Privacy Policy

This Privacy Policy applies to the AreaWP service operated by Digiwex LLC, 30 N Gould St Ste N, Sheridan, WY 82801, USA. We are the data controller for personal data you provide when using AreaWP.

Account data — name, email, company, billing address.
Usage data — pages viewed, features used, IP and browser metadata.
Customer data — content you store on AreaWP about your own clients and websites, processed on your behalf.
Payment data — handled by Stripe and PayPal; we never see full card numbers.

To deliver and operate the service, send transactional emails (invoices, system alerts, security notices), provide support, prevent abuse, and improve the product. We do not sell your data. We do not use your customer data to train shared AI models.

We use first-party cookies for session management, security, and basic product analytics (page views, retention). You can decline non-essential cookies via the cookie banner. Strictly necessary cookies cannot be disabled because the service cannot function without them.

We share data only with vetted subprocessors strictly necessary to operate the service: Stripe and PayPal (payments), Amazon Web Services and Hetzner (infrastructure), SendGrid (transactional email), MailerLite (marketing email — opt-in only).

Some subprocessors operate outside your country. Where required, we rely on Standard Contractual Clauses (EU-US) and equivalent safeguards to ensure your data is protected to the level required by GDPR and similar laws.

Account data is retained as long as your account is active. Customer data is retained for the duration of the subscription and for 30 days after cancellation for export. Backups are kept up to 90 days. Invoice records are retained for the period required by tax law (typically 7-10 years).

You have the right to access, correct, export, and delete your personal data. You also have the right to object to certain processing and to lodge a complaint with your local data protection authority. Email [email protected] to exercise any of these rights.

All data is encrypted in transit (TLS 1.2+) and at rest (AES-256). The platform runs in isolated Docker containers per agency. Access to production systems is restricted by SSO and 2FA. We run regular vulnerability scans and third-party penetration tests.

We will notify you of material changes via email or an in-product notice at least 14 days before they take effect.

Digiwex LLC · 30 N Gould St Ste N, Sheridan, WY 82801, USA · [email protected]