Rognix
Legal

Privacy Policy

Last updated: 2026-05-02

Rognix Labs ("Rognix," "we," "us") provides infrastructure intelligence services. This Privacy Policy explains what we collect from customers and visitors, how we use it, who we share it with, and the rights you have over it. We aim for the absolute minimum data collection consistent with running the product.

What we collect

From your account

  • Email address, optional display name, organization name.
  • Hashed password (argon2id; the plaintext never leaves your browser).
  • Session metadata: IP address, user agent, login timestamps. Used to detect abuse and let you sign out other devices.
  • Billing info handled exclusively by Stripe, we receive only a customer ID and subscription status, never card details.

From your infrastructure

  • Numeric resource and health metrics from each connected server: CPU, memory, disk, network, process counts, SMART hardware telemetry.
  • Server identity: hostname, OS, CPU model, total RAM/disk, IP (private). No content of files, no environment variables, no application secrets.
  • Insights, actions, and events generated by the platform and your team within Rognix.

What we don't collect

We deliberately do not collect: log file content, environment variables, application-layer data, request bodies, database content, or anything specific to the workloads you run. The collector is open about its scope, see the docs.

How we use it

  • Run the product: detect anomalies, generate insights, deliver notifications you've requested.
  • Bill correctly: enforce plan limits and process subscription payments through Stripe.
  • Improve safely: aggregate, anonymized analytics on platform-level patterns. Never on identifying customer data.
  • Communicate: transactional email (account changes, billing, opted-in alerts). No marketing without explicit consent.

Where it lives

All metric and account data is stored on infrastructure operated by Rognix in Europe (Frankfurt region). Backups are encrypted at rest with AES-256 and stored in a separate region. Stripe processes billing data independently per their privacy practices.

Who we share with

We do not sell, rent, or trade personal data. We share only with:

  • Stripe, payment processing.
  • Resend, transactional email delivery.
  • Cloudflare (planned), DDoS protection and CDN.
  • Authorities, when legally compelled. We will challenge overbroad requests and notify you when not prohibited.

Your rights

You can:

  • Export your data, email privacy@rognix.com.
  • Delete your account and all associated data, Settings → Account → Delete, or by email request. Deletion is irreversible and propagates to backups within 30 days.
  • Opt out of non-essential email at any time.
  • Object to or restrict processing under GDPR / CCPA where applicable.

Cookies

We use a minimal set of cookies strictly necessary for authentication (rgx_at, rgx_rt). We do not use tracking, advertising, or third-party analytics cookies on rognix.com.

Security

See our Security page for the full posture. Vulnerability reports go to security@rognix.com.

Changes to this policy

We'll notify customers by email of any material change at least 14 days before it takes effect. Continued use after that date constitutes acceptance.

Contact

Rognix Labs, hello@rognix.com. Privacy-specific questions: privacy@rognix.com.