Privacy Policy

CertPilot is a software service designed for agencies that manage multiple client domains and need visibility into SSL certificates, domain expiry, DNS configuration, daily alerts, and PDF reporting.

We may collect and process the following categories of information:

• Account information, such as your email address, login credentials, and basic agency profile details.
• Billing information, such as plan selection and billing status. Payment card details are processed by our payment provider and are not stored by CertPilot.
• Domain monitoring data, such as hostnames, SSL certificate metadata, DNS record snapshots, domain expiry information, alert history, and generated reports.
• Support and communication data, such as messages you send to us by email or through the product.
• Technical and usage information, such as browser type, request logs, timestamps, and general app usage needed to operate, secure, and improve the service.

We use information to:

• create and manage your account,
• run SSL, DNS, and domain checks,
• send alert emails and operational notifications,
• generate branded PDF reports,
• manage subscriptions and billing status,
• provide support and respond to questions,
• improve the reliability, security, and usability of CertPilot,
• investigate abuse, fraud, or misuse of the service, and
• comply with legal obligations when required.

When you use the public health-check page, you submit a domain name for a one-time check. We may log requests and technical metadata to operate the tool, prevent abuse, and improve the service.

Depending on the context, we process information because it is necessary to provide the service you requested, necessary for our legitimate business interests, necessary to comply with legal obligations, or based on your consent where required.

We do not sell personal data. We may share information with trusted service providers that help us run CertPilot, such as:

• hosting and infrastructure providers,
• authentication and database providers,
• payment processors,
• email delivery providers, and
• analytics, logging, or security providers.

We may also disclose information if required by law, regulation, legal process, or to protect the rights, safety, and security of CertPilot, our users, or others.

We keep data only for as long as reasonably necessary to provide the service, maintain security, resolve disputes, enforce our agreements, and comply with legal obligations.

We use reasonable technical and organizational measures to help protect information against unauthorized access, misuse, loss, or disclosure. However, no online service can guarantee absolute security.

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing of your information, as well as rights related to portability and withdrawal of consent where applicable.

CertPilot relies on third-party services to operate parts of the product, including authentication, payments, hosting, email delivery, and technical infrastructure. Your use of those services may also be subject to their own terms and privacy policies.

CertPilot is intended for business users and is not directed to children.

Your information may be processed in countries outside your own country, depending on the service providers used to operate the platform.

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date on this page.

If you have questions about this Privacy Policy, contact hello@certpilot.app.