and protects your personal information when you use our website and services. We are committed to protecting your privacy and handling your data responsibly.
1. Who we are
Crowswatch is a service monitoring platform that helps teams track the status of their external services, APIs, and infrastructure from a single dashboard. Crowswatch acts as the data controller for the personal information we collect through our website and services.
If you have questions about how we handle your data, you can contact us at hello@crowswatch.io.
2. Information we collect
We collect information in the following categories:
- Account data. When you create an account we collect your name, email address, and password. If you sign up via a third-party provider we may receive your name and email from that provider.
- Team and organisation data. Information about teams you create or join, including team name, member roles, and invitation details.
- Service configuration data. The services you choose to monitor, integration credentials (encrypted at rest), and monitoring preferences.
- Usage data. Information about how you interact with the platform, including pages visited, features used, and actions taken within the dashboard.
- Technical data. IP address, browser type and version, operating system, device type, time zone, and referring URL.
- Communications. Any messages, feedback, or support requests you send to us.
3. How we use your information
We use the information we collect for the following purposes:
- To operate, maintain, and improve the Crowswatch service.
- To authenticate your identity and manage your account.
- To deliver alerts and notifications about service status changes.
- To provide customer support and respond to your requests.
- To send important service communications such as security updates, billing information, and changes to our terms.
- To analyse usage patterns and improve the user experience.
- To detect, prevent, and address security issues, fraud, or technical problems.
- To comply with legal obligations.
4. Legal basis for processing
We process your personal information under the following legal bases:
- Performance of a contract. Processing necessary to provide you with the service you signed up for.
- Legitimate interests. Processing necessary for our legitimate business interests, such as improving the service, preventing fraud, and ensuring security, provided these interests are not overridden by your rights.
- Legal obligation. Processing necessary to comply with applicable laws and regulations.
- Consent. Where we rely on your consent, you may withdraw it at any time by contacting us.
5. Third-party service providers
We work with trusted third-party providers to operate and improve our service. These providers only have access to the information necessary to perform their specific function and are contractually obligated to protect your data. Categories of providers include:
- Cloud hosting and infrastructure. To host and deliver the service.
- Authentication providers. To manage user sign-in and account security.
- Analytics. To understand usage patterns and improve the product.
- Payment processing. To handle subscription billing securely. We do not store full payment card details.
- Email and communications. To send transactional emails, alerts, and support responses.
We do not sell your personal information to third parties.
6. Data retention
We retain your personal information for as long as your account is active or as needed to provide you with the service. If you close your account, we will delete or anonymise your personal data within 90 days, unless we are required to retain it for legal, regulatory, or legitimate business purposes such as resolving disputes or enforcing our agreements.
Usage and analytics data may be retained in aggregated, anonymised form for longer periods to help us improve the service.
7. Data security
We implement appropriate technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These measures include:
- Encryption of sensitive data at rest and in transit.
- AES-256-GCM encryption for stored API credentials and integration tokens.
- Role-based access controls and row-level security on all database tables.
- Regular security reviews of our infrastructure and codebase.
While we take reasonable precautions, no method of transmission or storage is completely secure. We cannot guarantee absolute security but are committed to promptly addressing any security incidents.
8. International data transfers
Your information may be transferred to and processed in countries other than your country of residence. When we transfer data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses or equivalent mechanisms approved by relevant data protection authorities.
9. Your data rights
Depending on your location and applicable law, you may have the following rights regarding your personal information:
- Access. Request a copy of the personal data we hold about you.
- Correction. Request that we correct inaccurate or incomplete data.
- Deletion. Request that we delete your personal data, subject to legal retention requirements.
- Portability. Request a copy of your data in a structured, machine-readable format.
- Restriction. Request that we restrict the processing of your data in certain circumstances.
- Objection. Object to the processing of your data where we rely on legitimate interests.
- Withdraw consent. Where processing is based on consent, withdraw your consent at any time.
To exercise any of these rights, contact us at hello@crowswatch.io. We will respond to your request within 30 days.
10. Cookies and analytics
We use cookies and similar technologies to operate the service, maintain your session, and understand how users interact with the platform. For full details on the cookies we use and how to manage them, please see our Cookie Policy.
11. Changes to this policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will notify you by updating the date at the top of this page and, where appropriate, by email or in-app notification. Your continued use of the service after changes are posted constitutes acceptance of the updated policy.
12. Contact us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

