Straightforward legal docs for a straightforward product. No dark patterns. No surprises.
Navi.sh ("Navi", "we", "us") is an infrastructure monitoring and on-call alerting platform. We are currently operating independently and are in the process of incorporating as a Limited Liability Company (LLC) in Wyoming, USA. References to "Navi.sh", "we", "us", or "our" in this policy refer to that entity and its operators.
This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and the rights you have over it. It applies to all users of navi.sh and any related services, APIs, or applications we operate.
We collect the minimum data required to operate the service. Here is every category, with the explicit reason it exists:
Your phone number is used exclusively for emergency on-call SMS and Voice alerts. We will never use it for marketing, promotions, or any outreach that is not directly triggered by an incident in your own infrastructure. Full stop.
Providing a phone number is optional. If you do not add one, SMS and Voice alert channels will simply be unavailable to you. Push and Email notifications will continue to function normally.
When you enable push notifications on a mobile or desktop device, your operating system generates a unique device token — an opaque identifier issued by the relevant platform's push notification service (e.g. the service provided by the platform vendor for Android, web, iOS, or macOS). We store this token solely to route push alerts to your device. Tokens are not linked to any advertising profile and are never shared outside of the alert delivery pipeline.
Like most web services, we automatically collect basic technical data when you interact with Navi: IP address, browser type, pages visited, and timestamps. This data is used for security monitoring, debugging, and aggregate product analytics. We use a third-party web analytics service to understand how people use our marketing site. You can opt out via standard browser settings or ad-blocker extensions.
When your infrastructure tools (e.g. Prometheus, Grafana, PagerDuty webhooks) send alerts to Navi, those payloads may contain metadata about your systems. We process this data on your behalf as a data processor, not a controller. We do not mine or analyse this data for our own purposes.
We never sell your personal data to third parties. We never use your data to train AI or ML models sold to others. We never broker your contact information.
We share personal data with third-party sub-processors only to the extent strictly necessary to operate the service. We use providers in the following functional categories:
| Category | Purpose | Data Shared | Location |
|---|---|---|---|
| Cloud Infrastructure & Hosting Providers | Server compute, databases, object storage, and networking for all core platform functionality | All data stored on the platform (encrypted at rest) | USA (primary); other regions possible — see §5 |
| Payment Processors | Secure handling of subscription billing and prepaid credit purchases | Email address, billing name, payment method details | USA |
| Telephony & Messaging Providers | Delivery of SMS and Voice on-call alerts triggered by incidents in your infrastructure | Phone number, alert message content | USA |
| Push Notification Services | Delivery of push alerts to Android, iOS, web, and desktop devices | Device token, alert payload | USA |
| Web Analytics Services | Aggregate, anonymised analytics for our marketing website | Anonymised usage data, anonymised IP address | USA |
The specific vendors within each category may change as we evolve our infrastructure. When we add or replace a sub-processor in a way that materially affects how your data is handled, we will update this section and notify you in accordance with §9. All sub-processors are required to handle data under confidentiality obligations and, where applicable, under Standard Contractual Clauses (SCCs) or equivalent lawful data transfer mechanisms.
All core backend services and databases are hosted with industry-standard cloud infrastructure providers. Your data resides in data centres operated by those providers and is protected by their physical and logical security controls, as well as our own application-level controls.
Our infrastructure is primarily located in the United States. As Navi grows, we may utilise additional regions or providers to achieve higher availability, better latency, or improved resilience. Any provider we use — current or future — must meet our minimum security bar: encryption at rest and in transit, SOC 2 Type II certification or equivalent, and a signed Data Processing Agreement (DPA). We will update this policy and notify affected users before any significant infrastructure change that affects where data is stored.
Data is encrypted in transit using TLS 1.2+ and encrypted at rest using AES-256 or an equivalent standard enforced at the infrastructure level.
We retain your personal data for as long as your account is active or as needed to provide the service. Specific retention windows:
When data is deleted, it is removed from active systems immediately. Residual copies in encrypted backups are purged within 30 days.
Depending on your location, you may have the following rights under applicable privacy law (GDPR, CCPA, and others):
To exercise any of these rights, email us at privacy@navi.sh. We will respond within 30 days. We may need to verify your identity before processing the request.
Navi.sh is a B2B developer tool. It is not directed at children under the age of 16. We do not knowingly collect personal data from anyone under 16. If you believe we have done so inadvertently, contact us at privacy@navi.sh and we will delete it promptly.
We will update this policy when our practices change. For material changes, we will notify you via email (to the address on your account) and/or by posting a prominent notice in the Navi dashboard at least 14 days before the change takes effect. The "Last updated" date at the top of this page always reflects the most recent revision.
Questions, concerns, or data requests? Reach us at:
We aim to respond to all privacy-related inquiries within 5 business days.
By creating an account or using any part of the Navi.sh platform (the "Service"), you ("User", "you") agree to be bound by these Terms & Conditions ("Terms"). If you are accepting on behalf of an organisation, you represent that you have the authority to bind that organisation and that "you" refers to it.
If you do not agree, do not use the Service.
Navi.sh is an infrastructure monitoring and on-call alerting platform that helps engineering teams detect incidents, route alerts intelligently, and manage on-call schedules. Core capabilities include:
We reserve the right to add, modify, or discontinue features of the Service with reasonable notice to users.
You must provide accurate information when creating an account. You are responsible for maintaining the confidentiality of your credentials and for all activity that occurs under your account.
Navi.sh is organised around workspaces. A workspace owner can invite members, assign roles, and manage integrations. Owners are responsible for ensuring that all members of their workspace comply with these Terms.
You must not share your account credentials or allow others to access the Service using your credentials. Notify us immediately at security@navi.sh if you suspect unauthorised access.
Paid plans are billed on a recurring basis (monthly or annually) via our payment processor. By providing a payment method, you authorise us to charge the applicable fees at the start of each billing period. All prices are in USD unless stated otherwise and are exclusive of any applicable taxes.
SMS and Voice alerts consume prepaid credits. Credits are purchased in advance and deducted per outbound SMS or Voice call. If your credit balance reaches zero, SMS and Voice alert delivery will be suspended automatically.
When SMS/Voice credits run out:
We will attempt to notify you via email and in-app when your credit balance falls below a configurable threshold. It is your responsibility to maintain a sufficient credit balance for your alerting needs. Navi.sh is not liable for missed alerts caused by an exhausted credit balance.
Subscription fees are non-refundable except where required by applicable law. Unused prepaid credits may be refunded at our discretion within 30 days of purchase; contact billing@navi.sh.
We will give you at least 30 days' notice before changing the price of a plan you are currently subscribed to. Your continued use of the Service after a price change constitutes acceptance of the new price.
You agree not to use the Service to:
We may suspend or terminate accounts that violate these rules, immediately and without refund, at our sole discretion.
The Service is provided "as is" and "as available". To the fullest extent permitted by law, Navi.sh disclaims all warranties, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, and non-infringement.
We do not warrant that:
Infrastructure monitoring and incident response is a critical function. We work hard to make Navi reliable, but you should architect your alerting stack with redundancy and not rely solely on any single vendor, including us.
To the maximum extent permitted by applicable law, Navi.sh and its operators shall not be liable for any indirect, incidental, special, consequential, or punitive damages — including loss of revenue, data, goodwill, or business interruption — arising out of or relating to your use of, or inability to use, the Service, even if advised of the possibility of such damages.
In no event shall our total aggregate liability to you exceed the greater of: (a) the amount you paid us in the 12 months preceding the claim, or (b) USD $100.
Some jurisdictions do not allow the exclusion of certain warranties or limitation of liability for consequential damages. In those jurisdictions, our liability is limited to the greatest extent permitted by law.
Our IP: All software, design, trademarks, and content comprising the Navi.sh platform are the exclusive property of Navi.sh and its licensors. These Terms do not grant you any rights in our intellectual property beyond what is needed to use the Service.
Your data: You retain full ownership of any data, alert payloads, or content you send through the Service. You grant us a limited, non-exclusive licence to process that data solely to provide the Service to you.
Feedback: If you share product feedback or feature suggestions with us, you grant us the right to use that feedback without restriction or obligation to you.
By you: You may cancel your account at any time via your workspace settings or by emailing hello@navi.sh. Cancellation stops future billing at the end of the current paid period. Data deletion follows the retention schedule described in our Privacy Policy.
By us: We may suspend or terminate your access if you violate these Terms, fail to pay, or if we are required to do so by law. We will provide reasonable notice before termination for non-payment or policy violations, except where immediate action is required (e.g., security threats or egregious abuse).
Upon termination, your right to access the Service ceases immediately. Sections 6, 7, 8, and 10 survive termination.
These Terms are governed by the laws of the State of Wyoming, USA, without regard to its conflict-of-law principles. Navi.sh is currently operating independently and is in the process of incorporating as a Wyoming LLC; any formal entity information will be updated in these Terms upon completion of incorporation.
Any dispute arising from these Terms that cannot be resolved informally shall be submitted to binding arbitration under the rules of the American Arbitration Association (AAA) in Wyoming, USA, conducted in English. You waive any right to participate in a class-action lawsuit or class-wide arbitration. Notwithstanding the foregoing, either party may seek injunctive or other equitable relief in a court of competent jurisdiction.
We may update these Terms from time to time. For material changes, we will notify you via email or in-app notification at least 14 days before the changes take effect. Your continued use of the Service after the effective date constitutes your acceptance of the updated Terms.
If you do not agree to the updated Terms, you must stop using the Service and may cancel your account before the effective date.
Legal notices, billing disputes, and general inquiries: