Privacy Policy

Effective Date: January 27, 2025

OpsBloc ("we," "us," or "our") is operated by KEYBLOC PTE. LTD. (UEN 202506039C), a company registered in Singapore. This Privacy Policy explains how we collect, use, store, and protect your information when you use opsbloc.com (the "Service").

1. Information We Collect

1.1 Account Information

When you register for OpsBloc, we collect:

  • Email address: Used for account identification and communication
  • Password: Stored as a cryptographic hash (we never store plain-text passwords)
  • Subscription plan: Your selected service tier (Drawbridge, Outpost, Castle, or Fortress)
  • Timezone preference: For displaying data in your local time

1.2 Application Log Data

When you send HTTP request logs to OpsBloc through our API, we collect and store the following fields:

  • Timestamp: When the request occurred
  • HTTP method: GET, POST, PUT, DELETE, etc.
  • Request URL: The path and query parameters
  • HTTP status code: 200, 404, 500, etc.
  • Client IP address: The IP making the request to your application
  • User agent: Browser or client information
  • Request time: How long the request took to process (in seconds)
  • Request body: Optional - only if you choose to send it
  • Referer: The page that linked to the request
  • Request ID: Your application's unique identifier for the request
  • User identifier: Optional - your application's user ID or session

Important: You have complete control over what log data you send to OpsBloc. If your logs contain sensitive information (passwords, personal health information, financial data), do not include those fields in your log forwarding configuration.

1.3 Payment Information

Payment processing is handled by Stripe, a PCI-compliant payment processor. We store only your Stripe customer ID to manage your subscription. We never see or store your credit card numbers or banking information.

1.4 Usage Data

We automatically collect technical data about your API usage, including request counts for rate limiting and quota enforcement. This data is used solely to provide the Service and enforce plan limits.

2. How We Use Your Information

We use the collected information to:

  • Provide and maintain the OpsBloc service
  • Process and store your application logs for analytics and monitoring
  • Send alert notifications when configured thresholds are exceeded
  • Enforce rate limits and subscription quotas
  • Process payments and manage subscriptions
  • Communicate with you about service updates or account issues
  • Detect and prevent security threats or abuse of the Service
  • Comply with legal obligations

We do not use your log data for advertising, marketing to third parties, or any purpose other than providing the OpsBloc service to you.

3. Data Storage and Security

3.1 Where We Store Data

Your data is hosted on secure cloud infrastructure (e.g., Vultr data centers) with robust encryption and access controls. We use:

  • Account data: Stored in a secure OLTP database with encryption at rest to protect personal information.
  • Log data: Stored in an analytical database optimized for high-volume processing and fast queries.
  • Session data: Stored in-memory for quick, secure authentication during your use of the platform.

3.2 Security Measures

We implement industry-standard security practices:

  • Passwords are hashed using bcrypt before storage
  • All data transmission uses TLS/SSL encryption
  • API authentication via secure bearer tokens
  • Rate limiting to prevent abuse
  • Regular security updates and monitoring

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

4. Data Sharing and Disclosure

We do not sell, rent, or trade your personal information or log data to third parties. We may share limited information only in these circumstances:

  • Payment processing: Your email and Stripe customer ID are shared with Stripe to process payments
  • Legal requirements: We may disclose information if required by law, court order, or government regulation
  • Service protection: We may disclose information to protect the rights, property, or safety of OpsBloc, our users, or the public

We do not use third-party analytics, advertising networks, or marketing platforms that would have access to your data.

5. Data Retention

We retain your data as follows:

  • Account data: Retained for the lifetime of your account, plus 30 days after deletion to allow for recovery
  • Log data: Retained according to your subscription plan (typically 7-90 days), then automatically deleted
  • Payment records: Retained for 7 years to comply with Singapore tax and financial regulations

You can manually delete individual logs or all logs for an application at any time through the dashboard.

6. Your Rights

Depending on your location, you may have the following rights:

6.1 GDPR Rights (EU/UK Users)

  • Right to access: Request a copy of all data we hold about you
  • Right to rectification: Correct inaccurate or incomplete data
  • Right to erasure: Request deletion of your data ("right to be forgotten")
  • Right to restrict processing: Limit how we use your data
  • Right to data portability: Receive your data in a machine-readable format (CSV export)
  • Right to object: Object to processing based on legitimate interests
  • Right to withdraw consent: Withdraw consent at any time

6.2 PDPA Rights (Singapore Users)

  • Access: Request information about how we collect, use, and disclose your data
  • Correction: Request correction of inaccurate data
  • Withdrawal: Withdraw consent for data collection (may impact service availability)

To exercise any of these rights, contact us at team@opsbloc.com. We will respond within 30 days.

7. Cookies and Tracking

We use essential cookies only for authentication and session management. We do not use advertising cookies, third-party tracking, or analytics cookies. You can clear session cookies by logging out.

8. International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with GDPR and PDPA requirements.

9. Children's Privacy

OpsBloc is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the Service after changes constitutes acceptance of the updated policy. For material changes, we will notify you by email.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

KEYBLOC PTE. LTD.

UEN: 202506039C

Email: team@opsbloc.com

Website: opsbloc.com

Last updated: January 27, 2025