Privacy Policy

Last updated: February 28, 2026

Information We Collect

For free scans: We collect the URL you submit and store the scan results. No account or personal information is required.

For registered accounts: We collect your name, email address, and payment information (processed securely by Stripe). We also store your site URLs, scan results, and SSH connection details for deep scans (encrypted at rest).

How We Use Your Data

  • To perform the security scans you request
  • To display your scan results and history
  • To process payments via Stripe
  • To send cleanup status updates (if you purchase cleanup)
  • To improve our vulnerability detection accuracy

What We Don't Do

  • We never sell your data to third parties
  • We never access your WordPress admin during surface scans
  • We never store your payment card details (handled by Stripe)
  • We never share scan results publicly without your consent

Data Retention

Free scan results are retained for 90 days. Registered user data is retained until account deletion. You can request data deletion by contacting us.

Cookies

We use essential cookies for session management and scan history tracking. We do not use advertising or tracking cookies.

Security

All data is transmitted over HTTPS. SSH credentials for deep scans are encrypted at rest and deleted after the scan completes. Our servers are protected by firewalls, regular security updates, and access controls.

Contact

For privacy inquiries, contact us at privacy@wpvanguard.com.