Home / Privacy Policy

Privacy Policy

Effective Date: January 1st, 2026

Generator Labs, Inc. ("Company", "us", "we", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and monitoring services (collectively, the "Service"). Your privacy is important to us, and we want to be as clear as possible about the data we collect and the terms governing our services.

This Privacy Policy applies to our websites, services, applications, and any other services we provide, whether online or offline. It does not apply to third-party websites, services, or applications, even if they link to or from our Service.

1. Information We Collect

1.1 Personal Information You Provide

We collect personal information that you voluntarily provide to us when you:

  • Register for an Account: Name, email address, password, company name, job title, job function, expertise, telephone number, and postal address
  • Make a Purchase: Billing information, payment method details (processed securely through our payment providers)
  • Contact Support: Your name, email address, and any information you choose to include in your support requests or communications with us
  • Configure Monitoring: IP addresses, domains, hostnames, ports, and notification preferences for systems you wish to monitor
  • Participate in Events: Information collected when you attend our events, webinars, or interact with us at conferences

1.2 Information Collected Automatically

When you access or use our Service, we automatically collect certain information about your device and usage:

  • Device Information: Device type, operating system, MAC address, IP address, screen resolution, and unique device identifiers
  • Browser Information: Browser type and version, language preferences, referring URLs, and pages visited
  • Usage Data: Information about how you interact with our Service, including features accessed, actions taken, time spent on pages, and usage patterns
  • Log Data: Server logs including IP addresses, timestamps, error messages, and system activity
  • Cookies and Tracking Technologies: Data collected through cookies, web beacons, and similar technologies (see Section 7 below)

1.3 Monitoring Service Data

As part of providing our monitoring services, we collect and process:

  • Blacklist check results for your configured IP addresses and domains
  • SSL/TLS certificate details including issuer, expiration dates, chain information, and validity status
  • TLS configuration data including supported protocols, cipher suites, and security grades
  • Historical monitoring data, trends, and check results over time
  • Alert and notification delivery status

1.4 Information from Third-Party Sources

We may receive information about you from publicly available sources, third-party databases, marketing partners, and other external sources to enhance our understanding of our customers and improve our services.

2. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data based on the following legal grounds:

  • Contractual Necessity: Processing is necessary to perform our contract with you (e.g., providing the monitoring services you purchased)
  • Legitimate Interests: Processing is necessary for our legitimate business interests, such as improving our services, preventing fraud, and ensuring network security
  • Legal Obligations: Processing is necessary to comply with our legal obligations
  • Consent: Where we have obtained your explicit consent to process your personal data for specific purposes

You have the right to withdraw consent at any time where we rely on consent as the legal basis for processing.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Provide, operate, maintain, and improve our monitoring services
  • Process your transactions and send you related information including purchase confirmations and invoices
  • Send you monitoring alerts, notifications, and reports based on your configured preferences
  • Send you technical notices, security alerts, updates, and support messages
  • Respond to your comments, questions, and customer service requests
  • Conduct research, analytics, and generate aggregate statistics about Service usage
  • Monitor and analyze trends, usage patterns, and activities to improve user experience
  • Diagnose technical problems and maintain system security
  • Detect, investigate, and prevent fraudulent transactions, unauthorized access, and other illegal activities
  • Comply with legal obligations, enforce our Terms of Service, and protect our rights and property
  • Send you marketing communications about products, services, and events (with your consent where required)
  • Fulfill any other purpose disclosed to you at the time of collection

4. Information Sharing and Disclosure

We do not sell, rent, or commercially exploit your personal information. We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party vendors, consultants, and service providers who perform services on our behalf, including:

  • Payment processing (Stripe, PayPal)
  • Email delivery and communication services
  • Cloud hosting and infrastructure providers
  • Analytics and monitoring services
  • Customer support platforms

These service providers are contractually obligated to protect your data and use it only for the purposes we specify.

4.2 Legal Requirements and Protection

We may disclose your information if required to do so by law or in response to:

  • Valid legal process (subpoena, court order, search warrant)
  • Government or regulatory requests
  • Protect the safety, rights, or property of Generator Labs, our users, or the public
  • Detect, prevent, or investigate security incidents, fraud, or illegal activity
  • Enforce our Terms of Service or other agreements

4.3 Business Transfers

If Generator Labs is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change in ownership or control of your personal information.

4.4 With Your Consent

We may share your information with third parties when you give us your explicit consent or direct us to do so.

4.5 Aggregate and De-identified Data

We may share aggregated or de-identified information that cannot reasonably be used to identify you for research, marketing, analytics, or other purposes.

5. Data Security

We implement comprehensive technical, administrative, and organizational security measures to protect your personal information:

  • Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL. Sensitive data at rest is encrypted using industry-standard encryption algorithms.
  • Access Controls: Strict access controls limit who can access personal information. Access is granted on a need-to-know basis and protected by multi-factor authentication.
  • Security Assessments: Regular security audits, vulnerability assessments, and penetration testing by qualified security professionals.
  • Employee Training: All employees receive training on data protection, privacy, and security best practices.
  • Secure Development: Security is integrated into our software development lifecycle with code reviews and security testing.
  • Incident Response: We maintain an incident response plan to quickly address any security incidents.
  • Infrastructure Security: Our infrastructure is hosted with reputable cloud providers that maintain industry-standard security certifications.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Our retention practices include:

  • Active Accounts: We retain your information for as long as your account remains active or as needed to provide you services.
  • Monitoring Data: Historical monitoring data is retained according to your plan and account settings. You can configure retention periods in your account settings.
  • Legal Obligations: We retain information as necessary to comply with legal obligations, tax requirements, and regulatory obligations.
  • Dispute Resolution: Information may be retained to resolve disputes, enforce our agreements, and protect our legal rights.
  • After Account Closure: When you close your account, we may retain certain information for a reasonable period to prevent fraud, collect fees, resolve disputes, and comply with legal requirements.

When personal information is no longer needed, we securely delete or anonymize it in accordance with our data retention policies.

7. Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect information and improve our Service:

7.1 Types of Cookies We Use

  • Essential Cookies: Necessary for the Service to function, including authentication and security cookies that keep you logged in.
  • Preference Cookies: Remember your settings, preferences, and choices to provide a personalized experience.
  • Analytics Cookies: Help us understand how visitors use our Service, which pages are popular, and how users navigate our site.
  • Performance Cookies: Collect information about Service performance to help us improve functionality and user experience.

7.2 Managing Cookies

Most web browsers are set to accept cookies by default. You can usually choose to set your browser to remove or reject cookies. Please note that if you choose to remove or reject cookies, this may affect the availability and functionality of our Service. You may not be able to log in or use certain features.

8. Your Privacy Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

8.1 General Rights

  • Access: Request access to the personal information we hold about you and receive a copy of it.
  • Correction: Request that we correct, update, or amend inaccurate or incomplete personal information.
  • Deletion: Request deletion of your personal information, subject to certain legal exceptions.
  • Portability: Request that we transfer your information to another organization or directly to you in a structured, commonly used format.
  • Restriction: Request that we limit the use or disclosure of your personal information in certain circumstances.
  • Objection: Object to our processing of your personal information based on legitimate interests.
  • Withdraw Consent: Withdraw your consent to processing where we rely on consent as the legal basis.

8.2 Marketing Communications

You can opt out of receiving promotional emails by:

Please note that even if you opt out of marketing communications, we will still send you transactional and service-related messages necessary to provide our Service (e.g., monitoring alerts, account notifications, security updates).

8.3 Exercising Your Rights

To exercise any of these rights, please contact us at legal@generatorlabs.com with your request. We will respond to your request within thirty (30) days. We may need to verify your identity before processing your request to ensure the security of your personal information.

9. International Data Transfers

Your information may be transferred to, stored, and processed in countries other than your country of residence, including the United States and Canada, where our servers and service providers are located. These countries may have different data protection laws than your country.

When we transfer personal information from the EEA, UK, or Switzerland to other countries, we implement appropriate safeguards, including:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions recognizing equivalent data protection
  • Other legally approved transfer mechanisms

10. Children's Privacy

Our Service is not intended for, and we do not knowingly collect personal information from, individuals under the age of 18. If we learn that we have collected personal information from a child under 18, we will delete that information as quickly as possible. If you believe we have collected information from a child under 18, please contact us immediately at legal@generatorlabs.com.

11. Sensitive Personal Information

We do not intentionally collect sensitive personal information such as Social Security numbers, financial account information, health information, genetic data, biometric data, or information about racial or ethnic origin, political opinions, religious beliefs, or sexual orientation. Please do not submit such information through our Service.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Post the updated Privacy Policy on this page
  • Update the "Effective Date" at the top of this policy
  • Notify you via email or through a prominent notice on our Service

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information. Your continued use of the Service after changes become effective constitutes acceptance of the revised Privacy Policy.

13. Region-Specific Privacy Information

13.1 European Economic Area (EEA), United Kingdom, and Switzerland

If you are located in the EEA, UK, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR) and equivalent laws:

  • Data Protection Officer: You may contact our privacy team at legal@generatorlabs.com for any GDPR-related inquiries.
  • Legal Basis: See Section 2 above for our legal bases for processing your personal data.
  • Rights: You have the rights described in Section 8 above, including access, rectification, erasure, restriction, portability, and objection.
  • Automated Decision-Making: We do not use automated decision-making or profiling that produces legal or similarly significant effects.
  • Supervisory Authority: You have the right to lodge a complaint with your local data protection authority if you believe we have violated your privacy rights. Contact information for EU data protection authorities is available at https://edpb.europa.eu/.

13.2 California Residents (CCPA/CPRA)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Categories of Personal Information Collected

We collect the following categories of personal information (see Section 1 for details):

  • Identifiers (name, email, IP address)
  • Commercial information (purchase history, account information)
  • Internet or network activity (browsing history, usage data)
  • Geolocation data (approximate location based on IP address)
  • Professional or employment-related information (company name, job title)

Your California Rights

  • Right to Know: Request disclosure of what personal information we collect, use, disclose, and sell.
  • Right to Delete: Request deletion of your personal information, subject to certain exceptions.
  • Right to Correct: Request correction of inaccurate personal information.
  • Right to Opt-Out of Sale/Sharing: We do not sell or share personal information as defined by the CCPA.
  • Right to Limit Use of Sensitive Personal Information: We do not collect or use sensitive personal information beyond what is necessary to provide our services.
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights.

Exercising California Rights

To exercise your California privacy rights, email us at legal@generatorlabs.com or use our contact form. We will verify your identity before processing your request and respond within 45 days.

Shine the Light

California Civil Code Section 1798.83 permits California residents to request information about disclosures of personal information to third parties for direct marketing purposes. We do not disclose personal information to third parties for their direct marketing purposes.

14. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

We will respond to all privacy-related inquiries within thirty (30) days.