Reliability & transparency

We hide nothing

Trust and money are on the line, so we describe our reliability in honest, verifiable terms — and publish the real numbers instead of promising them.

Reliability & Security

Because trust and money are on the line

Verifiable fundamentals instead of flashy promises — described only in honest terms.

Encryption at Rest

Payloads are encrypted at rest with AES-256-GCM and decrypted only in memory, exactly at fire time.

HMAC signing · key rotation

Every outgoing webhook carries an X-SendIt-Signature header — verify it in one line, and rotate signing secrets with zero downtime.

Automatic retries · DLQ

Up to five retries with exponential backoff; once exhausted, the job is safely isolated in a Dead Letter Queue.

SSRF protection

DNS is re-resolved just before firing to block private and metadata IPs, and redirects are never followed.

Punctuality

Measured, not promised

We record the actual fire time against the scheduled time on every send, then publish the real numbers. Second-level delivery with Early Firing — proven by data, not adjectives.

How we measure

Every send is timed against its schedule

At fire time we record fired_at against the scheduled moment and store the real offset on each delivery. Once enough live traffic accrues, the service-wide numbers appear here — the same figures you see on your own dashboard.

  • Second-level delivery. Webhooks fire on schedule, not on a best-effort delay queue.
  • Early Firing. We fire slightly early to offset round-trip latency, opt-in per send.
  • Published, not claimed. The offset we show is the measured value, never a guarantee.

Live service health is always on the status page.

Live status

Real-time service health

The same signals we watch internally — API, database, delivery queue, and the fire worker — straight from the live health checks.

Checking service status…Connecting…
    Webhooks queued
    Dead-letter backlog
    Last worker heartbeat
    Uptime — last 90 daysDaily history accrues as the service runs
    90 days agoToday

    Auto-refreshes every 30 seconds. These signals come straight from the live service health checks.

    Open the full status page