Data Retention and Privacy

Understanding how SSHwatch handles your data is crucial for maintaining security and compliance. This guide explains our data retention policies, privacy measures, and the controls available to you for managing your information.

Data Retention Periods

SSHwatch implements different retention periods based on subscription levels to balance security needs with system performance. Free plan users can access their SSH log entries, security assessments, and related data for 7 days. This retention period extends to 60 days for Pro plan subscribers, providing more extensive historical analysis capabilities. Enterprise users benefit from the longest retention period of 180 days, enabling comprehensive long-term security analysis and compliance documentation.

Data Collection Scope

Our system carefully limits data collection to essential security monitoring information. When monitoring SSH activity, we record the timestamp of each login attempt, the source IP address and port used, and the username associated with the attempt. We also maintain records of whether each attempt succeeded or failed, along with the server identifier and the authentication method used. This information enables effective security monitoring while respecting privacy boundaries.

It's important to note what we don't collect. SSHwatch never records the content of SSH sessions, user passwords, or private key data. We also don't collect information about your server's file system or internal network configuration. This approach ensures we maintain the security information you need while protecting sensitive operational data.

Getting Help

If you have specific questions about how we handle your data, our support team is available to help. We can provide detailed information about data handling practices, help you understand how to best manage your data within our system, and address any privacy concerns you may have.