Privacy Policy

1. What We Collect

When you use WatchDog, we collect the following information:

• Account information — email address and a hashed password (Argon2id; we cannot read your password)
• Monitoring configuration — targets, check types, intervals, and timeout settings you configure
• Heartbeat data — latency measurements, status codes, and timestamps from your monitors
• IP addresses — recorded during login for security purposes

2. What the Agent Collects

The WatchDog agent performs network checks only. Specifically:

• HTTP response codes and latency
• TCP connection success/failure and latency
• ICMP ping round-trip times
• DNS resolution results
• TLS certificate metadata (expiry dates, issuer)

The agent does not access file systems, credentials, environment variables, or any user data on the machines where it runs. The agent binary is open-source and fully auditable.

3. How Data Is Stored

Your data is stored in PostgreSQL with TimescaleDB. Security measures include:

• Passwords are hashed with Argon2id (we cannot recover your password)
• Agent API keys are encrypted with AES-256-GCM
• Data is stored in the United Kingdom

4. Purpose and Lawful Basis

Data is collected solely to provide the monitoring service. We do not use your data for analytics, advertising, profiling, or any purpose unrelated to operating WatchDog.

Under UK GDPR, our lawful bases for processing are:

• Consent — you create an account and agree to these terms
• Legitimate interest — operating the monitoring service you requested, and securing the platform

5. Data Retention

Heartbeat data is retained for the duration of the beta. You can request deletion of your account and all associated data at any time by contacting us.

6. Third Parties

We do not sell or share your personal data with third parties. There are no third-party analytics, tracking scripts, or advertising services on WatchDog.

7. Your Rights

Under UK GDPR (for users in the United Kingdom and European Economic Area):

• Access your personal data
• Rectify inaccurate data
• Request erasure of your data
• Data portability — receive your data in a structured format
• Object to processing
• Withdraw consent at any time by deleting your account
• Lodge a complaint with the UK Information Commissioner's Office (ICO)

Under PIPEDA (Canada's Personal Information Protection and Electronic Documents Act):

• Access your personal information
• Request correction of inaccurate data
• Withdraw consent by deleting your account
• File a complaint with the Office of the Privacy Commissioner of Canada

To exercise any of these rights, contact us at techwithsyl@gmail.com.

8. CASL Compliance

We comply with Canada's Anti-Spam Legislation (CASL). We do not send marketing emails. Any transactional emails relate solely to your account and the monitoring service.

9. Contact

For privacy inquiries, data access requests, or account deletion, contact us at techwithsyl@gmail.com.