Privacy Policy

This page is provided for product transparency and should be reviewed with qualified legal counsel before relying on it for your organization.

InstaWebhook processes account data, organization data, webhook event metadata, and webhook payloads needed to provide durable intake, inspection, retries, replay, monitoring, billing, and support.

Hosted storage mode stores encrypted payloads in InstaWebhook-managed PostgreSQL. BYO database mode stores payloads in a customer-controlled PostgreSQL schema while InstaWebhook stores operational metadata. Billing is handled by Polar.sh. Transactional email is handled by Resend.

We use essential session cookies and security storage for authentication. Data retention depends on your plan and configured deletion settings. Customers can export operational records, delete payload bodies, rotate secrets, disconnect BYO database connections, and request account or organization deletion.

Security controls include application-level encryption, secure session cookies, role-based access control, audit logs, webhook signing, payload limits, rate limits, export controls, and deletion controls.

Contact: privacy@instawebhook.com