Privacy Policy

Last updated: May 2026

1. Who we are

DomainOps is operated by Libriate, a trading name of Bluberrie Digital Ltd, a company registered in England & Wales. Registered address and company number are available at libriate.com.

For data protection queries, contact us at [email protected].

2. Data we collect

  • Account information — name, email address, password hash, timezone, team membership.
  • Domain & endpoint data — domain names, WHOIS records, SSL certificate details, DNS records, endpoint URLs, liveness check results, and exposure scan findings that you configure for monitoring.
  • Usage analytics — anonymous page-view data collected via cookies, only with your explicit consent.
  • Billing information — payment details are processed by Stripe and are not stored on our servers.
  • Communication data — notification delivery logs (channel, timestamp, status).
  • Marketing-consent records — when you opt in to product-tip emails (e.g. via the free-tools capture form), we record the timestamp, a hash of your IP address, and the version of the consent text shown to you. This audit trail is required under UK GDPR.

3. How we use your data

  • To provide domain monitoring, endpoint testing, and exposure scanning services.
  • To calculate health scores and send notifications about expiring domains, failing endpoints, and security findings.
  • To manage your account, team membership, and billing.
  • To improve the product based on anonymous usage patterns (only with consent).
  • To send marketing emails about product features, monitoring tips, and tooling updates — only if you have explicitly opted in. Lawful basis: consent (UK GDPR Art. 6(1)(a)).

4. Third-party services

We use the following third-party services to deliver DomainOps:

  • Supabase — database and authentication infrastructure.
  • Mailjet — transactional email delivery (login links, expiry alerts, notifications) and, for users who have opted in, marketing email delivery.
  • Stripe — payment processing for subscriptions.
  • Analytics provider — anonymous usage analytics (only with consent).

Each provider processes data in accordance with their own privacy policies. We do not sell your data to any third party.

5. Marketing emails — withdrawing consent

If you opted in to marketing emails (typically via a checkbox on a free-tool form), every email you receive will include a one-click unsubscribe link in the email headers (so Gmail, Apple Mail, and similar clients can show an “Unsubscribe” button at the top of the message) and a visible unsubscribe link in the body. Clicking either withdraws consent immediately and we will not send you further marketing emails.

Withdrawing marketing consent does not affect transactional emails. You will still receive login links, billing receipts, and alerts about your monitored domains — those are required to operate the service you signed up for and are sent under a different lawful basis (contract, UK GDPR Art. 6(1)(b)).

You can also withdraw consent at any time by emailing [email protected].

6. Cookies

We use a single analytics cookie (ga_consent) to remember your consent preference. If you consent, anonymous page-view data is collected to help us improve the product. You can withdraw consent at any time by clearing your browser cookies.

7. Data retention

We retain your account data for as long as your account is active. Domain monitoring data, health scores, and notification logs are retained for up to 12 months. If you delete your account, your personal data is removed within 30 days. Anonymised aggregated data may be retained indefinitely.

8. Your rights

Under UK GDPR, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate personal data.
  • Request deletion of your personal data.
  • Export your data in a portable format.
  • Object to or restrict processing of your data.
  • Withdraw consent for analytics or marketing emails at any time.

To exercise any of these rights, contact [email protected].

9. Data security

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS), hashed API tokens (SHA-256), role-based access controls, and regular security scanning of our own infrastructure.

10. Changes to this policy

We may update this privacy policy from time to time. Material changes will be communicated via email or an in-app notification. Continued use of the service after changes constitutes acceptance.

11. Contact

Libriate, a trading name of Bluberrie Digital Ltd
Email: [email protected]
Website: libriate.com