Security Policy
WPExperts has established a comprehensive data security framework to safeguard personal data and prevent unauthorized access. This security protocol encompasses physical, electronic, and managerial measures tailored to the sensitivity of the collected and stored personal data. Key security measures include:
- Restricting access to the production database at both network and user levels.
- Implementing a password policy for database access.
- Encrypting data during transfer.
- Utilizing a Web Application Firewall (WAF) and DDoS protection.
- Enforcing internal password change policies.
- Adhering to PCI DSS best practices.
- Logging all actions and conducting log analysis.
- Installing antivirus software on administrators’ workstations.
In the event of a personal data breach, WPExperts commits to notifying the relevant supervisory authority within 72 hours of discovery unless there is a perceived threat to your rights and freedom, as determined solely by WPExperts. You will be informed of any such breach if there is a substantial risk to your rights and freedom.
You have the right to access, erase, correct, or restrict your personal data, and these requests should be submitted in writing to [email protected] Erasure of personal data can be requested for reasons such as data no longer being necessary, withdrawal of consent with no valid legal ground, or unlawful processing. However, erasure may not apply if data is required for legal claims, public interest, research, or statistical purposes.
WPExperts is committed to promptly correcting any inaccuracies in your personal data. You also have the option to restrict data processing under specific conditions, including contesting data accuracy, objecting to processing, or retaining data for legal claims. If you believe your rights are not being respected, you have the right to file a complaint with the relevant supervisory authority.
