Privacy Policy
This Privacy Policy explains how PacketSense ("PacketSense", "we", "us") collects, uses and protects information when you use our plugin, websites and cloud services (the "Service"). We aim to collect only what we need to operate and secure the Service.
1. Information We Collect
- Account & billing data: your email and name, plan and license details, and subscription status. Payments are processed by Stripe; we do not store full card numbers.
- Site & security data (via the plugin, when you connect a site): site URL, WordPress/PHP versions, installed plugin inventory, security events (blocked requests, login attempts, scan findings, file hashes), and related IP addresses — used to provide protection, licensing and threat intelligence.
- Technical & usage data: log data, timestamps and diagnostic information needed to run and secure the Service.
2. How We Use Information
We use information to provide and improve the Service, deliver security features and updates, validate licenses and seats, process payments, prevent fraud and abuse, communicate with you, and comply with legal obligations.
3. Legal Bases
Where applicable (e.g. under the GDPR), we process personal data to perform our contract with you, for our legitimate interests in operating and securing the Service, to comply with law, and with your consent where required.
4. How We Share Information
We do not sell your personal data. We share it only with service providers acting on our behalf — for example Stripe (payments), and our email and hosting/infrastructure providers — and where required by law, to enforce our terms, or in connection with a corporate transaction. These providers are bound to protect the data.
5. Data Retention
We retain personal data for as long as needed to provide the Service and for legitimate business or legal purposes (such as tax and accounting), after which we delete or anonymise it. Security event logs are retained for a limited period appropriate to their purpose.
6. Security
We use technical and organisational measures to protect data, including encryption of sensitive secrets at rest, signed and authenticated communication between the plugin and the cloud, and access controls. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
7. Cookies
Our dashboard uses strictly necessary cookies to keep you signed in and to protect against cross-site request forgery. We do not use them for third-party advertising.
8. Your Rights
Depending on your location, you may have rights to access, correct, delete, export or restrict processing of your personal data, and to object or withdraw consent. To exercise these rights, contact us at privacy@packetsense.dev. You may also have the right to lodge a complaint with your local data-protection authority.
9. International Transfers
We may process and store information in countries other than yours. Where required, we use appropriate safeguards for such transfers.
10. Children's Privacy
The Service is not directed to children and is not intended for anyone under the age required to consent to processing in their jurisdiction. We do not knowingly collect data from children.
11. Changes to this Policy
We may update this Policy from time to time. Material changes will be posted here with a new "last updated" date.
12. Contact
Privacy questions or requests: privacy@packetsense.dev.