Privacy
Last updated: 2026-05-21.
What we collect
- Account: GitHub username, name, email, avatar URL (received from GitHub OAuth).
- App config: API keys, VAPID keys, APNs/FCM credentials (encrypted at rest).
- Notification metadata: title, body, target, send/delivery counters. Bodies are kept verbatim for replay; you can delete them via the panel or the API.
- Audit log: who did what in the panel (member changes, app config edits).
- Billing: Polar customer + subscription IDs only. Card data lives at Polar, never on us.
Where data lives
Hetzner Cloud, Finland region (EU). Single-tenant Postgres per environment. No data leaves the EU. Provider credentials (APNs .p8, FCM service account JSON, VAPID private keys) are encrypted with AES-256-GCM before they hit disk.
Sub-processors
- Hetzner Cloud — hosting (EU).
- Polar — billing + invoicing.
- GitHub — authentication (OAuth).
- Apple, Google, Mozilla — push delivery (transit only; payloads are end-to-end encrypted for web push).
Deletion
Email [email protected] from the address on your account to request deletion. We act within 7 days. Subscriptions are cancelled on Polar's side at the same time.
Contact
[email protected] for anything privacy-related.