Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your data when you visit our website or use the Bearmor Security plugin.

Last updated: December 4, 2025

Introduction

Bearz OÜ ("we," "us," or "our") operates the bearmor.eu website and provides the Bearmor Security WordPress plugin. This Privacy Policy explains how we handle your personal information in two contexts:

  • Website Privacy: Data collected when you visit our website, use contact forms, or interact with our marketing materials
  • Plugin Service Privacy: Data collected and processed when you use the Bearmor Security plugin on your WordPress site
PART 1

Website Privacy Policy

1. Information We Collect

1.1 Contact Forms

When you submit a contact form, we collect:

  • Name and email address
  • Any information you provide in your message
  • Basic technical data for security purposes
1.2 Analytics and Cookies

We may use analytics services and cookies to improve our website:

  • Analytics Tools: May include Google Analytics and similar services to understand site usage
  • Marketing Tools: May include tracking pixels for advertising optimization
  • Cookies: Small text files to enhance user experience and analyze traffic
1.3 Automatically Collected Information

When you visit our website, we may automatically collect standard web log information and usage data.

2. How We Use Your Data

We use the information collected on our website to:

  • Respond to your inquiries and support requests
  • Provide site cleaning and security services
  • Send important updates about our services (with your consent)
  • Improve our website content and user experience
  • Analyze website traffic and visitor behavior
  • Measure the effectiveness of our marketing campaigns
  • Comply with legal obligations

3. Third-Party Services

We may use third-party services for website functionality, analytics, and communications. These services may include:

  • Analytics and tracking services
  • Marketing and advertising platforms
  • Email and communication services

These services operate under their own privacy policies, and we recommend reviewing them.

4. Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

  • Block or delete cookies
  • Opt out of specific tracking services
  • Manage your privacy preferences

Note that disabling cookies may affect website functionality.

PART 2

Bearmor Security Plugin Privacy

1. Data We Collect from Your WordPress Site

1.1 Site Registration & License Verification

When you activate Bearmor Security with a PRO license, we collect:

  • Site URL
  • WordPress admin email address
  • License key and activation status
  • Basic site configuration for compatibility verification
1.2 Uptime Monitoring (PRO Feature)

When you use our uptime monitoring service, we collect:

  • HTTP status codes and response times
  • Uptime statistics and downtime events
  • Monitoring ping results

Important: All security scan results, vulnerability checks, malware detections, firewall logs, and activity logs are stored locally on your WordPress site only. We do not collect or store this sensitive data on our servers.

1.3 AI Security Analysis (PRO)

When using AI-powered security analysis, we may send anonymized security summaries to third-party AI services for analysis. This data:

  • Is fully anonymized before transmission
  • Does not include file contents, database data, passwords, or personally identifiable information
  • Is processed according to the AI provider's privacy policy

2. Where Your Data Is Stored

Plugin data is stored in two locations:

  • Your WordPress Site: Security logs, scan results, and plugin settings are stored locally in your WordPress database
  • Our Servers (PRO only): Limited data such as license information and uptime monitoring results are stored on secure EU-based servers

All data transmission uses industry-standard encryption.

3. Data Retention

We retain data only as long as necessary to provide our services:

  • Local Data: Stored on your site according to your configuration and WordPress settings
  • Uptime Data: Retained for approximately 30 days for monitoring purposes
  • License Data: Retained for the duration of your license period plus a reasonable period thereafter

You can request deletion of your data at any time by contacting us.

4. Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit and at rest
  • Secure authentication and access controls
  • Regular security updates and monitoring
  • Data minimization principles

5. External Communications

The plugin may communicate with external servers for certain features:

  • License validation for PRO features
  • Uptime monitoring services
  • Security updates and vulnerability information
  • Optional AI-powered analysis

Note: Both FREE and PRO versions may communicate with our servers for license validation and updates. PRO features require additional data exchange for their functionality.

Your Rights & Data Control

1. Your Rights (GDPR)

Under GDPR and other privacy laws, you have the right to:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your personal data ("right to be forgotten")
  • Restriction: Request limitation of processing in certain circumstances
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing of your personal data
  • Withdraw Consent: Withdraw consent for data processing at any time

2. How to Exercise Your Rights

To exercise any of these rights, contact us at:

We will respond to your request within 30 days.

3. Plugin Data Management

You have full control over your plugin data:

  • Local Data: All data stored in your WordPress database can be deleted by deactivating and removing the plugin
  • Clear Logs: Use the plugin's settings to clear activity logs, scan results, and login attempts
  • Deactivate PRO: Deactivating your license stops all data transmission to our servers
  • Request Deletion: Contact us to delete all server-side data associated with your license

Legal Information

Data Controller

Bearz OÜ is the data controller for all personal data collected through our website and plugin:

  • Company: Bearz OÜ
  • Registration: 16076169
  • VAT: EE102299201
  • Address: Rae vald, Vana-Tartu mnt 79a, Estonia
  • Email: security@bearmor.eu

Legal Basis for Processing

We process your personal data based on:

  • Consent: When you submit forms or accept cookies
  • Contract: To provide services you've purchased (PRO license)
  • Legitimate Interest: To improve our services and prevent fraud
  • Legal Obligation: To comply with applicable laws and regulations

International Data Transfers

Your data is primarily stored on EU-based servers. When we use third-party services like OpenAI (US-based), we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) and data anonymization.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make significant changes, we will notify you via email (if you're a customer) or through a notice on our website. The "Last Updated" date at the top of this policy indicates when it was last revised.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at security@bearmor.eu