Privacy Policy

1. Introduction

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our WordPress and static site hosting platform ("Service"). Please read this policy carefully to understand our practices regarding your personal data.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, and contact details when you create an account
• Billing Information: Payment details processed through our third-party payment providers
• Website Content: Content you upload to your hosted websites, including text, images, and media files
• Support Communications: Information you provide when contacting our support team

2.2 Information Collected Automatically

• Access Logs: IP addresses, browser type, operating system, referring URLs, and pages visited
• Usage Data: Website traffic patterns, resource utilisation, and performance metrics
• Authentication Data: Login timestamps and session information for security purposes

2.3 Information from Third Parties

• Google Identity Platform: Email address and profile information when authenticating via Google OAuth
• reCAPTCHA: Risk assessment data for spam prevention on contact forms

3. How We Use Your Information

We use collected information to:

• Provide, maintain, and improve our hosting services
• Process transactions and send related information
• Send administrative notifications about your account or service changes
• Respond to support requests and communications
• Monitor and analyse usage patterns to improve user experience
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations

4. Data Storage and Security

4.1 Storage Location

Your data is stored on Google Cloud Platform infrastructure located in Europe (europe-west2, London). This includes:

• Website files and databases
• Backup data
• Access logs and metrics

4.2 Security Measures

We implement appropriate technical and organisational measures to protect your data:

• Encryption in transit (TLS/SSL) and at rest
• Identity-Aware Proxy (IAP) for administrative access
• Regular automated backups with 28-day retention
• Network security policies and firewalls
• Access controls and audit logging

4.3 Data Retention

• Active accounts: Data retained for the duration of your service agreement
• Backups: Retained for 28 days
• Access logs: Retained for 30 days
• Deleted accounts: Data removed within 30 days of account termination, except where legal retention is required

5. Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

5.1 Service Providers

Third parties that assist in providing our services:

• Google Cloud Platform: Infrastructure hosting
• Brevo: Transactional email delivery
• Zoho Desk: Customer support ticketing (if enabled)

5.2 Legal Requirements

We may disclose information if required by law or in response to valid legal requests from public authorities.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

6. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data (subject to legal retention requirements)
• Portability: Request transfer of your data in a machine-readable format
• Objection: Object to processing of your data in certain circumstances
• Restriction: Request limitation of processing in certain circumstances

To exercise these rights, contact us using the details in Section 10.

7. Cookies and Tracking

This page provides comprehensive information about how we use cookies on our website to enhance your browsing experience, improve website performance, and deliver personalized content. Cookies are small text files that are stored on your device when you visit our site. They help us understand how visitors interact with our website, allowing us to offer a smoother and more efficient user experience.

We use essential cookies for site functionality and may use analytics cookies to understand how visitors use our site. Third-party services (like reCAPTCHA) may also set cookies as part of their functionality.

8. Children's Privacy

Our Service is not intended for individuals under 16 years of age. We do not knowingly collect personal information from children.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on our platform and updating the "Last Updated" date.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:

• Email: admin@wpops.land
• Support Portal: Available through the admin dashboard

11. Data Protection Officer

For GDPR-related enquiries, you may contact our Data Protection Officer at dpo@wpops.land.