Skip to main content

Overview

Escalation Policies define how Rootly notifies responders when an alert requires attention and what happens if that alert is not acknowledged in time. They are the backbone of on-call reliability—ensuring alerts reach a human, escalate predictably, and never fall through the cracks. An escalation policy answers three core questions:
  • Who should be notified first?
  • What should happen if no one responds?
  • How long should Rootly continue escalating before stopping?
Escalation Policies can be assigned to a Team or Service. When that Team or Service is paged, their assigned escalation policy will trigger.
Clean Shot2026 03 16at14 06 44@2x

Create an Escalation Policy

Escalation policies are created from the On-Call section of the web app. To create a new escalation policy:
  1. Navigate to On-Call → Escalation Policies
  2. Click + Add Escalation Policy
  3. Enter an Escalation Policy Name (required) and an optional description
When you create an escalation policy, a Default Escalation Path is automatically created with Audible notifications enabled. This default path cannot be deleted and acts as a fallback if no other escalation paths match.

Step 1: Who Do We Notify?

Some alerts resolve themselves quickly. If this is common, consider adding a short delay before the first escalation step so transient issues don’t immediately page responders.
This step defines who is initially responsible for responding when an alert is triggered. Rootly supports notifying:
  • Individual users
  • On-call schedules
  • Teams or team admins
  • Slack channels (for visibility)
  • Other escalation policies (via escalation targets)
Clean Shot2026 03 16at14 22 51@2x
When multiple responders are eligible, you may optionally enable Round Robin assignment. This prevents the same person from being repeatedly paged and helps distribute alert load fairly. Rootly offers two Round Robin strategies:
  • Alert-Based, which rotates ownership per alert
  • Cycle-Based, which rotates ownership on a fixed cycle
Learn more in the Round Robin documentation. If an alert needs to be handed off to another group, you can use an Escalate target. This triggers the destination team’s escalation policy in parallel, while the original policy continues executing.
If your alert source sends a re-trigger event, Rootly will re-page the responder who last acknowledged the alert. If the alert remains unacknowledged, escalation continues according to the policy’s steps.

Step 2: Add Escalation Steps

Escalation steps define what happens next if an alert is not acknowledged. Each step includes:
  • A delay (in minutes)
  • One or more notification targets
Delays start counting from the previous step (or alert creation for the first step). This allows escalation to widen gradually as urgency increases.
Clean Shot2026 03 16at14 24 31@2x
Each escalation path can also define an initial delay (up to one week) before the first escalation step begins. This path-level delay is separate from step-level delays.

Step 3: Configure Repeat Behavior

If an alert remains unacknowledged after all steps complete, you can choose to repeat the escalation policy. When enabled, Rootly restarts escalation from the beginning and continues until:
  • The alert is acknowledged, or
  • The repeat limit is reached
This is commonly used for high-severity alerts where acknowledgement is mandatory.
Clean Shot2026 03 16at14 25 53@2x

Step 4: Save and Assign the Policy

Saving the policy does not activate it. Escalation policies only run once they are assigned to a Service or Team: when the Service or Team are paged, their assigned escalation policy will trigger.
  1. Assign the escalation policy to a Team using the Owning team field.
    1. Note: Any admin of an Owning Team of an Escalation Policy will also inherit edit permissions for that Escalation Policy.
    Clean Shot2026 03 16at14 27 24@2x
  2. Assign the escalation policy to a Service from the Service Configuration section of the dashboard.
    Clean Shot2026 03 16at14 29 01@2x

Creating dynamic escalation paths

Escalation policies can contain multiple escalation paths, each with its own rules, steps, and notification behavior. Paths allow you to model scenarios such as:
  • Business hours vs after hours
  • High vs low urgency alerts
  • Different behavior based on alert metadata
Rootly evaluates paths top to bottom and selects the first matching path.
The Default Escalation Path is always positioned at the bottom and is used as a fallback when no other paths match. Each path can define:
  • Matching rules and time restrictions
  • An initial delay before escalation begins
  • Its own escalation steps and repeat behavior
  • Whether notifications are Audible or Quiet

Audible vs Quiet Notifications

Each escalation path is either Audible or Quiet:
  • Audible paths are designed to wake responders and trigger critical notifications
  • Quiet paths respect Do Not Disturb and are used for lower-urgency alerts
Audible and Quiet paths map directly to each user’s notification rules.
Learn more in Audible and Quiet Notifications.

Limits and Constraints

Escalation policies have a few important limits:
  • Maximum escalation levels: 20 per path
  • Maximum targets per level: 25
  • Repeat count: 1–9 cycles
  • Maximum delay per step: 10,080 minutes (1 week)
Keeping policies simple and within these bounds improves reliability and maintainability.

Edit or Delete an Escalation Policy

To edit or delete a policy:
  1. Navigate to On-Call → Escalation Policies
  2. Click the menu next to the policy
  3. Select Edit or Delete
Deleting an escalation policy is permanent. To disable a policy temporarily, unassign it from all teams and services instead.

Best Practices

  • Use short delays for high-severity alerts
  • Assign policies to services whenever ownership is clear
  • Avoid overly complex escalation trees
  • Test policies with non-critical alerts before production use
  • Use escalation paths to model time-based or urgency-based behavior

FAQs

Escalation continues through all steps and repeat cycles until the alert is acknowledged or the policy completes.
Yes. If an acknowledgment timeout is configured and expires without resolution, escalation may resume.
Yes. Using an Escalate target triggers the destination policy while the original policy continues in parallel.
No. Escalation policies page responders. Incident creation is controlled separately through alert routing and workflows.