This Privacy Policy explains how PodPapa collects, uses, and protects your personal information when you use our website and managed tools platform.
Effective date: June 1, 2025
1 Who we are
PodPapa is a managed tools platform that runs open-source software on behalf of our customers. We operate the website at podpapa.com and its subdomains, including monitor.podpapa.com and n8automate.podpapa.com.
For the purposes of this policy, "PodPapa", "we", "us", and "our" all refer to the PodPapa platform and its operators. "You" refers to any individual visiting our website or using our services.
Short version: We collect only what we need, we never sell your data, we don't use it for advertising, and we make it easy for you to access, correct, or delete your information at any time.
2 Scope of this policy
This policy applies to:
The PodPapa marketing website (podpapa.com)
The PodPapa customer dashboard and account management
All PodPapa product subdomains (monitor, n8automate, and future products)
Emails and communications you exchange with us
This policy does not cover the data you process inside your PodPapa-hosted tools. For example, the monitoring targets, workflow data, and analytics you configure within your instance are governed by the terms of the underlying open-source software and your own data practices.
Data We Collect
What information we collect
We collect the minimum information necessary to provide, maintain, and improve the PodPapa platform.
1 Account information
When you sign up for PodPapa, we collect the following:
Data
Why we collect it
Name
To personalize your account and communications
Email address
For login, billing receipts, and support communication
Password (hashed)
Account authentication — we never store plain-text passwords
Billing information
Processed by our payment provider (Stripe) — we do not store card numbers
2 Usage data
When you use PodPapa, we automatically collect limited technical data to keep the platform running reliably:
IP address — for security, abuse prevention, and approximate location (country-level only)
Browser and device type — to ensure compatibility and diagnose technical issues
Pages visited and actions taken — to understand how the product is used and where we can improve it
Timestamps — for logs, billing, and security auditing
3 Support communications
When you contact us by email or through our support form, we collect and retain the content of your messages in order to respond to and track your request. We may also use support history to improve our product documentation and common issue resolution.
We do not collect or have access to the content you configure inside your managed tools — your monitoring targets, n8n workflows, or automation data belong entirely to you.
How We Use It
How we use your information
We use the information we collect only for the purposes described below. We do not use your data for advertising, profiling, or selling to third parties.
1 To provide and run the service
The primary use of your data is to operate your PodPapa account and the managed tools associated with it. This includes:
Provisioning and managing your tool instances
Processing your subscription payments and sending receipts
Providing access to your dashboard and account settings
2 To improve the product
We analyze aggregated, anonymized usage data to understand how our platform is used and where we can make it better. This analysis does not involve any personally identifiable information.
3 To maintain security
We use IP addresses, login history, and activity logs to detect and prevent fraudulent or abusive behavior, unauthorized access, and other security threats. Logs are retained for a limited period and are not used for any other purpose.
4 To communicate with you
We may contact you via email for:
Transactional emails — billing, account changes, security alerts (always sent, cannot be opted out of)
Product updates — new features, maintenance windows (can be opted out of)
Support responses — replies to your submitted tickets or questions
We do not send promotional or marketing emails beyond product updates. We never sell your email address or include it in third-party marketing lists.
Sharing & Third Parties
Who we share data with
We do not sell, rent, or trade your personal information. We share data only with the limited service providers required to operate PodPapa, and only to the extent necessary.
1 Service providers
Provider
Purpose
Data shared
Stripe
Payment processing
Billing information only
Resend / SMTP
Transactional email delivery
Email address, email content
Cloud infrastructure
Hosting your tool instances
Account and instance metadata
All service providers are bound by data processing agreements and are prohibited from using your data for their own purposes.
2 Legal requirements
We may disclose your data if required by law, court order, or government authority, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
3 Business transfers
If PodPapa is acquired, merged, or undergoes a change of ownership, your data may be transferred as part of that transaction. We will notify you via email before any such transfer takes effect and will ensure the receiving party agrees to uphold this Privacy Policy.
We never sell your data. No advertising networks, no data brokers, no analytics companies. Your data is not a product.
Cookies
Cookies & tracking
We use a small number of cookies to keep the platform functional. We do not use advertising cookies or third-party tracking.
1 Cookies we use
Cookie
Type
Purpose
session_id
Essential
Keeps you logged in to your account
csrf_token
Essential
Protects against cross-site request forgery attacks
pp-theme
Preference
Remembers your light/dark mode preference
_analytics
Analytics
Anonymous usage analytics — no personal data, no third-party sharing
2 What we don't use
No advertising or retargeting cookies
No Google Analytics, Facebook Pixel, or similar third-party trackers
No fingerprinting or cross-site tracking
3 Managing cookies
You can control and delete cookies through your browser settings. Note that disabling essential cookies will prevent you from logging in to your account. Preference and analytics cookies can be disabled without affecting core functionality.
Data Retention
How long we keep your data
We retain your data only as long as necessary to provide the service or meet legal obligations. We do not keep data indefinitely.
1 Retention periods
Data type
Retention period
Account information
Until account is deleted, plus 30 days for recovery
Billing records
7 years (required for tax and legal compliance)
Support emails
2 years after the last interaction
Server access logs
90 days
Security incident logs
1 year
Anonymized analytics
Indefinitely (no personal data)
2 Account deletion
When you delete your PodPapa account, your personal information is removed from our active systems within 30 days. Billing records are retained for the statutory period required by law, but all other personal data is permanently erased.
Tool instance data (your Uptime Kuma monitors, n8n workflows, etc.) is deleted immediately upon account closure and cannot be recovered after that point.
Your Rights
Your data rights
You have meaningful control over your personal data. These rights apply regardless of where you are located.
1 Rights you have
Access — request a copy of all personal data we hold about you
Correction — request that we fix inaccurate or incomplete data
Deletion — request that we delete your personal data (subject to legal retention requirements)
Export — receive your data in a portable, machine-readable format
Restriction — ask us to stop processing your data while a dispute is resolved
Objection — object to processing based on our legitimate interests
Opt-out — unsubscribe from non-essential communications at any time
2 How to exercise your rights
To exercise any of these rights, email us at hello@podpapa.com with the subject line "Data Request". We will respond within 14 business days. We may ask you to verify your identity before processing the request.
3 GDPR and international users
If you are located in the European Economic Area (EEA) or the United Kingdom, the rights above are guaranteed under the GDPR and UK GDPR respectively. You also have the right to lodge a complaint with your local data protection authority if you believe we have handled your data incorrectly.
Security
How we protect your data
Security is a core part of what PodPapa does. We apply the same engineering discipline to protecting your account data as we do to running your infrastructure.
1 Technical measures
Encryption in transit — all data between your browser and PodPapa is encrypted via HTTPS/TLS
Encryption at rest — sensitive data including passwords and billing records are encrypted at the storage level
Password hashing — passwords are hashed using bcrypt and are never stored or transmitted in plain text
Access controls — production systems are accessible only to authorized personnel via key-based authentication
Security patches — applied automatically and promptly across all infrastructure
2 Breach notification
In the unlikely event of a data breach that affects your personal information, we will notify affected users by email within 72 hours of becoming aware of the incident, in accordance with applicable law. We will provide clear information about what happened, what data was affected, and what steps we are taking.
3 Reporting a vulnerability
If you discover a security vulnerability in PodPapa, please report it responsibly to hello@podpapa.com. We take all reports seriously and will respond promptly. Please do not publicly disclose vulnerabilities before we have had the opportunity to address them.
Contact Us
Privacy questions & requests
If you have any questions about this Privacy Policy, or if you want to exercise your data rights, get in touch. We're straightforward about how we handle data and happy to answer anything.
1 Get in touch
Email us at hello@podpapa.com
For privacy questions or data requests, use subject line "Privacy Request". We respond within 14 business days.
We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top of the page and — for material changes — notify you by email at least 14 days before the change takes effect.
Continued use of PodPapa after the effective date of an updated policy constitutes your acceptance of the changes.