Privacy Policy

Last updated: Jan 27, 2025


This Privacy Policy applies to IncidentHub, a service provided by Chitrambari Technologies LLP. This Privacy Policy describes IncidentHub's ("we", "our", "us") policies and procedures on the collection, storage, retention, amendment, usage, deletion, transfer, and disclosure of your data when you use IncidentHub and tells you about your privacy rights and how the law protects you.

We use your data to provide and improve our service. By using IncidentHub, you agree to the collection and use of such information in accordance with this Privacy Policy.

Data Collection

IncidentHub collects certain data from you when you use the service. These data are used to provide the service to you and to improve the service, and are stored and managed by our service providers. These data are not used for any other purpose. Our service providers are contractually bound to keep your information confidential and secure. For more information about how our service providers handle your information, please refer to their respective privacy policies:
When you sign up for an account, we collect your email address for the following purposes:
  • To personalize your account
  • To send you periodic emails about your account, product updates, and other critical information about your account
  • To conduct periodic promotions, surveys, or other marketing activities

When you subscribe to one of our paid plans, we ask you for your payment information. IncidentHub never stores or processes your payment information. All payment processing is handled by Paddle - our Merchant of Record.

When you visit our website, we may collect non-personal information about your visit, including your IP address, browser type, operating system, referring URL, and pages you view on our site. This information is used to improve our website and analyze trends abour our user base.

Data Storage and Security

We currently store all our data on encrypted servers in the United States. We take adequate measures and follow industry best practices to ensure that data are safely and securely stored with controls in place to prevent unauthorized access. We use techniques like TLS (Transport Layer Security) to encrypt data in transit and AES-256 storage encryption to encrypt data at rest.

When you integrate your Slack, Discord, or other tools with IncidentHub, we store the webhook URLs/integration keys for the purposes of sending incident alerts to your Slack/Discord/other channels. These webhook URLs/integration keys are encrypted at rest and are not used for any other purpose.

Data Storage for EU Users

For users based in the European Union (EU), we store your data in servers in the United States. By using our service, EU users acknowledge and understand that their data will be transferred to and processed in the United States. We take all the necessary measures to comply with GDPR requirements and protect your privacy.

We use Bunny.net to store user uploaded files like logos for public status pages. Bunny.net also serves as our CDN (content delivery network) for some static assets like images, CSS, and JavaScript files. When a user requests a file from Bunny.net's CDN, their IP address is anonymized in Bunny.net's logs to comply with GDPR requirements. Please refer to the Data Collection section for a link to Bunny.net's privacy policy.

Data Sharing

We do not share your data with any third parties except for the purposes of providing the service. This includes sharing information with only those third parties who perform services on our behalf. We share information with vendors who help us manage our online registration process or payment processors or transactional message processors. Your information is shared only to the extent necessary to perform the services you have requested. These vendors are contractually bound to keep your information confidential and secure. Please see the list under Data Collection for the list of vendors.

Data Disclosure and Transfer

We may disclose your personal data in the good faith belief that such action is necessary to:

  • Comply with a legal obligation
  • Protect and defend the rights or property of the company
  • Prevent or investigate possible wrongdoing in connection with the service
  • Protect the personal safety of users of the service or the public
  • Protect ourselves against legal liability

We may share or transfer your personal data in connection with any merger, sale of company assets, or acquisition of all or a portion of our business to another company. We will notify you by email of any such transfer and the choices you have regarding your personal data.

Data Amendment and Deletion

If you believe that any data we store about you is incorrect, please contact us at support@incidenthub.cloud.

We will retain your data for as long as you have an active account. You can delete your information in one of two ways:
  • Delete your account from your IncidentHub dashboard. Please see this link on how to do this.
  • Contact us at support@incidenthub.cloud to request the deletion of your account and we will delete your account and all associated data from our systems.

Your Rights

In accordance with the General Data Protection Regulation (GDPR), you have the following rights regarding your data:
  • The right to be informed about the collection and use of your data
  • The right to access your data
  • The right to rectify your data
  • The right to delete your data
  • The right to object to the processing of your data
  • The right to data portability
  • The right to restrict the processing of your data

To exercise your rights, please contact our Data Protection Officer (DPO) at dpo@incidenthub.cloud.

Cookies

We use two kinds of cookies - functional and tracking.
  • Functional cookies: Functional cookies are essential for IncidentHub to function and cannot be disabled.

  • Non-essential tracking (Google Analytics) cookies: Non-essential tracking cookies are used to track usage of the website and offer you a better experience. You can choose to accept or reject these cookies.


When you visit our website for the first time, you will be presented with a small pop-up asking you to either Accept or Reject non-essential cookies.

If you choose "Reject" the Website will not use Google Analytics to track your activity on this Website. If you choose "Accept" the Website will use Google Analytics to track your activity on this Website. Your choice does not affect the use of functional cookies on this Website, which are essential for the Website to function.

If you wish to change your cookie settings later, you can do so by clicking on the Reset Cookie Settings link in the "Legal" section in the footer of this Website.

Our service may contain links to other websites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Privacy Policy Updates

We may update our Privacy Policy from time to time.

If there are significant changes to this Privacy Policy, we will let you know via the email address associated with your account.

Jurisdiction

If you choose to visit the website, your visit and any dispute over privacy is subject to this policy and the website's terms of use. In addition to the foregoing, any disputes arising under this Policy shall be governed by the laws of India.

Contact Us

If you have any questions about this Privacy Policy, you can contact us by email at support@incidenthub.cloud

The contact details of our Data Protection Officer (DPO) are given below:
Hrishikesh Barua
Email: dpo@incidenthub.cloud
Address: B-806, Western Plaza, Shaikpet, Hyderabad - 500008, India
Phone: +91 6309352433