Privacy Policy
Last Updated: December 18, 2025
1. Introduction
ClinicWP ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://clinicwp.com (the "Website") and use our services.
Please read this Privacy Policy carefully. By using the Website, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Website.
2. Data Controller
The data controller responsible for your personal data is:
Dukai Tamás EV.
Registration Number: 60025487
Tax Number: 90698866-1-42
EU Tax Number: HU90698866
Statistical Number: 90698866-6210-231-01
Address: 1173 Budapest, Köröstői utca 13/II. A.lh. 2em 1a, Hungary
Email: hello@clinicwp.com
3. Information We Collect
3.1 Account Registration Information
When you register an account on our Website to download the ClinicWP plugin, we collect:
- Full Name: To personalize your account and communications
- Email Address: For account verification, login, and communication
- Password: Stored in encrypted form for account security
3.2 Payment and Billing Information
When you purchase a premium license, we collect:
- Billing Name: Full name for invoice generation
- Billing Address: Street address, city, postal code, country
- Tax Information: Tax ID or VAT number if provided
- Payment Information: Credit card details (processed securely by Stripe; we do not store complete card information)
This information is collected during the checkout process and is used exclusively for:
- Processing your payment
- Issuing invoices and receipts
- Complying with tax regulations
- Preventing fraud
3.3 License Usage Information
When you use the ClinicWP plugin with a premium license, we may collect:
- License Validation Data: License key, website URL where plugin is activated
- Plugin Version: Currently installed version number
- Update Requests: When you check for plugin updates
- Download History: Record of plugin version downloads
3.4 Newsletter Subscription
When you subscribe to our newsletter, we collect:
- Email Address: To send you newsletters and marketing communications
3.5 Automatically Collected Information
When you visit our Website, we automatically collect certain information about your device and browsing behavior through cookies and similar technologies:
- Usage Data: Pages visited, time spent on pages, links clicked, browser type, device information, IP address, referring/exit pages
- Analytics Data: Collected through Google Analytics
- Advertising Data: Collected through Facebook Pixel
3.6 Customer Support Communications
When you contact our customer support, we collect:
- Support Requests: Your questions, issues, and feedback
- Communication History: Email correspondence and support ticket history
4. How We Use Your Information
We use the information we collect for the following purposes:
4.1 Account Management and Service Delivery
- To create and manage your user account
- To authenticate your identity when you log in
- To provide access to plugin downloads
- To manage your premium licenses
- To validate license keys and check entitlement to premium features
- To deliver plugin updates to licensed users
4.2 Payment Processing and Billing
- To process premium license payments
- To generate and send invoices and receipts
- To comply with tax and accounting regulations
- To detect and prevent payment fraud
- To manage refund requests
4.3 Customer Support
- To respond to your inquiries and support requests
- To troubleshoot technical issues
- To provide priority support to premium license holders
4.4 Newsletter and Marketing Communications
- To send you newsletters about ClinicWP updates, features, and tips
- To send you promotional materials and special offers
- To communicate about products and services we believe may interest you
- To send license expiry reminders and renewal notifications
You can unsubscribe from marketing emails at any time by clicking the "unsubscribe" link in any email or contacting us at hello@clinicwp.com.
4.5 Website Improvement and Analytics
- To analyze how users interact with our Website
- To improve our Website's functionality and user experience
- To develop new features and services
- To understand user demographics and interests
4.6 Advertising and Marketing Analytics
- To measure the effectiveness of our advertising campaigns
- To display targeted advertisements
- To build custom audiences for marketing
4.7 Legal Compliance and Security
- To comply with legal obligations
- To protect our rights and interests
- To prevent fraud, abuse, and unauthorized access
- To enforce our Terms of Use
5. Legal Basis for Processing (GDPR)
Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:
- Consent: When you register an account, subscribe to our newsletter, or accept cookies, you provide explicit consent for us to process your personal data
- Contract Performance: Processing is necessary to fulfill our contractual obligations when you purchase a premium license
- Legitimate Interests: We process data for analytics, website improvement, and fraud prevention based on our legitimate interest in operating and improving our business
- Legal Obligation: We process data to comply with legal requirements such as tax laws and accounting regulations
6. Data Sharing and Disclosure
We may share your information with third parties in the following circumstances:
6.1 Payment Processing
Stripe, Inc.
- Processes all credit card payments and billing information
- Handles payment security and PCI DSS compliance
- Stores payment method details securely
- Privacy Policy: https://stripe.com/privacy
We do not store complete credit card numbers on our servers. Stripe securely processes and stores this information.
6.2 Analytics and Marketing Services
Google LLC
- Google Analytics for website analytics
- Google Search Console for search performance monitoring
- Privacy Policy: https://policies.google.com/privacy
Meta Platforms, Inc. (Facebook)
- Facebook Pixel for advertising and analytics
- Privacy Policy: https://www.facebook.com/privacy/explanation
6.3 Email Service Provider
- For sending newsletters and transactional emails
- Your email service provider processes subscriber data on our behalf
These service providers are contractually obligated to protect your data and use it only for the purposes we specify.
6.4 Legal Requirements
We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, government agencies).
6.5 Business Transfers
In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity.
7. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws than your jurisdiction.
When we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions by the European Commission
- Other legally approved transfer mechanisms
8. Your Rights Under GDPR
As a data subject in the European Union, you have the following rights:
8.1 Right to Access
You have the right to request a copy of the personal data we hold about you.
8.2 Right to Rectification
You have the right to request correction of inaccurate or incomplete personal data.
8.3 Right to Erasure ("Right to be Forgotten")
You have the right to request deletion of your personal data under certain circumstances, including:
- The data is no longer necessary for the purposes it was collected
- You withdraw consent and there is no other legal basis for processing
- You object to processing and there are no overriding legitimate grounds
Note: We may need to retain certain information for legal compliance, tax purposes, or to fulfill contractual obligations (such as issuing invoices).
8.4 Right to Restrict Processing
You have the right to request that we restrict processing of your personal data under certain conditions.
8.5 Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
8.6 Right to Object
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
8.7 Right to Withdraw Consent
Where we rely on consent to process your data, you have the right to withdraw that consent at any time.
8.8 Right to Lodge a Complaint
You have the right to lodge a complaint with a supervisory authority, particularly in the EU member state of your residence, workplace, or where an alleged infringement occurred.
Hungarian Data Protection Authority (NAIH)
Address: 1055 Budapest, Falk Miksa utca 9-11, Hungary
Website: https://naih.hu
Email: ugyfelszolgalat@naih.hu
To exercise any of these rights, please contact us at hello@clinicwp.com.
9. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
- Account Data: Retained for the duration of your account's existence and for a reasonable period thereafter for legal and business purposes
- Billing and Invoice Data: Retained for 7 years to comply with tax and accounting regulations
- License Information: Retained for the lifetime of the license and for audit purposes
- Payment Transaction Data: Retained as required by financial regulations and fraud prevention
- Newsletter Subscriptions: Retained until you unsubscribe
- Analytics Data: Typically retained for 26 months (Google Analytics default)
- Cookie Data: Varies by cookie type (see Section 11)
- Support Communications: Retained for up to 3 years for quality assurance and reference
When personal data is no longer needed, we will securely delete or anonymize it.
10. Data Security
We implement appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:
- Encryption: Data in transit is encrypted using SSL/TLS; sensitive data at rest is encrypted
- Secure Payment Processing: All payment information is processed through Stripe's PCI DSS compliant infrastructure
- Secure Server Infrastructure: Hosted on secure, regularly updated servers
- Access Controls: Strict authentication and authorization protocols
- Regular Security Assessments: Ongoing monitoring and security audits
- Employee Training: Staff trained on data protection and security best practices
- Password Protection: Passwords are hashed using industry-standard algorithms
However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal data, we cannot guarantee absolute security.
12. Third-Party Websites
Our Website may contain links to third-party websites not operated by us. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party websites you visit.
Third-party services we integrate with include:
- Stripe (payment processing)
- Google Analytics (website analytics)
- Facebook (advertising and marketing)
Each of these services has its own privacy policy governing how they handle your data.
13. Children's Privacy
Our Website is not intended for children under 16 years of age. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and believe your child has provided us with personal data, please contact us at hello@clinicwp.com, and we will delete such information.
14. Do Not Track Signals
Some browsers include a "Do Not Track" (DNT) feature. Our Website does not currently respond to DNT signals, as there is no industry standard for how to respond to such signals.
15. California Privacy Rights (CCPA)
If you are a California resident, you have specific rights regarding your personal information under the California Consumer Privacy Act (CCPA):
- Right to know what personal information is collected
- Right to know if personal information is sold or disclosed
- Right to opt-out of the sale of personal information
- Right to request deletion of personal information
- Right to non-discrimination for exercising CCPA rights
We do not sell personal information.
To exercise your CCPA rights, contact us at hello@clinicwp.com.
16. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The "Last Updated" date at the top of this page indicates when the policy was last revised.
We will notify you of material changes by:
- Posting a notice on our Website
- Sending an email to registered users
- Updating the "Last Updated" date
Your continued use of the Website after changes constitutes acceptance of the updated Privacy Policy.
17. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Email: hello@clinicwp.com
Postal Address:
Dukai Tamás EV.
1173 Budapest, Köröstői utca 13/II. A.lh. 2em 1a
Hungary
We will respond to your inquiry within 30 days as required by GDPR.
Acknowledgment: By using ClinicWP, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.