Privacy Policy

Last updated: February 19, 2026

Your privacy is important to us. It is Hyperping's policy to respect your privacy regarding any information we may collect from you across our website, https://hyperping.com, our application at https://app.hyperping.io, and other sites and services we own and operate.

Hyperping SAS ("Hyperping", "we", "us", or "our") is a company incorporated under French law, registered at 50 Avenue des Champs-Élysées, 75008 Paris, France. We act as the data controller for personal information collected through our services.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Name
  • Email address
  • Phone or mobile number (if provided for SMS alerts)
  • Company name and address (if provided)
  • Password (stored as a secure hash, never in plain text)

1.2 Payment Information

Payment information (credit card details, billing address) is processed and stored exclusively by our payment processor, Stripe. We do not have access to or store your full credit card details. We retain billing records such as invoice amounts, dates, and subscription status.

1.3 Service Data

When you use our monitoring, status page, and incident management services, we collect and process:

  • Monitor configurations (URLs, endpoints, check intervals, regions)
  • Uptime and performance data (response times, HTTP status codes, SSL certificate information)
  • Status page content (incident reports, maintenance schedules, component statuses)
  • Status page subscriber information (email addresses, notification preferences)
  • Alert and notification settings (phone numbers, Slack webhooks, integration configurations)
  • On-call schedules and escalation policy configurations
  • Cron job monitoring data
  • Synthetic browser check results and screenshots

1.4 Log and Device Data

When you visit our website or use our application, we may automatically collect:

  • IP address
  • Browser type and version
  • Operating system
  • Pages visited and time spent
  • Referring URL
  • Device type and unique identifiers

1.5 Integration Data

When you connect third-party integrations, we may receive and store:

  • Slack workspace IDs, channel IDs, and user IDs
  • Microsoft Teams webhook URLs and channel information
  • PagerDuty, OpsGenie, or Jira Service Management configuration details
  • Discord or Telegram webhook/bot configurations
  • Google Chat webhook URLs
  • SSO provider tokens and identifiers (Google, WorkOS, Azure AD, Okta)

2. Legal Bases for Processing (GDPR)

We process your personal information only where we have a legal basis to do so under the General Data Protection Regulation (GDPR):

  • Performance of a contract: Processing necessary to provide the services you have subscribed to, including uptime monitoring, status pages, alerting, and incident management.
  • Legitimate interest: Processing for purposes such as improving our services, ensuring security, preventing fraud, and communicating service updates — where these interests are not overridden by your data protection rights.
  • Consent: Where you have given consent for a specific purpose, such as subscribing to our newsletter or enabling optional analytics. You may withdraw consent at any time.
  • Legal obligation: Processing necessary to comply with applicable laws, such as tax and accounting requirements.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our monitoring, status page, and incident management services
  • Send alerts and notifications through your configured channels (email, SMS, phone, Slack, etc.)
  • Process payments and manage your subscription
  • Provide customer support
  • Communicate with you about your account, service updates, and security notices
  • Analyze usage patterns to improve our platform and user experience
  • Detect, prevent, and address technical issues, fraud, or security threats
  • Comply with legal obligations and enforce our terms of service

4. Data Retention

Account and Profile Data

  • Active accounts: Retained as long as your account remains active
  • Inactive accounts: Deleted after 2 years of inactivity
  • Closed accounts: Personal data deleted within 30 days of account closure, with complete removal from backups within 90 days

Monitoring and Service Data

  • Monitor configurations: Retained for the duration of your subscription plus 30 days
  • Uptime data and logs: Retained for 2 years for historical reporting
  • Incident data: Retained for 3 years for compliance and analysis
  • Status page data: Retained for the duration of your subscription plus 1 year

Communication and Support Data

  • Email communications: Retained for 3 years
  • Support tickets and chat logs: Retained for 5 years for legal and operational purposes

Billing and Payment Data

  • Payment information: Processed by Stripe; we do not store credit card details
  • Billing records and invoices: Retained for 10 years as required by French accounting law

Technical Data

  • Server logs: Retained for 90 days
  • Analytics data: Anonymized and retained for 2 years
  • Security logs: Retained for 1 year

Backup Data

  • Daily backups: Retained for 30 days
  • Weekly backups: Retained for 12 weeks
  • Monthly backups: Retained for 12 months

When legal retention requirements conflict with our standard retention periods, legal requirements take precedence.

5. Disclosure of Personal Information to Third Parties

We share personal data with the following categories of third-party service providers, solely for the purpose of providing and improving our services:

Infrastructure and Hosting

  • DigitalOcean: Primary hosting and database infrastructure, located in the EU (Frankfurt, Germany). Stores account data, monitoring data, and application data.
  • Amazon Web Services (AWS): Monitoring infrastructure, object storage (S3), and additional compute capacity. Used for distributed monitoring from multiple global regions.
  • Scaleway: EU-based monitoring infrastructure providing additional redundancy.
  • Vercel: Hosting platform for customer status pages and our marketing website.
  • Cloudflare: Content delivery network (CDN), DDoS protection, and SSL/TLS certificate management.

Payments

  • Stripe: Payment processing. Processes and stores credit card information, billing addresses, and transaction data. We do not have access to your full credit card details. Stripe is PCI-DSS Level 1 certified.

Communications and Notifications

  • Twilio: SMS and phone call notifications. Processes phone numbers to deliver alerts.
  • SendGrid (Twilio): Email delivery. Processes email addresses and names for transactional emails and alert notifications.

Authentication

  • Google: Google Single Sign-On (OAuth) for user authentication.
  • WorkOS: Enterprise SSO integration (SAML, Okta, Azure AD) for customers on Business and Enterprise plans.

Analytics and Error Tracking

  • Segment: User analytics and event tracking to understand product usage and improve our service.
  • Sentry: Error tracking and performance monitoring. May capture technical data and anonymized usage information to help us diagnose and fix issues.

We may also disclose personal information to courts, tribunals, and regulatory authorities when required by law, or to professional advisors (lawyers, accountants) under strict confidentiality obligations.

A complete list of our sub-processors is available at hyperping.com/subprocessors.

6. International Transfers of Personal Information

Your personal data is primarily stored and processed in the European Union (Frankfurt, Germany). However, some of our sub-processors are based in the United States or operate globally.

For transfers of personal data from the European Economic Area (EEA), United Kingdom, or Switzerland to countries that have not received an adequacy decision from the European Commission, we rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • The EU-US Data Privacy Framework, where applicable
  • Binding Corporate Rules of our sub-processors, where applicable

We ensure that all international transfers are protected by appropriate safeguards as required by the GDPR. You may request a copy of the applicable transfer mechanisms by contacting us.

7. Your Rights

Under the GDPR (EEA, UK, and Switzerland)

If you are located in the European Economic Area, United Kingdom, or Switzerland, you have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Request correction of inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request that we restrict processing of your personal data.
  • Portability: Receive your personal data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interests or direct marketing.
  • Withdraw consent: Where processing is based on consent, withdraw it at any time.
  • Complaint: Lodge a complaint with your local supervisory authority (e.g., CNIL in France).

Under the CCPA/CPRA (California Residents)

If you are a California resident, you have the right to:

  • Know: Request information about the categories and specific pieces of personal information we have collected about you.
  • Delete: Request deletion of your personal information.
  • Correct: Request correction of inaccurate personal information.
  • Opt-out of sale or sharing: We do not sell or share your personal information for cross-context behavioral advertising. If this changes, we will provide an opt-out mechanism.
  • Non-discrimination: We will not discriminate against you for exercising any of your rights.

In the preceding 12 months, we have collected the categories of personal information described in Section 1. We do not sell personal information. We share personal information with service providers as described in Section 5 solely for business purposes.

How to Exercise Your Rights

To exercise any of these rights, contact us at:

  • Email: hello@hyperping.io
  • In-App Support: Use the chat support within the Hyperping application

When making a request, please include your full name, the email address associated with your Hyperping account, and the specific right you wish to exercise. We will respond within 30 days and may request additional information to verify your identity.

Upon receiving a verified deletion request, we will:

  • Delete your personal data from our active systems within 30 days
  • Remove your data from backup systems within 90 days
  • Notify relevant sub-processors to delete your data
  • Provide written confirmation once deletion is complete

8. Cookies and Tracking Technologies

We use cookies and similar technologies to collect information about your activity on our site, remember your preferences, and improve your experience. For detailed information about the cookies we use, your choices, and how to manage them, please refer to our Cookie Policy.

9. Security

We implement appropriate technical and organizational measures to protect your personal information, including encryption at rest and in transit, access controls, regular security assessments, and secure data center infrastructure. For more details, see our Security page.

No method of electronic transmission or storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security. We will notify you and any applicable regulator of a breach where we are legally required to do so.

10. Children's Privacy

Our services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information promptly.

11. Third-Party Data Handling

Our application may receive data through normal operation of integrations you configure, including:

  • User IDs and workspace information from Slack, Microsoft Teams, or other integration payloads
  • Webhook data from incident management tools (PagerDuty, OpsGenie, Jira)
  • Authentication tokens from SSO providers

Even if this data is not actively used as a feature of our product, it may be temporarily stored in our systems. All such data is subject to the same protections and deletion rights outlined in this policy.

12. Business Transfers

If Hyperping or its assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, personal data may be among the assets transferred. You acknowledge that such transfers may occur, and that any parties who acquire us may continue to use your personal information in accordance with this policy. We will notify you of any change in ownership or use of your personal information.

13. Changes to This Policy

We may update this privacy policy to reflect changes in our practices or applicable laws. We will notify you of material changes by posting a notice on our website or sending an email to the address associated with your account. Your continued use of our services after any changes constitutes acceptance of the updated policy.

If we make a significant change (for example, changing a lawful basis on which we process your personal information), we will seek your re-consent where required.

14. Contact Us

Data Controller: Hyperping SAS
50 Avenue des Champs-Élysées, 75008 Paris, France
Privacy contact: hello@hyperping.io
General contact: hello@hyperping.io

If you are not satisfied with our response to a privacy concern, you have the right to lodge a complaint with your local data protection authority. In France, this is the Commission Nationale de l'Informatique et des Libertés (CNIL).

Hyperping logo
50 Avenue des Champs-Élysées
75008 Paris, France
Product
MonitoringUptime monitoringWebsite monitoringStatus PagePublic status pagesSynthetic monitoringCron job monitoringCron job alertsIncident ManagementSSL monitoringSSL certificatesEscalation policiesPhone call alertsGoogle SSOPricingFeatures
Use Cases
SaaS & StartupsAgenciesEducationCloud & HostingEnterprise
Resources
BlogDocsIntegrationsWhy HyperpingAPI ReferenceCustomersEnterpriseStatus page examplesAlternativesData Processing AgreementSub-processorsService Level Agreement
Tools
SLA calculatorUptime calculatorDowntime cost calculatorCron expression generatorCron monitoringWebsite speed testWhat's my IP addressCompareBadge builder
Socials
socials-twittersocials-producthunt
hello@hyperping.io
Terms of ServicePrivacy PolicyCookie PolicySecurity & GDPR EuropeSLA