Privacy Policy

Last updated: March 14, 2026

1. Introduction

AlertHamster ("we," "us," or "our") operates the AlertHamster incident management platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our Service.

By accessing or using AlertHamster, you agree to the terms of this Privacy Policy. If you do not agree with the practices described in this policy, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide when you:

• Register for an account (name, email address, company name)
• Configure your organization's settings (team names, service names, notification preferences)
• Set up integrations (webhook URLs, API keys for notification channels)
• Contact us for support or sales inquiries
• Subscribe to our newsletter or marketing communications

2.2 Information Collected Automatically

When you use AlertHamster, we automatically collect:

• Usage Data: Pages visited, features used, actions performed within the platform
• Log Data: IP address, browser type, operating system, referring URLs, access timestamps
• Device Information: Device type, screen resolution, language preferences
• Cookies: Session cookies for authentication and preference cookies for user experience

2.3 Incident & Alert Data

AlertHamster processes incident data sent by your monitoring tools via webhooks. This data may include:

• Alert payloads from monitoring systems (Prometheus, Grafana, Datadog, PRTG, OpenNMS, etc.)
• Incident metadata (severity, status, timestamps, descriptions)
• Notification delivery records (who was notified, when, and through which channel)
• Incident timeline events (acknowledgments, escalations, resolutions)

3. How We Use Your Information

We use collected information to:

• Provide, operate, and maintain the AlertHamster Service
• Process and route incidents according to your configured escalation policies
• Send notifications through your configured channels (Slack, Teams, Email, SMS, Discord)
• Improve and personalize your experience
• Analyze usage patterns to improve our Service
• Communicate with you about service updates, security alerts, and support
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. Multi-Tenant Data Isolation

AlertHamster is built as a multi-tenant platform with strict data isolation. Each organization's data is scoped to a unique Tenant ID at every layer of the application:

• All database queries are automatically filtered by Tenant ID
• API requests are scoped to the authenticated tenant
• Background processes (escalation workers, notification dispatchers) respect tenant boundaries
• Audit logs are tenant-scoped and never shared across organizations

Your incident data, team configurations, schedules, and escalation policies are never accessible by other tenants.

5. Data Sharing & Disclosure

We do not sell, rent, or trade your personal information. We may share information only in these circumstances:

• Service Providers: We use third-party services for email delivery, SMS delivery, and infrastructure hosting. These providers only access data necessary to perform their functions.
• Notification Channels: When you configure notification integrations, incident data is sent to those services (Slack, Microsoft Teams, Discord) as directed by your configuration.
• Legal Requirements: We may disclose information if required by law, court order, or government request.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of the transaction.

6. Data Retention

We retain your data as follows:

• Account Data: Retained while your account is active and for 30 days after deletion request
• Incident Data: Retained according to your plan's retention policy (1 year for Professional, custom for Enterprise)
• Audit Logs: Retained for 1 year (Professional) or custom period (Enterprise)
• Log Data: Retained for 90 days for security and debugging purposes

Enterprise customers can configure custom data retention periods. Contact our sales team for details.

7. Data Security

We implement industry-standard security measures to protect your data:

• All data is encrypted in transit (TLS 1.2+) and at rest (AES-256)
• Database connections use SSL/TLS encryption
• API authentication via secure tokens
• Regular security audits and penetration testing
• Infrastructure hosted on ISO 27001 certified cloud providers
• Role-based access controls within the application

8. Your Rights

Depending on your jurisdiction, you may have the following rights:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate personal data
• Deletion: Request deletion of your personal data
• Export: Request a machine-readable export of your data
• Objection: Object to processing of your personal data for marketing purposes
• Restriction: Request restriction of processing under certain conditions

To exercise these rights, contact us at privacy@alerthamster.com.

9. Cookies

AlertHamster uses the following types of cookies:

• Essential Cookies: Required for authentication and session management. Cannot be disabled.
• Preference Cookies: Store your UI preferences (theme, timezone, layout). Optional.
• Analytics Cookies: Help us understand how users interact with AlertHamster. Optional.

You can manage cookie preferences through your browser settings. Disabling essential cookies will prevent you from using the Service.

10. Children's Privacy

AlertHamster is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If we discover that we have collected data from a child under 16, we will delete it promptly.

11. International Data Transfers

If you access AlertHamster from outside the country where our servers are located, your data may be transferred internationally. We ensure appropriate safeguards are in place, including Standard Contractual Clauses where required by applicable law.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and, where appropriate, sending you an email notification. Your continued use of AlertHamster after changes take effect constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us:

• Email: privacy@alerthamster.com
• Contact form: alerthamster.com/about/contact