Privacy Policy

Last updated June 30, 2026

This policy explains what information FleetWP collects, how we use it, and the choices you have.

1. Overview

This Privacy Policy describes how FleetWP (“FleetWP,” “we,” “us”) handles information in connection with our WordPress management platform, websites, APIs, command-line tools, and connector plugin (the “Service”). It applies to information about our account holders and the data the Service processes from the sites you connect. Your use of the Service is also governed by our Terms of Service.

2. Information we collect

Account information

When you sign up, we collect your name, email address, and authentication details, along with workspace and team-membership information. If you subscribe to a paid plan, our payment processor collects and processes your billing details; we receive limited information such as the last four digits of your card and your billing status, not your full payment-card number.

Connected-site data

To manage the sites you connect, the Service processes data the connector reports back to your workspace — including site URLs; the site’s WordPress, PHP, and web-server versions and server IP address; installed plugins, themes, and their versions; available updates; SSL certificate expiry; an overall health score; WordPress user accounts (for the one-click login picker); uptime, performance, and security-audit results; PHP error logs; broken-link findings; and backup metadata and status. Backups you create may contain your site’s database and files.

Usage and technical data

We collect logs and technical information such as IP address, browser and device details, and actions taken in the dashboard, in order to operate, secure, and improve the Service.

3. How we use information

  • To provide, maintain, and secure the Service.
  • To perform the monitoring and management actions you initiate or schedule, such as backups, updates, and scans.
  • To send transactional and service messages — including alerts you configure (email, Slack, or webhook), invitations, and reports.
  • To process payments and manage subscriptions.
  • To provide support, detect and prevent abuse, and comply with legal obligations.
  • To analyze and improve the Service.

We do not sell your personal information, and we do not use your connected-site data for advertising.

4. Cookies and similar technologies

FleetWP uses cookies and similar technologies only where they are needed to run the Service — we do not use advertising or cross-site-tracking cookies. The cookies we set fall into two categories:

  • Strictly necessary — authentication and session cookies that keep you signed in and protect against cross-site request forgery. The Service will not function without these, so they are not subject to consent.
  • Preferences — cookies that remember choices such as your light/dark theme.

You can clear or block cookies through your browser settings, but doing so will sign you out and may break parts of the dashboard.

5. Security of site credentials

Communication between FleetWP and your connected sites is authenticated with a per-site secret and signed requests. Each site’s secret is encrypted at rest, and requests in both directions are signed and time-bounded to prevent tampering and replay. While we apply industry-standard safeguards, no method of transmission or storage is completely secure.

6. Sub-processors

We rely on a small set of trusted vendors to operate the Service. Each processes information only as needed to provide services to us, under agreements that require appropriate confidentiality and security. Our current sub-processors are:

Sub-processorPurposeData processed
SupabaseApplication database, authentication, and storageAccount, workspace, and connected-site data
VercelApplication hosting and content deliveryRequest logs and technical data
StripePayment processing and subscription billingBilling contact and payment details
ResendTransactional and notification email deliveryRecipient email addresses and message content

We may also disclose information to comply with law, enforce our Terms, or protect the rights, safety, and security of FleetWP, our customers, or the public. If you connect optional third-party integrations — such as an edge or CDN provider (e.g. Cloudflare), Slack, or a custom webhook — data you direct to those services is governed by their own privacy policies and is not a sub-processor relationship of ours.

We will update this list before adding or replacing a sub-processor that handles personal information.

7. Data retention

We retain account and Service data for as long as your account is active and as needed to provide the Service. Monitoring data, logs, and backups are retained according to the feature and your settings. When you delete a site or close your account, we delete or de-identify the associated data after a reasonable period, except where we must retain it to comply with legal obligations or resolve disputes.

8. Your rights and choices

Depending on your location, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing. You can manage much of your data directly in the dashboard — including disconnecting sites, removing team members, and closing your workspace. To exercise other rights, contact us at privacy@fleetwp.io.

9. International transfers

We may process and store information in countries other than where you are located. Where required, we use appropriate safeguards for cross-border transfers of personal information.

10. Children’s privacy

The Service is intended for businesses and professionals and is not directed to children under 16. We do not knowingly collect personal information from children.

11. Changes to this policy

We may update this Privacy Policy from time to time. If we make material changes, we will provide reasonable notice — for example, by email or an in-app notice — and update the “Last updated” date above.

12. Contact

Questions about this policy or your data, or want to exercise a privacy right? Reach our privacy team at privacy@fleetwp.io. We are the controller responsible for the personal information described here.

FleetWP
Operated by Made by Tribe
[Registered business address]
privacy@fleetwp.io