Privacy Policy
Network Intelligence, LLC ("Network Intelligence," "we," "us," or "our") operates the NOCturnal network monitoring platform, including the NOCturnal web dashboard (app.nocturnal247.com), the NOCturnal marketing site (nocturnal247.com), and the NOCturnal iOS and Android mobile applications (together, the "Service").
This Privacy Policy explains what information we collect, how we use it, who we share it with, and the rights you have over your information. By using the Service, you agree to the practices described here.
1. Information We Collect
1.1 Account information
When your organization's administrator creates an account for you (or when you sign up for a trial), we collect:
- Username (chosen by you or assigned by your administrator)
- Password (stored only as a one-way bcrypt hash; we never see the plaintext)
- Role (admin / viewer) assigned within your organization's tenant
- Optional email address if provided for account recovery or notifications
- Optional display preferences (which columns or filters you've configured)
1.2 Service monitoring data
The core of NOCturnal is monitoring network endpoints you configure. We store:
- Hostnames, IP addresses, port numbers, and service types for the endpoints you ask us to monitor
- Polling results: latency in milliseconds, up/down status, timestamps
- Alert history and acknowledgement notes
- Optional ZIP codes for geocoding monitored sites onto the Globe view
This data is yours — it belongs to your organization's tenant and is not shared across tenants.
1.3 Mobile push notification data
If you install the mobile app and grant notification permission:
- Apple Push Notification Service (APNs) device token, or Google Firebase Cloud Messaging (FCM) device token
- Device name (e.g. "Mike's iPhone"), platform (iOS/Android), and quiet-hour preferences you configure
The push token is used only to deliver alerts about your own monitored endpoints. It is not used for advertising, tracking, or profiling. You can revoke it any time by disabling notifications in iOS Settings or by deleting the app.
1.4 Diagnostic and operational data
- HTTP request logs (IP address, timestamp, URL, response code) retained for 30 days to support security and operations
- Mobile crash reports collected via Expo's built-in telemetry, used to fix bugs. These are aggregated and not linked to your account identity.
1.5 What we do NOT collect
NOCturnal does not collect:
- Your physical location, GPS, or motion data
- Your contacts, photos, calendar, or microphone
- Your browsing or search history
- Advertising identifiers (IDFA, AAID)
- Health or fitness data
- Financial information — billing is handled by Stripe; we never see your card number
2. How We Use Your Information
We use the information above only to:
- Operate the Service — poll the endpoints you've configured, show you results, send alerts
- Authenticate you and keep your session secure
- Send transactional emails (password resets, billing receipts, critical service notices)
- Diagnose crashes and improve reliability
- Comply with legal obligations
We do not sell your data, share it with advertisers, or use it to build profiles for marketing.
3. Who We Share Information With
We share information only with the following categories:
- Push delivery providers — Apple Push Notification Service (APNs) and Google Firebase Cloud Messaging (FCM). Your device push token is sent to these services solely to deliver the alerts you've subscribed to.
- Payment processor — Stripe, only when you subscribe to a paid plan. Stripe receives your billing details directly; we never see them.
- Email delivery — a transactional email provider used only for the account-related emails described above.
- Infrastructure — our hosting provider (Hetzner) stores the encrypted database that runs the Service.
- Law enforcement — only when compelled by a valid legal request and only to the extent legally required.
We do not sell or rent personal information to third parties.
4. Data Retention
- Account and monitoring data: retained as long as your account is active.
- Polling history: retained per your subscription tier (e.g. 1 year on standard plans).
- HTTP request logs: 30 days.
- Push device tokens: until you remove them in-app or uninstall the app.
- Crash reports: 90 days.
When you delete your account (via the mobile app's "Delete Account" button or by emailing us), we permanently remove your user record, sessions, and push device tokens within 30 days. Monitoring data that belongs to your organization's tenant remains available to other admins of that tenant until the tenant itself is closed.
5. Your Rights
You have the right to:
- Access — request a copy of the personal information we hold about you
- Correct — fix inaccurate or incomplete information through the dashboard or by contacting us
- Delete — permanently delete your account (in-app via Account → Delete My Account, or by emailing us)
- Export — request a machine-readable export of your monitoring data
- Object — opt out of optional emails at any time
Residents of the European Economic Area (GDPR) and California (CCPA / CPRA) have additional statutory rights including the right to non-discrimination for exercising privacy rights and the right to lodge a complaint with a data protection authority. To exercise any of these rights, email privacy@nocturnal247.com.
6. Security
We use industry-standard safeguards including HTTPS/TLS for all data in transit, bcrypt for password storage, JWT-based mobile authentication scoped to your tenant, and encryption at rest for sensitive configuration fields. No system is perfectly secure and we cannot guarantee absolute security, but we work continuously to protect the Service against known threats.
7. Children
NOCturnal is a B2B SaaS product for IT and network operations professionals. It is not directed at children under 13 and we do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us so we can remove it.
8. International Users
Our servers are located in Germany. By using the Service from outside Germany, you consent to your information being transferred to and processed in Germany. Where required, we rely on standard contractual clauses or other approved transfer mechanisms.
9. Changes to This Policy
We may update this Privacy Policy from time to time. The effective date at the top reflects the most recent update. Material changes will be announced via in-app notice or by email at least 14 days before they take effect.
10. Contact Us
Questions, requests, or complaints about this policy or how we handle your information can be sent to:
Network Intelligence, LLC
privacy@nocturnal247.com
support@nocturnal247.com