Privacy Policy
Last Updated: Oct 2025
Introduction
PainlessWP (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our managed WordPress hosting services.
Information We Collect
Information You Provide to Us
Account Information:
- Name, email address, phone number
- Billing address and payment information
- Company name and business details (for Business and Professional plans)
Technical Information:
- Domain names and website URLs
- WordPress login credentials (encrypted)
- FTP/SSH access credentials (encrypted)
- DNS records and configuration data
Support Communications:
- Support tickets, chat logs, and email correspondence
- Any information you provide during migration requests
Information Collected Automatically
Server and Usage Data:
- IP addresses
- Browser type and version
- Device information
- Page views and traffic patterns
- Server logs and error reports
- Bandwidth usage and storage consumption
Cookies and Tracking Technologies:
- We use cookies to maintain your session and improve user experience
- Analytics cookies to understand how our services are used
- Performance cookies to optimize our platform
How We Use Your Information
We use the collected information to:
Account Information:
- Provide, maintain, and improve our hosting services
- Process payments and manage your account
- Migrate your websites to our platform
- Monitor server performance and uptime
- Provide technical support and respond to inquiries
- Send service-related notifications and updates
- Detect and prevent security threats, fraud, and abuse
- Comply with legal obligations
- Analyze usage patterns to improve our services
Data Storage and Security
Security Measures:
- All data is encrypted in transit using SSL/TLS
- Password-protected and encrypted databases
- Two-factor authentication options
- Regular security audits and vulnerability assessments
- DDoS protection via Cloudflare
- Automatic daily backups with 14-day retention
- Restricted access to customer data on a need-to-know basis
Data Location:
- Your website data is stored in our strategically located data centers
- Backup data is stored in geographically redundant locations
- We retain data for as long as your account is active or as needed to provide services
Data Sharing and Disclosure
We do not sell, trade, or rent your personal information. We may share your information only in the following circumstances:
Service Providers:
- Payment processors (Visa, Mastercard, PayPal, Google Pay, bKash, Nagad, Rocket)
- CDN and security providers (Cloudflare)
- Infrastructure providers for hosting services
- Email service providers for communications
Legal Requirements:
- When required by law, legal process, or government request
- To protect our rights, property, or safety
- To prevent fraud or security issues
- In connection with a business transaction (merger, acquisition, or sale)
With Your Consent:
- When you explicitly authorize us to share your information
Your Rights and Choices
You have the right to:
Access and Portability:
- Request a copy of your personal data
- Export your website data at any time
Correction:
- Update or correct your account information through your dashboard
Deletion:
- Request deletion of your account and associated data
- Note: We may retain certain information for legal compliance or legitimate business purposes
Opt-Out:
- Unsubscribe from marketing emails (service notifications will continue)
- Disable certain cookies through browser settings
Data Retention:
- Active account data is retained as long as your account exists
- After account deletion, backups are retained for 30 days then permanently deleted
- Billing records retained for 7 years for tax compliance
Third-Party Services
Our service integrates with third-party providers:
- Cloudflare: CDN and DDoS protection (review their privacy policy at cloudflare.com)
- Payment Processors: Each has their own privacy policies
- WordPress.org: For core updates and plugin/theme repositories
We are not responsible for the privacy practices of these third parties.
Children's Privacy
Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
International Data Transfers
If you access our services from outside Bangladesh, your information may be transferred to and processed in Bangladesh or other countries where our servers are located. By using our services, you consent to such transfers.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Posting the updated policy on our website
- Sending an email notification to your registered email address
- Updating the “Last Updated” date at the top of this policy
Continued use of our services after changes constitutes acceptance of the updated policy.
Your Consent
By using PainlessWP services, you consent to this Privacy Policy and agree to its terms.
Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: [email protected]
Support: [email protected]
For data protection inquiries or to exercise your rights, please include “Privacy Request” in your subject line.
Cookie Policy
Essential Cookies:
- Required for basic site functionality and security
- Cannot be disabled
Performance Cookies:
- Help us understand how visitors use our services
- Can be disabled in browser settings
Functionality Cookies:
- Remember your preferences and settings
- Optional but enhance user experience
You can control cookie settings through your browser preferences, though disabling certain cookies may limit functionality.
