Privacy Policy for CronMonitor

Last Updated: November 30, 2025

1. General Information

1.1. This Privacy Policy describes the rules for processing and protecting personal data provided by Users in connection with the use of the CronMonitor service (the "Service").

1.2. The data controller is K-J Solution, with registered office at Racula-Bajeczna 10/1, 66-004 Zielona Gora, registered in POLAND, Tax ID: PL9231637185 (the "Controller").

1.3. Contact the Controller regarding data protection:

• Email: [email protected]

1.4. The Controller processes personal data in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR) and other applicable laws.

2. Scope of Processed Data

2.1. Registration Data:

• Email address
• Password (in encrypted form)
• First and last name (optional)
• Company name (optional)

2.2. Billing Data:

• Invoice data (company name, address, Tax ID/VAT ID)
• Data processed by Stripe (credit card information)
• Payment and invoice history

2.3. Technical Data:

• IP address
• Browser and operating system information
• Service activity logs
• Cookies

2.4. Monitored Cron Job Data:

• Monitoring endpoint URLs
• Monitor names and descriptions
• Schedule settings
• Job execution logs
• Error information and statuses

3. Purpose and Legal Basis for Data Processing

3.1. Service Provision (Art. 6(1)(b) GDPR):

• Creating and managing Account
• Enabling use of Service features
• Monitoring cron jobs
• Sending notifications and alerts

3.2. Billing and Payments (Art. 6(1)(b) GDPR and Art. 6(1)(c) GDPR):

• Processing payments
• Issuing invoices
• Maintaining accounting documentation
• Fulfilling tax obligations

3.3. Communication (Art. 6(1)(b) GDPR):

• Responding to inquiries
• Technical support
• Information about Service changes
• Problem resolution

3.4. Marketing (Art. 6(1)(a) GDPR - consent):

• Sending newsletters
• Information about new features
• Special offers (Users may withdraw consent at any time)

3.5. Security (Art. 6(1)(f) GDPR - legitimate interest):

• Ensuring Service security
• Detecting and preventing abuse
• Log analysis for threat detection

3.6. Analytics and Service Improvement (Art. 6(1)(f) GDPR):

• Analyzing Service usage
• Statistics and reports
• Feature optimization

4. Data Retention Period

4.1. Account Data: Until Account deletion by User or termination of services.

4.2. Billing Data: 5 years from the end of the calendar year in which the invoice was issued (legal requirement).

4.3. Monitoring Logs: According to subscription plan:

• Free: 30 days
• Basic: 90 days
• Pro: 365 days
• Enterprise: unlimited days

4.4. Technical Logs: Up to 12 months (security purposes).

4.5. Marketing Consents: Until consent withdrawal or account deletion.

5. Data Sharing

5.1. The Controller may share personal data with the following categories of recipients:

5.1.1. Data Processors:

• Stripe – payment processing (USA, EU Standard Contractual Clauses)
• Hosting Providers – data storage (according to server location)
• Email Services – sending notifications and newsletters
• Analytics Tools – traffic and behavior analysis

5.1.2. Entities Authorized by Law:

• Law enforcement agencies
• Courts and tax authorities
• Other entities when required by law

5.2. The Controller does not sell personal data to third parties.

5.3. Data may be transferred outside the European Economic Area (EEA) only to countries ensuring adequate protection or based on EU Standard Contractual Clauses.

6. User Rights

6.1. Users have the right to:

6.1.1. Access Data (Art. 15 GDPR):

• Confirmation of whether data is being processed
• Receiving a copy of processed data

6.1.2. Rectify Data (Art. 16 GDPR):

• Correcting inaccurate data
• Completing incomplete data

6.1.3. Delete Data (Art. 17 GDPR - "right to be forgotten"):

• Requesting data deletion (subject to legal exceptions)

6.1.4. Restrict Processing (Art. 18 GDPR):

• Restricting data processing in certain cases

6.1.5. Data Portability (Art. 20 GDPR):

• Receiving data in a structured format
• Transmitting data to another controller

6.1.6. Object (Art. 21 GDPR):

• Objecting to data processing for marketing purposes
• Objecting to processing based on legitimate interest

6.1.7. Withdraw Consent (Art. 7(3) GDPR):

• Withdrawing consent at any time (does not affect lawfulness of processing before withdrawal)

6.1.8. Lodge a Complaint (Art. 77 GDPR):

• Filing a complaint with supervisory authority

6.2. To exercise the above rights, please contact the Controller at: [email protected].

7. Cookies and Tracking Technologies

7.1. The Service uses cookies and similar technologies for:

• Maintaining logged-in user session
• Remembering user preferences
• Traffic and behavior analysis (Google Analytics, if applicable)
• Marketing purposes (with consent)

7.2. Types of Cookies Used:

7.2.1. Necessary Cookies:

• Session cookies
• Authentication cookies
• Security cookies (CSRF tokens)

7.2.2. Functional Cookies:

• User preference cookies
• Language setting cookies

7.2.3. Analytics Cookies:

• Google Analytics (if applicable)
• Performance tracking cookies

7.2.4. Marketing Cookies:

• Remarketing cookies (with consent)

7.3. Users can manage cookies through browser settings. Disabling cookies may limit Service functionality.

7.4. More information about cookies: https://www.allaboutcookies.org

8. Data Security

8.1. The Controller implements appropriate technical and organizational measures to ensure data security:

• Data encryption (SSL/TLS)
• Password encryption (bcrypt/Argon2)
• Regular backups
• Access control to data
• Security monitoring
• Regular system updates

8.2. Only authorized persons have access to personal data.

8.3. In case of a personal data breach, the Controller will notify appropriate authorities and Users in accordance with GDPR requirements.

9. Automated Decision-Making and Profiling

9.1. The Service does not use automated decision-making, including profiling, that produces legal effects or similarly significantly affects Users.

9.2. Some decisions may be made automatically for technical purposes (e.g., abuse detection), but they do not constitute profiling within the meaning of GDPR.

10. Children's Data

10.1. The Service is not intended for persons under 16 years of age.

10.2. The Controller does not knowingly process personal data of children under 16 years of age without parental or guardian consent.

10.3. If you become aware that a child under 16 has provided us with personal data, please contact: [email protected].

11. Changes to Privacy Policy

11.1. The Controller reserves the right to make changes to the Privacy Policy.

11.2. Users will be notified of significant changes 14 days in advance through:

• Email
• Service notification
• Notice on homepage

11.3. The current version of the Privacy Policy is always available in the Service.

12. Final Provisions

12.1. Matters not covered by this Privacy Policy are governed by GDPR and other applicable laws.

12.2. This Privacy Policy takes effect on the date of publication in the Service.

---

Contact for Data Protection Matters: Email: [email protected] Address: K-J Solution, Tax ID PL9231637185, Racula-Bajeczna 10/1, 66-004 Zielona Gora, POLAND

Supervisory Authority (EU): Your local Data Protection Authority (For Poland: President of the Personal Data Protection Office ul. Stawki 2, 00-193 Warsaw, Poland Tel.: +48 22 531 03 00 https://uodo.gov.pl)