Legal

Privacy Policy

Last updated: February 10, 2026

1. Who we are

Mission Watch (“we,” “our,” or “us”) provides monthly operations checkups for small nonprofits. This Privacy Policy explains how we collect, use, and protect the information we handle when you use missionwatch.app and related services.

2. Information we collect

  • Account information: your name, email address, and (hashed) password.
  • Organization details you provide: organization name, website URL, donation page URL, contact page URL, social links, and any custom links you ask us to monitor.
  • Team members you invite: email addresses of teammates you add to receive reports.
  • Report data: results of the automated checks we run against your public website (uptime, SSL status, page load, broken links, form detection, etc.).
  • Billing data: when you subscribe, our payment processor (Stripe) collects your card details directly. We never see or store your full card number.
  • Usage & log data: IP address, browser type, pages viewed, and timestamps for security and product improvement.

3. How we use your information

  • To run monitoring checks against the URLs you tell us to watch, and to generate your Mission Watch Score.
  • To email you monthly reports, instant issue alerts, and product notifications.
  • To process subscription payments via Stripe.
  • To generate AI-powered executive summaries and recommendations for your reports.
  • To secure the service, prevent abuse, and comply with legal obligations.

4. Automated monitoring

Mission Watch fetches your public web pages (like a search-engine crawler would) to check availability, security, and quality. We identify our crawler in the User-Agent string and respect standard rate limits. We do not attempt to access non-public content, log in to systems on your behalf, or bypass access controls.

5. AI processing

Your Mission Watch Score reports include an AI-generated executive summary. We send the report’s check results (not your account credentials or full URLs of gated content) to a large language model provider under a contract that prohibits training on your data. AI output is provided for guidance and may be imperfect.

6. Third parties we use

  • Stripe — payment processing (subject to Stripe’s privacy policy).
  • Resend — transactional email delivery.
  • MongoDB Atlas — encrypted data storage.
  • OpenAI — AI summary generation (no training on your data).

We do not sell or rent your personal information to anyone. Ever.

7. Data retention

We keep your account and report history for as long as your account is active. If you cancel, we retain limited billing records as required by law and delete monitoring data on request. Email hello@missionwatch.app to request deletion.

8. Security

Passwords are hashed with bcrypt. Data is transmitted over TLS. Access to production systems is restricted and logged. No system is perfectly secure — if you suspect an issue, please email us right away.

9. Your rights

Depending on where you live, you may have the right to access, correct, export, or delete your personal information. To exercise any of these rights, email hello@missionwatch.app and we’ll respond within 30 days.

10. Children

Mission Watch is not directed to children under 16. We do not knowingly collect personal information from children.

11. Changes to this policy

If we make material changes, we’ll email account owners and update the “Last updated” date above. Continued use of the service after changes means you accept the updated policy.

12. Contact us

Questions? Email hello@missionwatch.app.