We take security seriously. This document outlines the measures that we have in place to protect your information and data when you use WP Remote.
WP Remote website
We follow industry standards by using secure http (https) for our site and SSL login. This allows a secure connection between client and server and protects the data transmitted over the connection.
WP Remote communicates with your site using an API key (like Akismet). The API key is unique to the combination of your site and user and is stored in encrypted form.
We collect and store the absolute minimum personal information, just your email address to allow log in to your WP Remote account. We do not ask for your site user names or passwords.
If you have opted for automatic backups we also collect payment card information.
Files are transferred between your site and our server using http or https file transfer depending on what your site is running.
We use an Amazon EC2 server protecting against “Man in the Middle” attacks as files are transferred directly to Amazon S3.
Backups are stored on Amazon S3 using AES-256 Server Side Encryption. Amazon stores data over several large-scale data centers. According to Amazon, they use military grade perimeter control berms, video surveillance, and professional security staff to keep their data centers physically secure.
You can find more information about Amazon’s security at the Amazon Web Services’ website.
Payment Card Information
Your card payments are handled by our trusted merchant payment gateway provider, Stripe. When payment data is entered it is sent directly to the payment gateway via a secure SSL connection without you having to leave the WP Remote site. WP Remote does not hold any of your card data; all payment information is stored on Stripe’s secure servers.