Legal

Privacy Policy

How Pingwire handles your data, and the rights you have over it. Last updated July 17, 2026.

In short: Pingwire stores the account details, messages, API keys, and push subscriptions needed to deliver your notifications. We don’t sell your data, we encrypt traffic in transit, and you can export or delete your data at any time.

Who we are

Pingwire is a developer-first messaging and notification platform that lets you send messages, alerts, and reminders into a real-time chat — from servers, scripts, CLIs, and cron jobs — via REST API, webhooks, a CLI, and an MCP server, with web push notifications.

The service at pingwire.dev is operated by BRANDISTRIES LLC, which is the data controller for personal data processed through the hosted service:

  • BRANDISTRIES LLC
  • 2230 Route 70 W Ste 2, Cherry Hill, NJ 08002-3338, USA
  • Contact: privacy@pingwire.dev

Data we collect

We collect only what we need to run the service:

  • Account data: your email address, username, display name, and a securely hashed password. We never store plaintext passwords.
  • Message content: the messages, alerts, and reminders you send and receive through Pingwire are stored so they can be delivered and displayed in your chats and channels.
  • API keys: the scoped API keys you generate, stored as hashes.
  • Channel & configuration data: the channels, webhook tokens, and reminder schedules you create.
  • Web push subscription data: the browser push endpoint and token (VAPID) used to deliver your notifications.
  • Technical data: IP address, browser/user-agent, and timestamps, collected for security, rate-limiting, and abuse prevention.
  • Payment data (if/when paid plans are active): handled by Stripe. We do not store full card numbers; Stripe processes the payment and we retain only a customer/subscription identifier.

How we use data

We use your data to:

  • Provide the service — deliver and display your messages, run scheduled reminders, and send web push notifications.
  • Authenticate you and keep your account secure.
  • Secure the platform, enforce rate limits, and prevent abuse.
  • Process subscriptions and payments where you use a paid plan.
  • Communicate essential service and account notices.

How data is shared

We do not sell personal data. We share data only with the sub-processors needed to operate the service:

  • Stripe — payment processing for paid plans.
  • Browser push services (e.g. Google FCM, Mozilla, Apple) — to deliver web push notifications to your devices.
  • Hosting & infrastructure providers — the servers on which Pingwire runs.

We may also disclose data if we are legally required to do so, for example to comply with a valid legal request.

Data retention

We retain your message and account data for as long as your account is active. After you delete your account, your personal data and message content are deleted or anonymized within 30 days, except where we are legally required to retain certain records.

Security

We protect your data with industry-standard measures:

  • TLS/HTTPS encryption for all traffic in transit.
  • Passwords stored only as secure hashes — never in plaintext.
  • Scoped API keys stored as hashes.
  • Server-side access controls on stored data.

No method of transmission or storage is perfectly secure, but we work to protect your data and to limit access to it.

Your rights & choices

You can access, export, correct, and delete your data:

  • Delete your account at any time from your account dashboard, which removes your profile and associated data.
  • Request deletion or a copy of your data by emailing privacy@pingwire.dev.

Depending on where you live, you may have additional rights under the GDPR (EU/UK) or CCPA/CPRA (California), including the rights to access, correct, delete, and port your data, and to object to or restrict certain processing. We honor these rights for applicable users — contact us to exercise them.

Children

Pingwire is not directed to or intended for anyone under 13 (or under 16 in regions where that age applies). We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, contact us and we will delete it.

International transfers

Pingwire is operated from the United States, and your data may be processed and stored in the United States. If you access the service from outside the U.S., you understand that your data may be transferred to and processed in the U.S.

Cookies & local storage

We use a single session cookie (pw_session) to keep you authenticated, plus any essential local storage the app needs to function. We do not use third-party advertising trackers or analytics cookies.

Changes to this policy

We may update this policy from time to time. When we do, we will revise the “Last updated” date above, and for material changes we will provide a more prominent notice.

Contact

Questions about this policy or your data? Reach the data controller:

  • Email: privacy@pingwire.dev
  • BRANDISTRIES LLC, 2230 Route 70 W Ste 2, Cherry Hill, NJ 08002-3338, USA

Privacy FAQ

Does Pingwire sell my data?

No. Pingwire does not sell or rent your personal data, and we do not run third-party advertising or tracking. We share data only with the processors needed to operate the service (such as Stripe for payments and your browser vendor’s push service for notifications), or where we are legally required to.

How do I delete my account and data?

You can delete your account at any time from your account dashboard. You may also email privacy@pingwire.dev to request deletion. Once an account is deleted, its personal data and message content are deleted or anonymized within 30 days, except where we are legally required to retain certain records.

Is my message content encrypted?

All traffic is encrypted in transit with TLS/HTTPS. Message content is stored on our servers so it can be delivered and displayed back to you in your chats and channels, protected by server-side access controls — it is not end-to-end encrypted.

Do you store my password?

We never store your password in plaintext. Passwords are kept only as a secure cryptographic hash, and the same applies to the scoped API keys you generate.

What happens to my data if I cancel?

If you cancel a paid plan but keep your account, your account and message data remain so you can keep using the service. If you delete your account, your data is deleted or anonymized within 30 days, except where retention is legally required.