Privacy Policy

Last updated: January 10, 2026

WPCoreTools ("we", "us", or "our") operates the wpcoretools.com website and develops WordPress plugins. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our plugins.

1. Information We Collect

1.1 Website Visitors

When you visit our website, we may automatically collect certain information, including:

• Browser type and version
• Operating system
• Referring website
• Pages viewed and time spent on pages
• IP address (anonymized where required by law)

1.2 Plugin Users

Our WordPress plugins are designed with privacy in mind. Here's what each plugin collects:

Speed Profiler: All profiling data is stored locally on your WordPress installation. No data is transmitted to our servers. The plugin analyzes your site's performance entirely within your hosting environment.

OSV Security Scanner: This plugin sends queries to Google's OSV.dev API to check for known vulnerabilities. The queries include plugin/theme slugs and version numbers only - no personal data, site URLs, or identifying information is transmitted. OSV.dev is operated by Google and has its own privacy policy.

CRA Compliance Checker: SBOM generation and compliance data is stored locally on your WordPress installation. When checking vulnerabilities, the plugin queries OSV.dev as described above. No compliance reports or audit trails are transmitted to our servers.

1.3 Information You Provide

We may collect information you voluntarily provide, such as:

• Email address (if you subscribe to updates or contact support)
• Name and contact information (if you submit a support request)
• Any other information you choose to provide

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our website and plugins
• Respond to your comments, questions, and support requests
• Send you technical notices and security alerts
• Monitor and analyze usage trends to improve user experience
• Detect, investigate, and prevent fraudulent or unauthorized activity

3. Data Storage and Security

Plugin data is stored on your own WordPress hosting environment. We do not have access to your WordPress installation or the data generated by our plugins.

For website visitors, we use industry-standard security measures to protect any information collected through our website.

4. Third-Party Services

Our plugins may interact with the following third-party services:

• OSV.dev (Google): Used by OSV Security Scanner and CRA Compliance Checker for vulnerability data. Only plugin/theme identifiers and versions are sent.
• WordPress.org: Plugin updates are delivered through the standard WordPress.org update mechanism.

We do not sell, trade, or otherwise transfer your information to third parties for marketing purposes.

5. Cookies

Our website may use cookies for basic functionality and analytics. You can control cookie preferences through your browser settings. Our plugins do not set any cookies on your visitors' browsers.

6. Your Rights

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the information we hold about you
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your information
• Objection: Object to processing of your information
• Portability: Request transfer of your information

To exercise these rights, please contact us using the information below.

7. Children's Privacy

Our website and plugins are not intended for children under 16. We do not knowingly collect information from children under 16.

8. International Data Transfers

If you access our website from outside our operating country, your information may be transferred to, stored, and processed in a country with different data protection laws.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@wpcoretools.com

11. GDPR Compliance (EU Users)

For users in the European Union, we process personal data under the following legal bases:

• Legitimate Interest: Website analytics and security monitoring
• Consent: Email communications and newsletter subscriptions
• Contract: Providing plugin functionality and support

Our plugins are designed to help you maintain GDPR compliance by storing data locally and minimizing external data transfers.