StatusForge

Privacy Policy

Last updated: March 21, 2026

1. Introduction

StatusForge ("we," "us," or "our") operates the StatusForge platform at statusforge.net and statusforge.net (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using StatusForge, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

2. Information We Collect

Account Information

When you create an account, we collect your email address and authentication credentials. If you sign up via a third-party provider (e.g., GitHub), we receive your email address and profile information from that provider.

Tenant and Service Data

We store the data you provide when configuring your status page, including your organization name, slug, brand color, logo URL, service names, service descriptions, monitoring URLs, incidents, incident updates, and scheduled maintenance windows.

Subscriber Data

When visitors subscribe to your status page, we collect their email address on your behalf. You are the data controller for your subscribers' data; we act as a data processor.

Usage and Analytics

We use Google Analytics to collect anonymized usage data such as pages visited, browser type, and referring URLs. This data is aggregated and cannot identify individual users. We also collect server logs (IP addresses, request timestamps) for security and abuse prevention.

Payment Information

If you upgrade to a paid plan, payment is processed by Stripe. We do not store your credit card number, bank account, or other payment method details. Stripe's privacy policy governs their handling of your payment data.

3. How We Use Your Information

  • To provide, operate, and maintain the Service
  • To manage your account and process transactions
  • To send transactional emails (account verification, incident notifications, team invitations)
  • To monitor and enforce usage limits and terms of service
  • To detect, prevent, and address security issues, fraud, and abuse
  • To analyze usage patterns and improve the Service
  • To respond to support requests

We do not sell your personal information. We do not use your data for advertising purposes.

4. Data Sharing and Disclosure

We may share your information only in the following circumstances:

  • Service providers: We use third-party services to operate the platform, including Supabase (database and authentication), Stripe (payments), Resend (email delivery), Cloudflare (DNS, SSL, and CDN), and Vercel (hosting). Each provider processes data according to their own privacy policies.
  • Public status pages: Information you publish on your status page (organization name, service names, service statuses, incidents, and maintenance windows) is publicly visible by design. Do not include sensitive information in these fields.
  • Legal requirements: We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
  • Business transfers: If StatusForge is acquired, merged, or sells assets, your data may be transferred as part of that transaction. We will notify you of any such change.

5. Data Retention

We retain your account data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where retention is required by law or necessary for legitimate business purposes (e.g., resolving disputes, enforcing agreements).

Uptime check data is retained for up to 90 days. Server logs are retained for up to 30 days.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/HTTPS) and at rest
  • Row-level security policies in our database
  • Authentication and role-based access controls
  • Rate limiting and abuse prevention
  • Regular security reviews of our codebase

No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

7. Cookies and Tracking

StatusForge uses essential cookies for authentication and session management. We also use Google Analytics, which sets its own cookies for usage analysis. You can opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on.

We do not use advertising cookies or third-party tracking pixels.

8. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Request data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at privacy@statusforge.net.

9. Children's Privacy

StatusForge is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. International Data Transfers

Your data may be processed and stored in the United States or other countries where our service providers operate. By using StatusForge, you consent to the transfer of your data to these jurisdictions. We ensure appropriate safeguards are in place for international transfers.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

privacy@statusforge.net