Privacy Policy

SafeWP – WordPress Security Audit

Last updated: 2026-06-19

This Privacy Policy explains how Digital Hero Kft. collects, uses and protects personal data when you use the SafeWP website and request a WordPress security audit.

We are committed to processing personal data lawfully, fairly and transparently in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and applicable Hungarian data protection laws.

1. Data Controller

The data controller responsible for the processing of your personal data is:

Digital Hero Kft.
Registered address: 1124 Budapest, Németvölgyi út 65. 1. em., Hungary
VAT Number: HU27098758
Company Registration Number: 01-09-349296
Tax Number: 27098758-2-43
Dun & Bradstreet D-U-N-S® Number: 40-135-2378

Contact email: info@digitalhero.hu

2. What data we collect

When you request a WordPress security audit through our website, we may collect the following personal data and technical information:

  • Website URL submitted for the audit;
  • Email address;
  • Role or relationship to the website, for example “Website Manager”;
  • Consent confirmation related to the Privacy Policy and the audit request;
  • Public IP address;
  • Date and time of the request;
  • Technical log data required for security, fraud prevention and service operation;
  • Audit result data generated in relation to the submitted website.

We do not intentionally collect special categories of personal data, such as health data, religious beliefs, political opinions or biometric data.

3. Why we process your data

We process your personal data for the following purposes:

3.1. To provide the free WordPress security audit

We use the submitted website URL and email address to perform the requested audit and send the audit report to you by email.

Legal basis: Your consent and/or taking steps at your request prior to entering into a service relationship under Article 6(1)(a) and/or Article 6(1)(b) GDPR.

3.2. To verify the legitimacy of the request

We may use the submitted data, role information, IP address and request logs to help prevent abuse, spam, repeated automated requests or unauthorized use of the audit form.

Legal basis: Our legitimate interest in protecting our website, infrastructure and services under Article 6(1)(f) GDPR.

3.3. To contact you about the audit result

If the audit identifies security issues, we may contact you in relation to the specific audit request and explain possible remediation options.

Legal basis: Our legitimate interest in following up on a service request under Article 6(1)(f) GDPR, or consent where applicable.

3.4. To comply with legal obligations

We may process and retain certain data where required by law, accounting rules, tax obligations or legal claims.

Legal basis: Compliance with a legal obligation under Article 6(1)(c) GDPR.

3.5. Marketing communications

We will only send separate marketing newsletters or unrelated promotional emails if you have given explicit consent to receive such communications.

Legal basis: Consent under Article 6(1)(a) GDPR.

You may withdraw your marketing consent at any time.

4. Important notice about website audit authorization

By submitting a website URL for audit, you confirm that you are authorized to request a security audit for that website, or that you have permission from the website owner or operator to do so.

Our audit is intended to be a non-invasive security review. It does not include destructive testing, brute-force attacks, denial-of-service testing, exploitation of vulnerabilities, unauthorized access attempts or any activity intended to compromise the target website.

5. How long we keep your data

We keep personal data only for as long as necessary for the purposes described in this Privacy Policy.

Unless a longer retention period is required by law or necessary for legal claims, we generally retain:

  • Audit request data: for up to 12 months after submission;
  • Audit reports and related communication: for up to 12 months;
  • Technical logs, IP addresses and anti-abuse records: for up to 6 months;
  • Accounting or contractual records, where applicable: for the legally required retention period;
  • Marketing consent records: until consent is withdrawn or the data is no longer necessary.

You may request deletion of your personal data at any time, subject to legal retention obligations.

6. Who has access to your data

Your personal data may be accessed by authorized members of Digital Hero Kft. who need access for operational, technical, customer support, sales or security purposes.

We may also use trusted service providers acting as data processors, including:

  • Website hosting provider: Hostinger;
  • Email delivery or email hosting providers;
  • Website analytics, security or logging tools, if used;
  • IT service providers supporting the operation of the SafeWP website.

These service providers may only process personal data according to our instructions and for the purposes described in this Privacy Policy.

7. Hosting and data storage

The SafeWP website is hosted by Hostinger. Data submitted through the website may be stored or processed on servers operated by Hostinger or its infrastructure partners.

Where personal data is transferred outside the European Economic Area, we ensure that appropriate safeguards are in place, such as adequacy decisions, Standard Contractual Clauses or other lawful transfer mechanisms under the GDPR.

8. Cookies and analytics

Our website may use cookies or similar technologies to ensure basic functionality, improve user experience, measure website performance and protect the website from abuse.

Where required by law, non-essential cookies, such as analytics or marketing cookies, will only be used with your consent.

You may manage or disable cookies through your browser settings. Please note that disabling certain cookies may affect website functionality.

9. Data security

We apply reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration or disclosure.

These measures may include access control, secure hosting, encrypted connections, logging, abuse prevention, limited internal access and regular review of our systems.

However, no online service can guarantee absolute security. The purpose of the audit is to provide an automated assessment based on available technical indicators, not to guarantee complete website security.

10. Automated decision-making

We may use automated tools to generate the WordPress security audit report. The audit may identify potential security risks, technical misconfigurations, outdated software, plugin-related risks or other issues.

The audit result is provided for informational purposes and does not constitute a full manual penetration test, legal advice or a guarantee that the website is secure or insecure.

We do not use automated decision-making that produces legal effects concerning you or similarly significantly affects you within the meaning of Article 22 GDPR.

11. Your rights under GDPR

You have the following rights regarding your personal data:

  • Right to access your personal data;
  • Right to rectification of inaccurate data;
  • Right to erasure of your data;
  • Right to restriction of processing;
  • Right to data portability;
  • Right to object to processing based on legitimate interest;
  • Right to withdraw consent at any time;
  • Right to lodge a complaint with a data protection authority.


To exercise your rights, please contact us at:

privacy@safewp.eu

We may need to verify your identity before responding to your request.

12. Right to lodge a complaint

If you believe that your personal data has been processed unlawfully, you may lodge a complaint with the competent data protection authority.

In Hungary, the relevant authority is:

Hungarian National Authority for Data Protection and Freedom of Information
Nemzeti Adatvédelmi és Információszabadság Hatóság – NAIH

You may also contact the data protection authority in your country of residence or workplace within the European Union.

13. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements or data processing practices.

The updated version will be published on this website with a revised “Last updated” date.

14. Contact

For questions regarding this Privacy Policy or the processing of your personal data, please contact:

Digital Hero Kft.
1124 Budapest, Németvölgyi út 65. 1. em., Hungary
Email: privacy@safewp.eu

Start

Features

About

Extras