Privacy Policy

This policy explains what we collect when you use SandyWP, why we collect it, and the choices you have. We keep it short because we collect little.

What we collect

• Account data. If you sign up, we store your email address and, for password accounts, a securely hashed password. If you sign in with Google, we store the basic profile your provider returns.
• Sandbox data. Metadata about the sandboxes you create — names, WordPress/PHP versions, status, and expiry. Disposable sandboxes and their contents are deleted automatically when they expire.
• Billing data. If you upgrade, payments are handled by our payment provider. We store a customer reference and subscription status — never your card details.
• Operational data. Limited logs and abuse-prevention signals (such as hashed IP/session identifiers) used to keep the service reliable and stop misuse.

How we use it

To provide and operate the service, authenticate you, enforce plan limits, prevent abuse, process payments, and communicate about your account. We do not sell your personal data.

Demo launch links

If you open a public demo launch link, we provision a throwaway sandbox for you. When the link owner has enabled email capture, the email you enter is shared with that owner as a lead. Anonymous demos are identified only by a short-lived session cookie and expire automatically.

Data retention

Sandboxes are ephemeral and are removed when they expire. Account and billing records are kept while your account is active and for as long as needed to meet legal and accounting obligations. You can request deletion of your account at any time.

Your choices

You can access, correct, export, or delete your account data by contacting us. Where required by law, you may also object to or restrict certain processing.

Contact

Questions about privacy? Email [email protected].