Security & privacy
NetTools is a security product, so how we handle your data and credentials is part of the design, not an afterthought.
We don't store your credentials
- Monitoring needs none. Uptime, TLS, DNS, port, and Domain Health checks are outside-in — they look at your target the way the public internet does. No logins, no keys.
- Host agents push outward. The metrics agent sends data to us over HTTPS and never receives a connection; its token only permits metric pushes.
- SSH keys stay with you. On the desktop app, SSH credentials live in the OS keychain (or your 1Password/Bitwarden agent) — never on our servers. Host keys are pinned on first use (TOFU) so you're warned if a server's identity changes.
Passive by default
The lead-generation and health checks are passive: DNS lookups and plain requests against a target's own public records and website. No intrusive scanning, no enumeration, no login attempts. (The active scanners in the paid toolset are gated and guarded against private/internal targets.)
Data & GDPR
- We're an independent studio in Saarbrücken, Germany, operating under EU/German data-protection law.
- We practise data minimisation — we collect what a feature needs and no more.
- We don't sell your data. You can request deletion at any time.
- Full detail: Privacy Policy · Terms · Imprint.
Payments
Subscriptions are processed by Paddle as Merchant of Record — card details go to Paddle, never to us. See Plans & billing.
Reporting an issue
Found a security problem? Email [email protected] with the details and we'll respond quickly. Please don't publicly disclose before we've had a chance to fix it.