Information We Collect

Transparency is core to how we operate. This page details exactly what data we collect, why we collect it, how we protect it, and your rights regarding your information.

1. Introduction

Wp Admin is a professional WordPress administration and management service. To deliver secure, high-performance website maintenance, we must access and process certain types of information. We are committed to handling your data responsibly, lawfully, and transparently in compliance with GDPR, CCPA, and other applicable data protection regulations.

2. Information We Collect

We only collect data that is strictly necessary to provide, secure, and optimize your WordPress website. Our data collection falls into the following categories:

2.1 Account & Contact Information

  • Full name, business name, and job title
  • Email address and phone number for communication and support
  • Billing address and payment details (processed securely by third-party payment providers; we do not store full credit card numbers)

2.2 Technical & Usage Data

  • IP addresses, browser type, device information, and operating system
  • Server logs, error reports, and plugin/theme compatibility data
  • Site performance metrics (load times, uptime, resource usage)
  • Security scan results and vulnerability reports

2.3 Client Website Data

Important: As a WordPress management provider, we require secure access to your site to perform updates, backups, and security monitoring. This includes:
  • WordPress admin credentials (stored encrypted in our secure client portal)
  • FTP/SFTP or SSH access details
  • Database connections and hosting account information
  • Backup files, plugin/theme configurations, and site metadata

2.4 Communication & Support Records

  • Email correspondence, support ticket history, and meeting notes
  • Screen recordings or screenshots (only when explicitly authorized for troubleshooting)

3. How We Use Your Information

We process your data exclusively for the following purposes:

  • Service Delivery: Performing scheduled maintenance, updates, backups, and security patches.
  • Site Optimization: Analyzing performance metrics to improve speed, uptime, and user experience.
  • Security & Compliance: Monitoring for threats, malware, unauthorized access, and ensuring GDPR/CCPA compliance on your behalf.
  • Communication: Sending service alerts, monthly reports, invoices, and support responses.
  • Legal & Operational: Maintaining business records, preventing fraud, and fulfilling contractual obligations.

We do not sell, rent, or trade your personal or business information to third parties for marketing or advertising purposes.

4. Information Sharing & Disclosure

We share data only when strictly necessary and under binding confidentiality agreements:

  • Hosting & Infrastructure Providers: For secure storage and site deployment
  • Payment Processors: To handle billing securely (e.g., Stripe, PayPal)
  • Security & Monitoring Tools: Third-party services like Sucuri, Wordfence, or UptimeRobot (data processed under strict DPA terms)
  • Legal Requirements: If compelled by law, court order, or regulatory authority

We will never share your credentials, backups, or site data with unauthorized parties.

5. Data Security

We implement industry-standard technical and organizational measures to protect your information:

  • AES-256 encryption for data at rest and TLS 1.3 for data in transit
  • Strict role-based access control (RBAC) and multi-factor authentication (MFA) for our team
  • Regular security audits, penetration testing, and vulnerability assessments
  • Isolated staging environments for all plugin/theme updates before live deployment
  • Encrypted off-site backups with immutable retention policies

6. Data Retention

We retain your data only as long as necessary to fulfill our services and comply with legal obligations:

  • Active Clients: Data retained for the duration of the service agreement
  • Terminated Clients: Upon request, we securely delete all credentials, backups, and site data within 30 days, unless retention is required by law (typically 3-7 years for billing/tax records)
  • Support Records: Retained for 24 months post-termination for warranty and compliance purposes

7. Your Rights & Choices

Depending on your jurisdiction, you have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Correct inaccurate or incomplete information
  • Deletion: Request erasure of your data where legally permissible
  • Portability: Receive your data in a structured, machine-readable format
  • Opt-Out: Unsubscribe from marketing communications at any time (service-critical emails cannot be opted out)
  • Lodge a Complaint: File a grievance with your local data protection authority

To exercise any of these rights, contact us at privacy@wpadmin.com. We will respond within 30 days.

8. Children's Privacy

Wp Admin services are B2B-focused and not directed at individuals under 16. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected such data, please contact us immediately for removal.

9. International Data Transfers

Your data may be processed in countries outside your region. Where applicable, we rely on Standard Contractual Clauses (SCCs), adequacy decisions, or other legally recognized transfer mechanisms to ensure your data remains protected under global standards.

10. Updates to This Policy

We may update this page to reflect changes in our practices, technology, or legal requirements. Material changes will be communicated via email or a prominent notice on our dashboard. Continued use of our services constitutes acceptance of updated terms.

11. Contact Us

Have questions about your data, need to exercise your rights, or want to review our security practices?

Email: privacy@wpadmin.com
Support Portal: support.wpadmin.com
Mailing Address: Wp Admin Data Protection Officer, 123 Tech Lane, Suite 400, San Francisco, CA 94105, USA

Last Updated: October 2025 | Effective Date: October 1, 2025