Privacy Policy
Last updated: June 2026
Who we are and what this covers
Robot, DESTROY! LLC ("we", "us") operates IronWatch and the IronWatch monitoring suite — WatchTower, CronPilot, PingWatch, and FlipSign. This policy covers personal information across the whole suite: the shared account, sign-in, and billing hub, and the operational data each product handles to do its job. We are the data controller for that personal information.
We distinguish Account Data (the personal information we hold about you as our customer) from Service Data (the configurations, target endpoints, payloads, and results you put into the products). For Service Data we act as a processor, handling it only on your instructions to operate the Service; you are responsible for the lawfulness of the Service Data you provide.
Information we collect
| Category | Examples | Purpose | Legal basis (GDPR) |
|---|---|---|---|
| Account & identity | Email address, account ID, organization membership | Create and operate your account; authenticate you across the suite | Performance of our contract |
| Authentication | Short-lived magic-link tokens; session tokens; if you use OAuth, the email and stable identifier your provider returns; sign-in events | Sign you in securely and keep you signed in across products | Contract; our legitimate interest in account security |
| Billing | Stripe customer and subscription identifiers, plan and tier, invoice history. We never see or store your full card number. | Process payments and manage subscriptions | Contract; legal obligation (tax and accounting) |
| Service Data (configuration) | Target URLs, schedules, HTTP methods, and request headers or secrets you ask us to send to your endpoints | Run the checks, schedules, dispatches, and status pages you configure | Contract (processed on your instructions) |
| Service Data (results) | Response status codes, latency, response metadata, dispatch and delivery logs, incident and ping history | Execute monitoring, show history, trigger alerts, and aid debugging | Contract; our legitimate interest in reliability |
| Usage analytics | Page views and feature usage via Vercel Analytics (privacy-friendly, no cookies) | Understand and improve the product | Our legitimate interest in improving the Service |
| Support | Emails you send us and their contents | Respond to and resolve your requests | Our legitimate interest in supporting customers |
Cookies and analytics
We use only essential cookies needed to sign you in and keep you signed in. Product analytics are collected through Vercel Analytics, which is privacy-friendly and does not set tracking cookies. We do not use advertising or cross-site tracking cookies, and we do not run third-party ad networks.
How we share data
We do not sell your personal information and we do not share it for advertising. We share data only with the subprocessors below, each of which processes it on our behalf to operate the Service:
| Subprocessor | Purpose | Region |
|---|---|---|
| Stripe | Payment processing and subscription management | United States / global |
| Resend | Transactional email, including magic-link sign-in | United States |
| Neon | PostgreSQL database hosting | United States (US-East) |
| Vercel | Application hosting and privacy-friendly analytics | United States (US-East) |
| Cloudflare | DNS, CDN, and scheduled request dispatch | Global edge network |
We bind our subprocessors to confidentiality and data-protection obligations. We may also disclose information where required by law or to protect the Service, our users, or the public.
International transfers
Our subprocessors are primarily located in the United States. Where personal information of individuals in the EEA or UK is transferred internationally, we rely on appropriate safeguards such as the Standard Contractual Clauses (and the UK Addendum) offered by those subprocessors.
Data retention
We keep Account Data for as long as your account is active and delete it within a reasonable period after you close your account, except where we must retain billing records to meet tax and accounting obligations. Service Data is retained according to the plan tier for each product (see each product's site for its specific retention windows) and is deleted when you delete the configuration or your account. Analytics are kept in aggregated form.
Security
We protect your data with encryption in transit (TLS) and at rest at the database and infrastructure level, role-restricted access, and authentication hardening. API keys you use to authenticate to us are stored as hashes that we cannot reverse, and the full key is shown to you only once at creation.
Credentials you ask us to store. To run checks and dispatch requests against your endpoints, you may provide request headers, authentication tokens, or signing secrets that we store so we can include them in the requests you configured. Access to these is limited to the systems that dispatch your requests, and they are deleted when you delete the configuration or your account. We recommend you provide narrowly-scoped, rotatable credentials rather than high-privilege keys, and rotate or revoke them if you stop using a configuration. You are responsible for the credentials you choose to store and the security of the endpoints you configure.
No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
Your rights (GDPR)
If you are in the EEA or UK, you have the right to access, rectify, erase, restrict, or object to the processing of your personal information; to data portability; and to withdraw consent at any time where we rely on it. We do not make decisions with legal or similarly significant effects about you using solely automated processing. We respond to verified requests within one month (extendable for complex requests). You may also lodge a complaint with your local supervisory authority.
Your rights (California)
In the preceding 12 months we have not sold and have not shared your personal information, as those terms are defined under the California Consumer Privacy Act as amended by the CPRA, and we do not use or disclose sensitive personal information for purposes that require an opt-out. California residents may request to know, access, delete, or correct their personal information, and we will not discriminate against you for exercising these rights.
Exercising your rights
To exercise any of these rights, or to delete your account and all associated data, email hello@ironwatch.dev. We may need to verify your identity first. Deleting your hub account cancels any active subscription and removes your access to every suite product.
Children
The Service is a business tool not directed to children, and we do not knowingly collect personal information from anyone under 16. If you believe a child has provided us personal information, contact us and we will delete it.
Changes to this policy
We may update this policy from time to time. We will update the "Last updated" date above and, for material changes, make reasonable efforts to notify you.
Contact
Robot, DESTROY! LLC — hello@ironwatch.dev