WordPress plugins — built for real businesses

Privacy & data protection

Privacy Policy

This Privacy Policy explains how WPMEGAHOST EOOD (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit wpsupporting.com, create an account, download plugins, or use our services. We process personal data in accordance with the EU General Data Protection Regulation (GDPR).

Last updated: 24 November 2025
GDPR compliant WordPress plugins & services Transparency & control
1

Data Controller (Who we are)

Identity

Company: WPMEGAHOST EOOD (ВПМЕГАХОСТ ЕООД)
EIK / UIC: 208321582
VAT Number: BG208321582
Registered address: Bulgaria, Dobrich 9300, 12 Zahari Stoyanov St., entrance B, floor 2, ap. 3
Email: support@wpsupporting.com
Website: wpsupporting.com

If you have questions about this policy or your data, contact us at support@wpsupporting.com.

2

What data we collect

Categories

2.1 Data you provide directly

  • Account data: name, email, username, password (stored as a secure hash), country, company details and VAT number if you add them.
  • Downloads/checkout data (including free products): name, email, country, and any fields required to create your account and issue a license key.
  • Support/contact data: information you send via contact forms, support tickets or email (message content, attachments).
  • License data: license key, domain(s) where it is activated, activation dates, status and plan type.

2.2 Data collected automatically

  • Technical data: IP address, browser type, device, operating system, referrer URL, pages visited, timestamps.
  • Server logs: used for security, fraud prevention and troubleshooting.

2.3 Cookies

We use cookies and similar technologies. Some cookies are essential for site functionality; others (analytics/marketing) are used only with your consent, via our cookie banner / Cookie Policy.

3

Why we use your data

Purposes

We use your data to:

  • Create and maintain your account and provide access to downloads.
  • Deliver plugins and updates (including free versions).
  • Issue and validate licenses for plugins and Pro features.
  • Provide support and respond to inquiries.
  • Improve our website and products (analytics, performance, error tracking).
  • Protect the site and users (security monitoring, abuse prevention).
4

Legal bases (GDPR Art. 6)

Lawful grounds
  • Performance of a contract / steps before contract (Art. 6(1)(b)): creating accounts, providing downloads, license handling, support related to your use of our products/services.
  • Consent (Art. 6(1)(a)): non-essential cookies, marketing emails if you subscribe.
  • Legitimate interests (Art. 6(1)(f)): site security, fraud prevention, basic analytics and service improvement.

You can withdraw consent at any time without affecting processing already carried out.

5

Who we share data with

Recipients

We do not sell your personal data. We share it only when necessary with trusted providers, for example:

  • Hosting / infrastructure providers: [add your provider name(s) + country]
  • Email delivery provider: [add provider name] (transactional emails: account, download, license, support)
  • Analytics provider (if enabled): [Google Analytics / Matomo / other]
  • Payment processors (only for Pro purchases): [Stripe / PayPal / other]

All providers act as data processors under GDPR with appropriate contracts and safeguards.

6

International transfers

Outside EEA

If any provider processes data outside the EEA, we use GDPR safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms.

7

Data retention

Storage

We keep data only as long as necessary for the purposes described:

  • Account data: until you delete your account, plus a short backup/legal-defense period.
  • License data: while the license exists and for audit/support history.
  • Support tickets: up to 3 years after the last interaction.
  • Server logs: typically 30–90 days, unless required longer for security incidents.
8

Your rights

GDPR

Under GDPR you have the right to: access, rectification, erasure, restriction, objection, data portability, and to withdraw consent at any time.

To exercise your rights, email: support@wpsupporting.com. We may ask for verification to protect your account.

9

Security

Protection

We apply technical and organizational measures such as HTTPS, access controls, backups and monitoring to protect your data. No system is perfect, but we work to minimize risk.

10

Children

Under 16

Our services are not intended for children under 16. We do not knowingly collect personal data from children.

11

Changes to this policy

Updates

We may update this Privacy Policy. The “Last updated” date will change, and major updates will be announced on the site.

12

Supervisory authority (Bulgaria / EU)

Complaints

If you believe your rights have been violated, you can file a complaint with the competent authority:

Commission for Personal Data Protection (CPDP), Bulgaria
2 Prof. Tsvetan Lazarov Blvd., 1592 Sofia, Bulgaria
Email: kzld@cpdp.bg
Phone: +359 2 915 3 518
Website: cpdp.bg

By using our website and services, you agree to this Privacy Policy.