Privacy Policy

Last updated: April 28, 2026

PatchPilot ("we," "our," or "us") is committed to protecting your privacy. This policy explains what data we collect, how we use it, and your rights.

1. Information We Collect

We collect the following information when you use PatchPilot:

• Account information: Your email address and a cryptographic hash of your password (we never store your password in plain text).
• WordPress site data: The URLs of WordPress sites you add to your account, along with installed plugin and theme lists, version numbers, and vulnerability scan results.
• Usage data: Page views, feature interactions, and session metadata to improve the product.
• Payment information: Billing details are handled entirely by Stripe. We store only your Stripe customer ID and subscription status — never raw card numbers.

2. How We Use Your Data

• To provide the PatchPilot service: scanning your WordPress sites, detecting outdated plugins and themes, and delivering maintenance reports.
• To authenticate you and maintain your session.
• To process subscription payments via Stripe.
• To send transactional emails (scan results, account alerts, billing receipts).
• To improve the product based on aggregated usage patterns.

3. Data Storage

Your data is stored in a PostgreSQL database hosted on Neon, running on infrastructure provided by Render. Both services maintain industry-standard security practices including encryption at rest and in transit.

4. Cookies and Sessions

PatchPilot uses a single session cookie (a JWT token) to keep you logged in. This cookie is:

• httpOnly — inaccessible to JavaScript, preventing XSS-based theft.
• Secure — transmitted only over HTTPS.
• 30-day expiry — automatically expires unless you stay active.

We do not use tracking cookies or third-party advertising cookies.

5. Third-Party Services

• Stripe — payment processing. Stripe's privacy policy is available at stripe.com/privacy.
• WordPress.org Plugin API — we query public WordPress.org APIs to check plugin and theme vulnerability data. No personal data is sent in these requests.
• Render — hosting infrastructure. Data resides in their US-East data center.

6. Data Sharing

We do not sell, rent, or share your personal data with third parties for marketing purposes. Data is shared only with the service providers listed above, strictly to operate the service.

7. Data Retention

• Your account data is retained while your account is active.
• Upon account deletion, your personal data (email, site URLs, scan history) is permanently deleted within 30 days.
• Stripe retains payment records per their own legal obligations and policy.

8. Your Rights

You have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Delete your account and associated data.
• Export your data in a portable format.

To exercise any of these rights, email us at patchpilot-6@polsia.app. We respond within 30 days.

9. Security

We use industry-standard security practices: HTTPS throughout, bcrypt password hashing, parameterized database queries, and httpOnly session cookies. No system is 100% secure, but we take reasonable steps to protect your data.

10. Children's Privacy

PatchPilot is not directed at children under 16. We do not knowingly collect data from anyone under 16.

11. Changes to This Policy

We may update this policy as the product evolves. Material changes will be communicated by email. Continued use of the service after changes constitutes acceptance.

12. Contact

Questions about this policy? Email patchpilot-6@polsia.app.