NeatAlert NeatAlert

Privacy Policy

Last updated: March 8, 2026

1. Introduction

NeatAlert ("we", "our", or "us") operates the NeatAlert service available at neatalert.app. This Privacy Policy explains how we collect, use, and protect your information when you use our service.

2. Information We Collect

  • Account information: Email address and password (hashed) when you register, or your Google account email when you sign in with Google.
  • Workspace configuration: Slack Bot Token, Jira API Token, GitLab API Token, Telegram Bot Token — stored encrypted in our database.
  • Notification data: Issue titles, priorities, and summaries from Jira and GitLab, processed to deliver notifications.
  • Usage data: Basic logs of service activity for debugging and monitoring.

3. How We Use Your Information

  • To provide and operate the NeatAlert notification service.
  • To send Jira and GitLab notifications to your configured Slack channels and Telegram chats.
  • To authenticate you and manage your account.
  • To improve and debug our service.

We do not sell your personal data to third parties.

4. Data Storage and Security

  • All API tokens (Slack, Jira, GitLab, Telegram) are stored encrypted using AES-256 (Fernet) encryption.
  • Passwords are hashed using PBKDF2-SHA256 with 260,000 iterations.
  • Data is stored on servers located in the EU (DigitalOcean Amsterdam).
  • All traffic is encrypted via HTTPS/TLS through Cloudflare.

5. Third-Party Services

NeatAlert integrates with the following third-party services:

  • Slack — to send notifications and receive commands. Subject to Slack's Privacy Policy.
  • Atlassian Jira — to read issue data via your API token.
  • GitLab — to receive pipeline and deployment events via webhooks.
  • Telegram — to deliver notifications via bot.
  • Google — for OAuth authentication. Subject to Google's Privacy Policy.
  • Google Gemini AI — for bug report quality analysis. Issue summaries may be sent to Google's AI API.
  • Cloudflare — for DNS, CDN, and DDoS protection.

6. Data Retention

  • Notification history is retained for 30 days.
  • Account data is retained as long as your account is active.
  • You may request deletion of your account and all associated data by contacting us.

7. Your Rights

You have the right to:

  • Access your personal data.
  • Request correction or deletion of your data.
  • Withdraw consent at any time by deleting your account.
  • Export your workspace configuration data.

8. Cookies

We use minimal cookies:

  • session — for authentication (HttpOnly, SameSite=Lax).
  • lang — to remember your language preference.
  • No advertising or tracking cookies.

9. Contact

For privacy-related inquiries, please contact us at: [email protected]

Terms of Service Sign In