Privacy Policy
Last updated: June 24, 2026
goodtek operates vibePulse (uptime monitoring for web apps and background jobs). This Privacy Policy explains what personal data we collect, why we use it, and the choices you have. By creating an account or using the service, you acknowledge this policy.
1. Data controller
The data controller for vibePulse is goodtek. For privacy requests, contact us via https://goodtek.xyz.
2. Personal data we collect
We collect only what is needed to run the service:
- Account data from social sign-in (Google, GitHub, Kakao, Naver): email address, display name, profile image, and provider identifiers.
- Organization and membership data you create: organization name, slug, and member roles.
- Monitoring configuration: project names, monitor names, target URLs, heartbeat ping tokens, check intervals, and status history.
- Notification settings: channel types (e.g. Slack, KakaoTalk) and configuration required to deliver alerts.
- Billing data handled by Polar: subscription status, plan, and payment-related identifiers linked to your organization (we do not store full card numbers).
- Technical logs: session cookies, IP addresses and timestamps for authentication, API access, and heartbeat/ping requests, and error diagnostics.
3. Why we use your data
- Create and secure your account and organization membership.
- Run uptime checks, detect incidents, and send notifications you configure.
- Process subscriptions and enforce plan quotas.
- Improve reliability, prevent abuse, and comply with law.
- Respond to support and privacy requests.
4. Legal bases (where applicable)
We process data to perform our contract with you (providing vibePulse), based on your consent where required (e.g. optional notifications), and where necessary for legitimate interests such as security and fraud prevention.
5. Retention
- Account and organization data: kept while your account is active. When you delete your account, access ends immediately and personal data plus organization resources are permanently deleted 7 days after the paid subscription period ends (cancel-at-period-end), or 7 days after a deletion request on the Free plan.
- Monitor and incident history: kept according to your plan limits and operational needs; deleted with your organization at purge.
- Billing records: retained as required for accounting and tax compliance until purge, then removed with your organization unless law requires longer retention of anonymized transaction records.
- Server logs: typically retained for a limited period unless needed for security investigations.
6. Sharing and processors
We do not sell personal data. We share data only with service providers that help us operate vibePulse, under appropriate agreements:
- OAuth identity providers (Google, GitHub, Kakao, Naver) when you choose social sign-in.
- Polar for checkout, subscriptions, and customer billing portal.
- Cloud infrastructure and database hosting providers that store application data.
- Notification delivery partners (e.g. Slack, Kakao) when you connect those channels.
7. International transfers
Some processors may process data outside your country. Where required, we rely on appropriate safeguards such as standard contractual clauses or equivalent mechanisms.
8. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or export your personal data, and to withdraw consent where processing is consent-based. Contact us via goodtek.xyz to exercise these rights. You may delete your account from the Danger zone at the bottom of the Terms page while signed in; deletion scheduling, subscription handling, and permanent purge timing are described in these policies.
9. Cookies and similar technologies
We use essential cookies and local storage for authentication sessions (Better Auth). We do not use advertising cookies. You can control cookies through your browser, but signing in requires session cookies.
10. Security
We apply administrative, technical, and organizational measures appropriate to the sensitivity of the data, including encrypted transport (HTTPS), access controls, and audit logging for sensitive admin operations.
11. Children
vibePulse is not directed at children under 14 (or the minimum age in your jurisdiction). We do not knowingly collect data from children.
12. Changes
We may update this policy. Material changes will be reflected on this page with an updated date. Continued use after changes constitutes acceptance where permitted by law.