Privacy Policy

1. What we collect

Badger collects the minimum data necessary to operate the plugin and provide security services:

• Site URL and WordPress version (for license activation)
• Bot/agent detection events (anonymised IP hashes, user agents, timestamps)
• Plugin configuration settings
• Account email address (for support and billing)

2. What we don't collect

• Visitor personal data or PII from your site's users
• Page content, posts, or media files
• WordPress admin credentials
• Payment information (handled by our payment processor)

3. How we use your data

Detection events are processed to identify malicious bot patterns and improve the shared threat intelligence database. This data is anonymised before aggregation. Your site URL and email are used solely for license management and support communication.

4. Data storage & security

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Detection events are stored in EU-based infrastructure. We retain detection logs for 90 days, after which they are permanently deleted.

5. Third parties

We do not sell, share, or provide your data to third parties for advertising purposes. We use Stripe for payment processing and may use analytics services to improve the product.

6. Your rights

Under GDPR and applicable data protection laws, you have the right to access, rectify, or delete your personal data. Contact us at privacy@getbadger.io to exercise these rights.

7. Contact

Questions about this policy? Email privacy@getbadger.io