Privacy policy

Spike is operated by FatSync Software Private Limited (“Spike”, “we”, “us”, or “our”).

For privacy-related inquiries, please contact: [email protected]

1. Overview#

This Privacy Policy describes how we collect, use, process, and disclose personal information in connection with the Spike incident management and alerting platform (“Service”).

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect#

We may collect the following types of personal information:

  • Name
  • Email address
  • Phone number
  • Organization name
  • User account credentials
  • Incident-related content submitted through the platform
  • System metadata and logs
  • Integration data received from connected third-party services

When you connect third-party services (such as Google services), we may collect user data required to provide and improve the Service in accordance with your configuration.

3. How We Use Information#

We use personal information to:

  • Provide and operate the Service
  • Deliver notifications (email, SMS, integrations)
  • Manage user accounts and authentication
  • Maintain logs and audit trails
  • Provide customer support
  • Improve platform performance and reliability

We do not sell personal information.

4. Data Hosting and International Transfers#

Spike is operated by FatSync Software Private Limited, incorporated in India.

Our infrastructure and databases are hosted in the United States. Personal data may be processed and stored in the United States.

For customers located in the European Economic Area (EEA) or United Kingdom, transfers of personal data outside the EEA/UK are governed by appropriate safeguards, including the European Commission’s Standard Contractual Clauses (2021), as incorporated into our Data Processing Addendum.

5. Data Sharing#

We do not sell, trade, or rent personal data.

We share personal data only with trusted service providers (“subprocessors”) necessary to operate the Service. These include infrastructure hosting, database hosting, email delivery, and SMS delivery providers.

A current list of subprocessors is available at our GDPR page

We may disclose personal data if required by law or to protect our legal rights.

6. Data Retention#

We retain personal data for as long as necessary to provide the Service or comply with legal obligations.

Customers may request deletion of their data at any time by contacting [email protected]. Upon receiving a valid request, we will delete personal data within 30 days unless retention is legally required.

7. Data Subject Rights (GDPR)#

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data
  • Restrict processing
  • Object to processing
  • Request data portability

To exercise these rights, contact [email protected].

8. Log Data#

We may collect information sent by your browser or device when you access the Service. This may include IP address, browser type, browser version, pages visited, time and date of visit, and diagnostic data.

We use this information to improve system performance and reliability.

9. Cookies#

We use cookies and similar technologies to improve user experience and analyze usage. You may configure your browser to refuse cookies, though some parts of the Service may not function properly.

10. Security#

We implement administrative, technical, and organizational safeguards designed to protect personal data, including encryption in transit, encryption at rest, access controls, and monitoring practices.

11. Changes to This Policy#

We may update this Privacy Policy from time to time. Changes become effective upon posting on this page. Continued use of the Service after changes are posted constitutes acceptance of the revised policy.

× Zoomed Image