Privacy Policy
At Pingly, we take the privacy of our users very seriously. We want to make our policies on managing your data clear and understandable, so we've tried to write our privacy policy in plain English. If you have any further privacy concerns we haven't addressed, please email asknoah@gmail.com.
Our Cookie Policy
Pingly uses cookies, or similar technologies like single-pixel gifs and web beacons, to record log data. We use both session-based and persistent cookies.

Cookies are small text files sent by us to your computer and from your computer to us, each time you visit our website. They are unique to your Pingly account or your browser. Session-based cookies last only while your browser is open and are automatically deleted when you close your browser. Persistent cookies last until you or your browser delete them or until they expire.

Some cookies are associated with your Pingly account and personal information in order to remember that you are logged in and which teams you are logged into. Other cookies are not tied to your Pingly account but are unique and allow us to do site analytics and customization, among other similar things. If you access Pingly through your browser, you can manage your cookie settings there but if you disable all cookies you may not be able to use Pingly.

Pingly sets and accesses our own cookies on our company-owned domains. In addition, we use 3rd parties like Google Analytics for website analytics. You may opt-out of third party cookies from Google Analytics on their respective websites. We do not currently recognize or respond to browser-initiated Do Not Track signals as there is no consistent industry standard for compliance.
Surveillance and Law Enforcement
We do not participate in, or co-operate with, any kind of blanket surveillance or monitoring. We also take technical measures where feasible to prevent surveillance of our users occurring without our co-operation, such as:
  • Using encrypted SMTP for sending and receiving messages when the outside server supports it.
  • Using Perfect Forward Secrecy where feasible for all encrypted connections.
  • Encrypting all messages while at rest on our servers.
  • Encrypting communications between our data centers.
Like any company, we can never guarantee our measures are 100% effective, as we don't know the full capabilities of any attackers. However, these measures do act to increase the difficulty and expense of any surveillance.

Pingly does not accept legal process directly from law enforcement entities outside the U.S. or Canada. Foreign law enforcement agencies should proceed through a Mutual Legal Assistance Treaty or other diplomatic or legal means to obtain data through a court where Pingly is located. Pingly responds to legal process in a manner consistent with the Electronic Communications Privacy Act, 18 U.S.C. ยงยง2501 et seq., and relevant case law. Pingly does not disclose account content absent a search warrant in criminal cases. In civil cases, Pingly cannot disclose content without sufficient legal process and the consent of the appropriate Pingly customer(s).

Unless prohibited by law, we will disclose to the account holder when we receive a warrant for their account.

We do not condone illegal activity. We deal with all law enforcement requests personally and we are satisfied that all we have seen are justified.
Employee Access to Data
Due to the nature of their jobs as system administrators, some of our employees have the capability to access Pingly accounts. We hold all of our employees to the highest ethical standards, and this includes not accessing anyone's account without their permission. If you request us to look at a specific message in your account for debugging purposes, we may ask you to provide certain data around this message to help us in the debugging process and to ensure that we only access the message you have specified.

If we receive abuse reports for an account, backed up with evidence that it has been used for sending spam or fraud, we may look at the account to decide whether to lock it permanently. This is to reduce the likelihood of accidentally locking a legitimate account. In this instance, it will normally be sufficient for us to just scan the subject and preview lines in a mailbox, but not read any full emails (and we certainly have no wish to do so).
Your Data and Profiling
We do not sell or give information about our users to any third parties. Payments are securely handled via Stripe. The payment provider will store your credit card details and address for the purpose of future payments with Pingly. Stripe's privacy policy is available at https://stripe.com/us/privacy.

Incoming messages are scanned for the purpose of spam detection unless you disable spam protection for your account. We may also scan some outgoing messages with the same software to prevent people using our service to send spam. Messages you report as spam are automatically analyzed to help train our spam filter. Also, if enabled, messages reported as spam are forwarded on to some external email reporting services. These services aim to help monitor and reduce overall spam on the Internet.

To make message searching fast, we build an index of your messages (this is a table, just like you would find at the back of a reference book, in which you can look up a word to quickly find the messages in which it appears).

No information from any of these activities is used for any other purpose, or to create any kind of profile on our users.
Data Retention and Account Deletion
We retain backups of deleted messages for at least a week. This is for the purpose of restoring messages in case of accidental deletion. After this point, deleted messages will be purged from all our backups, although the time this takes to happen may vary due to automated load balancing.

We normally keep logs of message, email, SMS and server activity for up to 6 months. This is for the purposes of diagnosing and fixing problems, which are often reported to us weeks or months after they occur. Message subjects may be contained in these logs, but not message bodies. Aggregate or anonymous data, which cannot be linked to individual user accounts, may be kept for longer periods, for the purpose of improving the Pingly service.

Backups and logs may be kept longer than these limits in special circumstances. For example, if a problem is taking a long time to resolve, logs relevant to that investigation may be retained. Or if a server that contains backups or logs is temporarily offline because of a fault, then those backups or logs may not be deleted until the server is brought back up.

These situations are unusual, however, and when they do occur, they are temporary.

Should you close your account, all data will be permanently deleted 7 days after closing. It may take a further 2 weeks to purge from all our backups.