Privacy Policy
Your privacy matters. Learn how we protect and handle your data.
1. Overview
This Privacy Policy describes how cloudproc.io ("Company", "we", "us", or "our") collects, uses, and protects your information when you use the Cloudproc observability platform (the "Service"). We are committed to safeguarding your privacy and ensuring your data is handled responsibly.
2. Our Commitment to You
Your data belongs to you. We do not use your data for any purpose other than to provide the Cloudproc service directly to you. Your data is not sold, shared, or used for advertising, analytics, or any other secondary purpose.
At Cloudproc, we believe in a simple principle: your data exists solely to serve you. We collect and process your data exclusively to deliver the observability features you rely on—nothing more.
3. Data We Collect
3.1 Account Information
When you create an account, we collect:
- Name and email address
- Password (stored securely using industry-standard hashing)
- Organization and team information
- Billing information (processed by our payment provider)
3.2 Telemetry Data
When you use our Service, you may send us:
- Application logs and events
- Performance metrics and traces
- Custom telemetry data from your systems
3.3 Usage Information
We collect minimal usage data necessary to operate the Service:
- Authentication and session information
- Feature usage statistics (aggregated, non-personal)
- Error logs for troubleshooting service issues
4. How We Use Your Data
Single Purpose Use Your data is used exclusively to provide you with the Cloudproc observability service. We do not analyze, mine, or process your data for any other purpose.
Specifically, we use your data to:
- Store and display your telemetry data in dashboards and reports
- Process queries and searches against your data
- Trigger alerts based on your configured rules
- Authenticate you and secure your account
- Communicate service updates and important notices
- Provide customer support when you request it
We do NOT:
- Sell your data to third parties
- Use your data for advertising or marketing profiling
- Share your data with other customers
- Train machine learning models on your data
- Analyze your data for purposes beyond service delivery
5. Data Isolation & Sandboxing
Complete Client Isolation Each customer's data is sandboxed and completely isolated from other customers. There is no data mixing, cross-access, or shared storage between clients.
5.1 Technical Isolation
We implement strict data isolation measures:
- Logical Separation: Each client's data is stored in isolated namespaces with strict access controls
- Access Controls: Multi-layer authentication ensures users can only access their organization's data
- Query Isolation: All queries are scoped to your organization, preventing any cross-client data access
- Audit Logging: All data access is logged for security and compliance purposes
5.2 Organizational Boundaries
Your data remains within your organizational boundary at all times. Team members can only access data within projects they have been explicitly granted permission to view.
6. Data Retention
Plan-Based Retention Your data retention period is determined by your subscription plan. We automatically delete data that exceeds your plan's retention window.
6.1 Retention Periods
Telemetry data retention varies by subscription plan:
- Free Plan: 7 days retention
- Starter Plan: 30 days retention
- Professional Plan: 90 days retention
- Enterprise Plan: Custom retention (up to 2 years)
6.2 Account Data
Account-related data is retained as follows:
- Active Accounts: Account information is retained while your account is active
- Account Deletion: Upon account deletion request, all data is permanently removed within 30 days
- Inactive Accounts: Accounts inactive for 12+ months may be scheduled for deletion after notice
6.3 Automatic Deletion
Data exceeding your retention period is automatically and permanently deleted. This process is irreversible—we do not maintain backups of expired data.
7. Data Security
We implement comprehensive security measures to protect your data:
- Encryption at Rest: All stored data is encrypted using AES-256 encryption
- Encryption in Transit: All data transmission uses TLS 1.3
- Access Controls: Role-based access controls with principle of least privilege
- Infrastructure Security: Hosted in SOC 2 compliant data centers
- Regular Audits: Periodic security assessments and penetration testing
- Incident Response: Documented procedures for security incident handling
8. Your Rights
You have the following rights regarding your data:
- Access: Request a copy of the data we hold about you
- Correction: Request correction of inaccurate personal data
- Deletion: Request deletion of your data and account
- Export: Export your telemetry data in standard formats
- Restriction: Request restriction of data processing in certain circumstances
To exercise any of these rights, please contact us at privacy@cloudproc.io.
9. Third-Party Services
We use a limited number of third-party services to operate Cloudproc:
- Payment Processing: Billing is handled by our payment provider (your payment data is not stored on our servers)
- Infrastructure: Cloud hosting providers for reliable service delivery
- Email: Transactional email service for account notifications
These providers are bound by data processing agreements and only process data as necessary to provide their specific service. They do not have access to your telemetry data.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.
For significant changes that affect how we handle your data, we will provide at least 30 days' notice via email before the changes take effect.
11. Contact Us
If you have any questions about this Privacy Policy or our data practices, please contact us:
cloudproc.io - Privacy Team