Back to Legal Hub

Privacy Policy

Last Updated: March 1, 2026

This Privacy Statement explains how PMC Org.936901379, operating as IsItMonitored ("we", "us", or "our"), collects, uses, discloses, and protects the personal information you entrust to us when using our website and services.

1. Purpose and Scope

We respect your privacy and are committed to protecting your personal data. This policy applies to information we collect when you use our website (isitmonitored.com), our application, and related services.

"Personal Information" means any information about an identified or identifiable individual, such as your name, email address, or online identifiers.

2. Information We Collect

We collect information necessary to provide our services, including:

  • Account Information: When you register or are invited to the platform, we collect your name and email address.
  • Verification Data: We process email addresses and domain information to perform requested verification checks.
  • Usage Data: We collect information on how you interact with our services, such as login times, pages visited, and actions taken (e.g., campaigns created).
  • Device Information: We may collect technical data such as your IP address, browser type, and operating system for security and troubleshooting.
  • Error and Performance Data: We collect technical error reports and performance metrics to diagnose issues and improve the reliability of the platform.

3. Legal Basis for Processing (GDPR)

As a Norwegian entity operating within the European Economic Area (EEA), we process personal data in accordance with the General Data Protection Regulation (GDPR). Our legal bases for processing are:

  • Contractual Necessity (Art. 6(1)(b)): Processing is necessary to provide the Services you have subscribed to, including sending verification emails, generating certificates, and managing your account.
  • Legitimate Interest (Art. 6(1)(f)): Processing is necessary for our legitimate interests, such as platform security, fraud prevention, error monitoring, usage analytics, and improving the quality of our Services. We balance these interests against your rights and freedoms.
  • Legal Obligation (Art. 6(1)(c)): Processing may be necessary to comply with applicable legal obligations, such as tax, accounting, or regulatory requirements.
  • Consent (Art. 6(1)(a)): Where required, we will obtain your explicit consent before processing your data for specific purposes (e.g., marketing communications). You may withdraw consent at any time.

4. How We Use Your Information

We use your information to:

  • Provide, operate, and maintain our services.
  • Process verification requests and generate reports/certificates.
  • Authenticate users and secure access to accounts.
  • Monitor application errors and performance to ensure reliability.
  • Analyze usage patterns to improve the platform experience.
  • Communicate with you regarding updates, security alerts, and support.
  • Comply with legal obligations and enforce our Terms of Service.

5. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and enable functionality (such as keeping you logged in). For a full list of cookies we use, their purpose, and how to manage them, please see our Cookie Policy.

6. Third-Party Service Providers

We may share data with trusted third-party providers who assist us in operating our services. These providers are bound by confidentiality agreements and data protection laws. Key providers include:

  • Amazon Web Services (AWS) / Supabase: For cloud hosting and database services.
  • Resend: For transactional email delivery.
  • Vercel: For web hosting, deployment, and usage analytics.
  • Sentry: For application error monitoring and performance tracking.

7. International Data Transfers

Some of our third-party service providers may process your data outside the European Economic Area (EEA). In such cases, we ensure that appropriate safeguards are in place to protect your personal data, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • Adequacy decisions by the European Commission for the recipient country.
  • Other appropriate safeguards as permitted under GDPR Art. 46.

8. Data Retention

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. Account information is retained while your account is active. Verification logs are retained in accordance with your subscription plan's data retention period. Upon account termination, your data will be retained for 30 days and then permanently deleted, unless retention is required by law.

9. Your Rights

Under the GDPR and applicable Norwegian data protection law, you have the following rights regarding your personal data:

  • Access: Request access to the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data ("Right to be Forgotten"), subject to legal retention requirements.
  • Object/Restrict: Object to or request restriction of processing.
  • Portability: Request transfer of your data to another service in a structured, commonly used format.
  • Withdraw Consent: Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of prior processing.

To exercise these rights, please contact us at legal@isitmonitored.com. We will respond to your request within 30 days.

You also have the right to lodge a complaint with the Norwegian Data Protection Authority (Datatilsynet) if you believe your rights have been infringed. More information is available at datatilsynet.no.

10. Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no internet transmission is completely secure, and we cannot guarantee absolute security.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. If we make material changes, we will notify you by email or by posting a prominent notice on our platform at least 14 days before the changes take effect. We will also update the "Last Updated" date at the top of this page. Your continued use of the Services after the effective date constitutes acceptance of the revised policy.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

PMC Org.936901379, operating as IsItMonitored
Oslo, Norway
Email: legal@isitmonitored.com