← Back to DevvUP
Privacy Policy
Last updated: 08 May 2026
1. Introduction
COMPANY_LTD ("we", "us") operates the DevvUP uptime monitoring service. This Privacy Policy explains how we collect, use, store, and protect your personal data in compliance with applicable data protection laws, including the UAE Federal Decree-Law No. 45 of 2021 (UAE Data Protection Law) and the EU General Data Protection Regulation (GDPR) where applicable.
2. Data We Collect
Account Data
- Email address
- Username
- Hashed password (we never store or see your password in plain text)
- Billing information (processed by Stripe; we do not store credit card numbers)
Monitoring Data
- URLs, IP addresses, and hostnames you configure for monitoring
- Check results: response times, HTTP status codes, SSL certificate details
- Incident and alert history
Technical Data
- IP address (for security, rate limiting, and abuse prevention)
- Browser user-agent string
- Session identifiers
3. How We Use Your Data
- Service delivery: To run your monitors, send alerts, and display results
- Account management: To authenticate you, process payments, and communicate about your account
- Security: To detect abuse, prevent fraud, and protect the Service
- Improvement: To analyze usage patterns and improve the Service (aggregated, anonymised data only)
We do not sell your personal data. We do not use your data for advertising.
4. Data Retention
- Check results: Retained for 90 days, then automatically purged
- Incidents and alerts: Retained permanently while your account is active
- Account data: Retained while your account exists. Deleted within 30 days of account deletion
- Login attempts: Retained for 90 days for security purposes
5. Data Sharing
We share data only with:
- Stripe: Payment processing (see Stripe's Privacy Policy)
- Infrastructure providers: Our checker nodes may be hosted in different geographic locations to provide accurate monitoring
We do not share your data with any other third parties except when required by law.
6. Your Rights
You have the right to:
- Access: Request a copy of all personal data we hold about you
- Export: Download your data in machine-readable format (JSON) from your account settings
- Rectification: Update incorrect data via your profile settings
- Deletion: Delete your account and all associated data from your account settings
- Objection: Opt out of non-essential communications via the unsubscribe link in any email
To exercise these rights, use the self-service options in your account, or email support@devv.be.
7. Cookies
We use only essential cookies required for the Service to function:
- Session cookie: Keeps you logged in. Expires when you close your browser or after 24 hours of inactivity.
We do not use tracking cookies, analytics cookies, or third-party advertising cookies.
8. Security
We protect your data with:
- HTTPS encryption for all connections
- Bcrypt password hashing
- CSRF protection on all forms
- Rate limiting on authentication endpoints
- SQL injection prevention via prepared statements
- Session data stored server-side in encrypted database
9. International Data Transfers
Our servers are located in Europe. If you access the Service from outside the EU, your data will be transferred to and processed in Europe. We ensure appropriate safeguards are in place for any data transfers.
10. Children
The Service is not directed at children under 16. We do not knowingly collect personal data from children.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes via email. The "Last updated" date at the top of this page indicates when this Policy was last revised.
12. Contact
For privacy-related inquiries:
COMPANY_LTD
Email: support@devv.be