Privacy policy.

Tl;dr

We hold three things: your account profile (via Clerk), your workspace's BigQuery service account JSON (encrypted at rest in Cloudflare KV), and a 30-day rolling archive of the events you send us (in R2, workspace-prefixed). We don't sell your data, don't share it with third parties for marketing, and don't read the contents of your webhook payloads beyond the schema-observer's path scan.

What we collect

From you directly: name, email, organization name (via Clerk during signup). From your usage: webhook payloads sent to your endpoints, retained in R2 for 30 days by default (configurable). From your browser: standard server logs (IP, user agent, request path, timestamp) retained for 14 days.

How we use it

To operate Hooktopus: route your webhooks, write to your warehouse, send drift alerts, charge you on the plan you picked. We don't run ads. We don't use your event payloads to train models. We don't share workspace data between customers.

Subprocessors

• Cloudflare — Workers, R2, D1, KV, Queues (hosting + compute + storage)
• Clerk — authentication, organizations
• Stripe — billing
• Resend — transactional email
• Hookdeck — webhook signature verification (ingress only)
• Better Stack — uptime monitoring + log tail

Your rights

Access, export, deletion: email privacy@hooktopus.io from your registered email and we'll respond within 30 days. GDPR right-to-erasure deletes workspace-prefixed R2 objects and D1 rows. We can't delete data already written to your own BigQuery — that's your data, in your warehouse.

Contact

Hooktopus, Inc · San Francisco, CA · privacy@hooktopus.io