Privacy Policy
Last updated: April 1, 2026
Overview
Diployit (“we”, “us”) provides a managed hosting platform and open-source framework for WordPress and Shopify stores. This policy explains what data we collect, how we use it, and what rights you have.
Data we collect
Account data: name, email, billing address, password hash.
Store data: WordPress / Shopify content, products, orders and customers you import or create.
Usage data: anonymized logs (IP, user agent, timestamps) for security and reliability. We do not sell your data.
How we use it
To run your store, process payments, send transactional emails, prevent abuse, and improve the service. We never train AI models on your store content.
Retention
We retain account data while your account is active and for 30 days after termination so you can recover. Backups are kept for 90 days, encrypted at rest.
Your rights
You can access, export, correct or delete your data at any time from the dashboard. EU residents have additional rights under GDPR (see below). California residents have rights under CCPA.
GDPR
Diployit acts as a data processor for store content and a data controller for account data. We sign DPAs on request — email dpo@diployit.com. Hosting regions are EU-first by default.
Security
Each store runs in an isolated container. Data is encrypted in transit (TLS 1.3) and at rest (AES-256). We perform regular vulnerability scans and run a public bug bounty program at security.diployit.com.
Children
Diployit is not directed to children under 16. We do not knowingly collect data from children.
Changes
We will notify you of material changes by email and post the new policy at /privacy with an updated date.
Contact
Email privacy@diployit.com or write to Diployit, Rothschild Blvd 22, Tel Aviv, Israel.