Privacy & Data Protection

About the AIOS Privacy Policy

All-In-One Security (AIOS) is trademark of Updraft WP Software Ltd.
UK registered company number: 8570611, VAT number: 202 1260 80
Product development and marketing in co-operation with XIBO Ltd, Cardiff, UK. 

This privacy policy has been compiled to better serve those who are concerned with how their ‘Personally Identifiable Information’ (PII) is being used online. 

PII is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. 

Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

Is the plugin author collecting my site’s user data?

No, never.

When storing IPs for security reasons you have a legitimate interest (one of the six legal bases under the GDPR) to combat fraud and maintain information security (blocking IP’s to prevent brute force attacks).

Neither the plugin author company nor the plugin author are collecting any IP information. The plugin is hosted on the official WordPress.org plugin repository.

Is the AIOS Plugin GDPR compliant?

Web logs in this context are not a punishable offence under the GDPR, if you have a legal basis for retaining those logs and reasonable retention and data minimisation policies.

When storing IP’s for security reasons you have a legitimate interest (one of the six legal bases under the GDPR) to combat fraud and maintain information security (blocking IP’s to prevent brute force attacks).

What data does AIOS send to Mailchimp?

We export data for all users who have an aiosplugin.com account (via a purchase or direct sign-up) into a Mailchimp account managed by our partner.

Any campaign or multiple-recipient email that we send with Mailchimp goes to a list which is a defined subset of this data. The fields we import into our Mailchimp account are the full name (to allow personal addressing of emails), email address (so that the email can reach the recipient) and purchase history (so that we can create mail-outs that target the desired set of people, e.g. notifying of an important enhancement for a product you have bought, without mailing people who have not bought it).

Under the GDPR right to be forgotten, any user who requests to be forgotten will have their data deleted from our website, which in turn will be deleted automatically from Mailchimp.