OpsKern OpsKern_

Privacy Policy

DRAFT — PENDING ATTORNEY REVIEW

Last updated: March 2026

Disclaimer: This policy is written in plain English to be transparent about our data practices. It is not a substitute for legal advice. If you have questions about your privacy rights, consult an attorney.

What We Collect

When you visit this website: Cloudflare Pages serves opskern.io. Cloudflare may collect standard web analytics (page views, country, browser type). We do not use tracking pixels or third-party analytics scripts on this site.

When you subscribe to the newsletter: Your email address, stored and managed by Beehiiv. You can unsubscribe at any time using the link at the bottom of every email. We do not sell or share your email with other parties.

When you purchase the ebook: Purchases are handled by Leanpub. We receive your name and email from Leanpub. Payment processing on Leanpub is handled by their payment provider — we do not receive your payment details from ebook purchases.

When you become a client: Name, email, billing address, and payment information. Payment processing is handled by Stripe. We never store credit card numbers.

When you use the client portal (portal.opskern.io): Once live, we will use session cookies to keep you logged in. These will be strictly functional — no tracking, no advertising. The portal will display your infrastructure status, alerts, and reports.

When we manage your infrastructure: We access your servers via Tailscale VPN to deploy monitoring, run playbooks, and perform remediation. We collect:

  • Server metrics: CPU, memory, disk, network usage (via Prometheus)
  • Logs: system and service logs (via Loki)
  • Alert history: what triggered, when, and how it was resolved
  • Backup status: success/failure records and integrity checks

We do not access, read, or collect your application data, databases, or user files unless you explicitly ask us to for troubleshooting.

How We Use It

  • Email: to send newsletters, status reports, incident notifications, and billing communications
  • Billing info: to process payments via Stripe
  • Server metrics: to monitor infrastructure health, trigger alerts, and generate reports in Grafana
  • Logs: to diagnose issues, verify backup integrity, and support remediation
  • Session cookies: to authenticate you on the client portal

Third-Party Services

We use the following third-party services that may process your data:

ServicePurposeData Shared
StripePayment processingName, email, billing address, payment method
CloudflareWebsite hosting and CDNIP address, browser info (standard web serving)
BeehiivNewsletter deliveryEmail address
LeanpubEbook salesName, email (from purchases)
HetznerClient server hostingServer data (if applicable to your setup)
TailscaleVPN for infrastructure accessDevice identifiers, network metadata

Certain operational processes use artificial intelligence systems for analysis and remediation (Managed tier only). AI systems may process server telemetry (metrics, logs, configuration state) to identify and resolve infrastructure issues. AI subprocessor details are available to paying clients under separate confidentiality agreement.

We do not sell, rent, or share your personal data with anyone beyond what is listed above.

Cookies

Once the client portal launches, we will use cookies on portal.opskern.io for session management (keeping you logged in). These will be:

  • Strictly necessary — the portal will not function without them
  • First-party only — no third-party cookies
  • Session-based — they expire when you log out or after a period of inactivity

The main website (opskern.io) does not set cookies. The portal is not yet live.

Data Retention

  • Newsletter subscribers: until you unsubscribe, then deleted from Beehiiv
  • Client server metrics: 90 days (Prometheus retention)
  • Client logs: 90 days (Loki retention)
  • Backups: per your tier’s retention policy (7–30 days)
  • Billing records: as required by tax law (typically 7 years)
  • Portal session data: cleared on logout or after inactivity timeout
  • Ebook purchase records: retained by Leanpub per their policy

Your Privacy Rights

Connecticut Data Privacy Act (CTDPA)

If you are a Connecticut resident, you have the right to:

  • Access: request a copy of the personal data we hold about you
  • Correction: request that we correct inaccurate personal data
  • Deletion: request that we delete your personal data
  • Portability: receive your data in a portable, commonly used format
  • Opt out: opt out of the sale of your personal data (we do not sell personal data), targeted advertising (we do not run targeted ads), or profiling (we do not profile users)

California Consumer Privacy Act (CCPA)

If you are a California resident, you have similar rights under the CCPA, including the right to know what personal information we collect, request deletion, and opt out of any sale of personal information. We do not sell personal information.

European Economic Area (EEA) and EU Residents

OpsKern is a US-based company. If you are located in the EU or EEA, additional data protection requirements under the General Data Protection Regulation (GDPR) apply. At this time, EU/EEA registration requires a signed Data Processing Agreement (DPA) before services can begin. Contact support@opskern.io for DPA availability.

You have the right to access, rectify, erase, restrict processing, data portability, and object to processing of your personal data under GDPR. We will respond to GDPR requests within 30 days.

For All Users

Regardless of where you live, you can email support@opskern.io to:

  • Request a copy of your data
  • Request deletion of your data
  • Update your contact information
  • Opt out of non-essential communications

We will respond to data requests within 30 days.

Newsletter Opt-In and Opt-Out

  • Opt-in: Newsletter subscription is voluntary. We will never add you to the newsletter without your explicit consent (checking a box, submitting the subscribe form, etc.).
  • Opt-out: Every newsletter email includes an unsubscribe link at the bottom. Click it and you are removed immediately. You can also email support@opskern.io to be removed.
  • Unsubscribing from the newsletter does not affect your client account or managed services.

Security

All management traffic runs over Tailscale VPN. SSH uses key-only authentication. Backups are encrypted. Server access is limited to the minimum required for management. See our Security page for more details.

Children’s Privacy

Our services are not directed to anyone under 18. We do not knowingly collect personal data from minors.

Changes

We will update this page if our practices change. The “last updated” date at the top tells you when. For material changes, we will notify clients via email.

Contact

Questions about privacy or data requests: support@opskern.io

OpsKern LLC 8 The Green #21664 Dover, DE 19901

DRAFT — This document is pending attorney review. Privacy practices are subject to change before the effective date is set.