CrossAlert

Email alerts when numbers cross thresholds
Contact Feedback Login Get started
Privacy Terms Contact Feedback

Privacy Policy

Last updated: [DATE]

This Privacy Policy explains how CrossAlert (“we”, “us”, “our”) collects and uses personal data when you use CrossAlert (the “Service”).

1. Who We Are

CrossAlert is operated by [COMPANY NAME], based in the Netherlands.
Contact: support@crossalert.io

2. Personal Data We Collect

  • Account data: email address, password hash, authentication/session data
  • Service configuration data: monitor settings, thresholds, notification preferences, URLs you configure for monitoring
  • Usage and technical data: logs, timestamps, IP address, limited device/browser info, error reports
  • Billing data: subscription status and payment-related identifiers (handled primarily by Stripe; we do not store full card numbers)

If you contact us, we also collect the information you send (e.g., email content).

3. How We Use Your Data

  • create and manage accounts
  • provide the Service and its features
  • send alerts and essential service messages (account and billing notices)
  • maintain security, prevent abuse, and troubleshoot issues
  • improve the Service
  • comply with legal obligations

4. Legal Bases (GDPR)

  • Contract: to provide the Service you request
  • Legitimate interests: to secure, operate, and improve the Service
  • Legal obligation: for accounting, tax, and compliance requirements
  • Consent: where required (e.g., optional marketing emails, if introduced later)

5. Email Delivery (SendGrid)

We use SendGrid to send emails such as alerts and service notifications. This means your email address and email content (alert messages) are processed by SendGrid to deliver messages.

6. Payments (Stripe)

Payments and subscriptions are processed by Stripe. Stripe may process personal data in accordance with their own privacy policy. We receive limited billing-related information from Stripe (such as subscription status and customer identifiers) to manage your access.

7. Sharing of Data

We share personal data only with service providers needed to operate the Service (such as SendGrid and Stripe), hosting and infrastructure providers, and authorities where required by law. We do not sell personal data.

8. International Transfers

Some processors may handle data outside the EU/EEA. Where this occurs, we rely on appropriate safeguards (such as Standard Contractual Clauses) provided by our processors.

9. Data Retention

We keep personal data only as long as necessary for the purposes described above:

  • Account and configuration data: while your account is active, and for a limited period after deletion
  • Logs and security data: for a limited period to protect and operate the Service
  • Billing records: as required by law

10. Security

We take reasonable technical and organizational measures to protect your data. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

11. Your Rights (EU/EEA)

If you are in the EU/EEA, you have the right to:

  • access your personal data
  • correct inaccurate data
  • request deletion (“right to be forgotten”)
  • restrict or object to processing
  • request data portability
  • withdraw consent (where processing is based on consent)

To exercise your rights, contact support@crossalert.io. You also have the right to lodge a complaint with your local data protection authority.

12. Cookies and Similar Technologies

The Service uses cookies or similar technologies that are necessary for authentication and basic functionality (for example, session cookies). We do not currently use advertising cookies.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The “Last updated” date will reflect the most recent version. Continued use of the Service means you accept the updated policy.

14. Contact

Questions or requests: support@crossalert.io
Crossalert
Netherlands