Effective date: February 28, 2026
WatchDock ("we", "us", "our") operates the WatchDock infrastructure observability platform at watchdock.cc. This Privacy Policy explains what data we collect, why we collect it, how we use and protect it, and your rights in relation to it.
By using the Service you agree to the collection and use of information as described here.
1. Data We Collect
Account and contact information
When you register, we collect:
- Full name and email address
- Password (stored as a bcrypt hash — we never store plain text passwords)
- Organisation name
Infrastructure metrics (collected by the WatchDock agent)
When you install the agent on a server, it transmits to our API:
- Server metrics: CPU usage, core count, load averages, memory usage, swap, disk usage, network bytes sent/received, process count, uptime, OS version, public and private IP address
- Docker container metrics: container name, image, status, CPU %, memory usage and limit, network I/O, block I/O, restart count, exit codes, OOMKilled events
- Container logs: error output and tracebacks captured from container stdout/stderr
These metrics are associated with your account and the server they originate from. They do not include the contents of end-user requests or application-level personal data unless that data appears in your application logs.
HTTP check data
When you configure an HTTP uptime check, we store:
- The endpoint URL
- HTTP response codes, response times, and SSL certificate expiry dates collected at your configured interval
Application error and log data
If you use the WatchDock error tracking SDK or Nginx log collection, we store:
- Error messages, stack traces, exception types, and environment tags you configure
- Nginx access log entries including IP addresses, request paths, status codes, and response times
Note: You are responsible for ensuring that log data transmitted to WatchDock does not include end-user personal data you are not authorised to share.
Billing information
Payments are processed by a third-party payment processor. We store only your subscription plan, billing cycle, and payment status. We do not store raw card numbers or full payment card data.
Usage and technical data
We automatically collect:
- Browser type, IP address, and pages visited within the WatchDock dashboard
- Agent version and server OS information
- API request metadata for debugging and abuse prevention
2. How We Use Your Data
| Purpose | Legal basis |
|---|---|
| Providing the Service (displaying dashboards, running checks, sending alerts) | Contract performance |
| Sending transactional notifications (incident alerts, recovery notifications, billing receipts) | Contract performance |
| Processing payments and managing subscriptions | Contract performance |
| Diagnosing bugs, improving reliability, and developing new features | Legitimate interests |
| Preventing fraud and abuse | Legitimate interests |
| Complying with legal obligations | Legal obligation |
| Sending product updates (you can opt out at any time) | Legitimate interests / consent |
We do not sell your personal data to third parties.
3. Data Retention
| Data type | Retention period |
|---|---|
| Server and Docker metrics | Duration of subscription + 30 days after cancellation |
| HTTP check history | 7 days (Hobby), 30 days (Pro), 90 days (Team) |
| Container logs and error groups | Duration of subscription + 30 days after cancellation |
| Incidents (resolved) | 90 days from resolution, then deleted automatically |
| Account data | Until account deletion + 30 days |
| Billing records | 7 years (legal requirement) |
You can request earlier deletion of your account and associated data by contacting us at privacy@watchdock.cc.
4. Third-Party Services
We share data with the following processors only to the extent necessary to provide the Service:
| Processor | Purpose | Data shared |
|---|---|---|
| Mailjet | Transactional email (alerts, receipts) | Your email address, incident details |
| Payment processor | Subscription billing | Email address, subscription plan |
| Cloud infrastructure provider | Hosting and storage | All data stored on the platform |
We do not share your infrastructure metrics or log data with advertisers or data brokers.
5. Security
We implement the following controls to protect your data:
- All data in transit is encrypted using TLS 1.2 or higher (HTTPS)
- Passwords are hashed using bcrypt
- API tokens are stored hashed; the plain-text value is shown only once at generation
- Access to production systems is restricted to authorised personnel
- Regular security reviews and dependency updates
No system is perfectly secure. If you discover a vulnerability please disclose it responsibly at security@watchdock.cc.
6. Your Rights
Depending on your location, you may have the following rights regarding your personal data:
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate data
- Deletion: Request deletion of your data (subject to legal retention obligations)
- Portability: Receive your data in a machine-readable format
- Objection: Object to processing based on legitimate interests
- Restriction: Request that we restrict processing in certain circumstances
To exercise any of these rights, contact privacy@watchdock.cc. We will respond within 30 days.
If you are in the European Economic Area, you have the right to lodge a complaint with your local data protection authority.
7. Cookies
The WatchDock dashboard uses the following cookies:
| Cookie | Purpose | Duration |
|---|---|---|
| Session authentication token | Keeps you logged in | Session / rolling 30 days |
| Preference cookies | Stores UI settings (theme, collapsed panels) | 1 year |
We do not use advertising or third-party tracking cookies.
8. Children's Privacy
The Service is not directed to children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it promptly.
9. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you by email at least 14 days before material changes take effect. The current version is always available at watchdock.cc/legal/privacy.
10. Contact
WatchDock Privacy Team Email: privacy@watchdock.cc