epok
Live demoStart trial

Privacy Policy

Last updated: March 2026

1. Information We Collect

Account Information

When you sign in with Google, we receive your name, email address, and profile picture. We use this to create and manage your account.

Log Data

You send log data to Epok for storage and analysis. This data may contain application logs, system metrics, trace IDs, and other operational data from your infrastructure. We process this data solely to provide our service.

Usage Data

We collect basic usage information such as pages visited, features used, and API calls made. This helps us improve the Service.

2. How We Use Your Data

  • To provide, maintain, and improve the Service
  • To run anomaly detection, alerting, and pattern analysis on your logs
  • To send you alerts and notifications you have configured
  • To communicate service updates and security notices
  • To provide customer support

3. Data Isolation

Each tenant's data is logically isolated. Your log data is never shared with, visible to, or accessible by other tenants. All queries and API requests are scoped to your tenant.

4. Data Retention

Log data is retained according to your plan's retention period (14 days on Trial, 30 days on Team and Growth). After the retention window, data is automatically and permanently deleted. Account information is retained as long as your account is active.

5. Data Location

Your log data is stored in the European Union (Helsinki, Finland) on infrastructure operated by a reputable EU data-center provider. Account data and metadata are stored in the same region. The Company is incorporated in Bangalore, India. By using the Service, you consent to the processing of your data in both the EU and India as necessary to operate the Service.

6. Subprocessors

We use the following third-party services to operate Epok:

  • EU data-center provider (Germany/Finland) — Infrastructure and compute (specific provider disclosed under NDA for enterprise customers)
  • Cloudflare (Global) — CDN, DNS, DDoS protection, and TLS termination
  • Google OAuth (US) — Authentication only; we receive name and email
  • PostHog (US/EU) — Product analytics (page views, feature usage)
  • New Relic (US) — Infrastructure monitoring
  • Sentry (US) — Error tracking for the Service itself
  • Paddle (UK/US) — Subscription billing and payment processing (merchant of record)

We do not share your log data with any subprocessor. Subprocessors only receive the minimum data necessary for their specific function (e.g., Cloudflare sees request metadata, not log content).

7. AI Data Processing

On paid tiers, Epok uses a third-party large language model (LLM) to generate root cause analysis explanations and suggested actions. When this feature is active, relevant log patterns and error messages from your data may be sent to the LLM provider for processing. Your log data is not used to train the LLM and is not retained by the provider beyond the standard abuse-monitoring window. Statistical detection and rule packs run entirely within our infrastructure and never involve external AI providers.

8. Data Sharing

We do not sell your data. We may share data only in the following cases:

  • With your consent
  • To comply with legal obligations or valid legal process
  • To protect the rights, safety, or property of Epok, our users, or the public
  • With subprocessors listed above, limited to their specific function

9. Security

We use industry-standard security practices to protect your data, including encryption in transit (TLS), secure authentication (OAuth 2.0, JWT), and access controls. No system is 100% secure, and we cannot guarantee absolute security.

In the event of a data breach that affects your personal data or log data, we will notify you via email within 72 hours of becoming aware of the breach, consistent with GDPR requirements.

10. Cookies and Analytics

We use essential cookies for authentication (session tokens). We do not use advertising or third-party tracking cookies.

We use PostHog for product analytics to understand how features are used and improve the Service. PostHog collects page views, button clicks, and feature usage data. This data is associated with your account but does not include the contents of your log data.

11. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your account and associated data
  • Export your data

To exercise these rights, contact us at support@getepok.dev. We will respond to rights requests within 30 days.

12. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or through the Service. Continued use after changes constitutes acceptance.

13. Contact

Questions about privacy? Contact us at:

Jyngle Technologies Pvt. Ltd.
Bangalore, Karnataka, India
support@getepok.dev