WordPress plugin trust

Privacy Policy

How Lens protects WordPress media library folders data.

Last updated: January 15, 2025

Introduction

Lens is committed to protecting your privacy and ensuring transparency in how we handle your data. This Privacy Policy explains what information we collect, how we use it, and your rights regarding your personal data.

This policy applies to the Lens WordPress plugin (both free and Pro versions), our website (lensforwp.com), and any related services we provide. By using Lens, you agree to the collection and use of information in accordance with this policy.

Privacy-First Design: Lens is designed with privacy at its core. All your media organization data is stored in your WordPress database. We do not collect, track, or store your media files on external servers.

Information We Collect

Plugin Usage Data

The Lens plugin stores the following data in your WordPress database:

  • Folder structures and organization preferences
  • User permissions and role assignments
  • Activity logs (who moved/deleted files and when)
  • Plugin settings and configuration
  • License key information (Pro version only)

Important: All this data remains on your server. We do not have access to your media files, folder structures, or WordPress database.

Website Visitors

When you visit lensforwp.com, we may collect:

  • Browser type and version
  • Operating system
  • IP address (anonymized)
  • Pages visited and time spent on pages
  • Referring website/source

Purchase Information

When you purchase Lens Pro, we collect:

  • Name and email address
  • Billing address
  • Payment information (processed securely by our payment processor, not stored on our servers)
  • Purchase history and license details

Support Communications

When you contact our support team, we collect:

  • Name and email address
  • Support ticket content and attachments
  • WordPress site URL and plugin version (for troubleshooting)
  • Communication history

How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: To provide, maintain, and improve the Lens plugin and related services
  • License Validation: To verify Pro licenses and grant access to premium features
  • Customer Support: To respond to support requests and troubleshoot technical issues
  • Product Updates: To send important updates, security patches, and feature announcements
  • Payment Processing: To process purchases and manage billing
  • Analytics: To understand how our plugin and website are used and improve user experience
  • Legal Compliance: To comply with legal obligations and enforce our terms of service

We will never sell your personal information to third parties or use it for purposes unrelated to providing and improving our services.

Data Sharing and Disclosure

We share your information only in the following limited circumstances:

Service Providers

We work with trusted third-party service providers who help us operate our business:

  • Payment Processors: Stripe and PayPal for secure payment processing
  • Email Service: For sending transactional emails and support communications
  • Hosting Providers: For website and customer dashboard hosting
  • Analytics Services: For website analytics (with IP anonymization enabled)

These service providers are contractually obligated to protect your data and only use it for the purposes we specify.

Legal Requirements

We may disclose your information if required by law, subpoena, or other legal process, or if we believe disclosure is necessary to:

  • Comply with legal obligations
  • Protect our rights, property, or safety
  • Prevent fraud or security threats
  • Respond to government or regulatory requests

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email and/or a prominent notice on our website before your information becomes subject to a different privacy policy.

Data Security

We implement industry-standard security measures to protect your data:

  • Encryption: All data transmission is encrypted using TLS/SSL protocols
  • Secure Storage: Customer data is stored on secure servers with restricted access
  • Access Controls: Employee access to customer data is limited to those who need it for their job functions
  • Regular Audits: We conduct regular security audits and vulnerability assessments
  • Plugin Security: The Lens plugin follows WordPress security best practices and is regularly updated

While we implement robust security measures, no system is completely secure. We cannot guarantee the absolute security of your data, but we continuously work to improve our security practices.

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data:

Universal Rights

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data (subject to legal obligations)
  • Portability: Request your data in a machine-readable format
  • Opt-Out: Unsubscribe from marketing communications at any time

GDPR Rights (European Union)

If you are located in the European Economic Area (EEA), you have additional rights under GDPR:

  • Right to Object: Object to processing of your data for direct marketing or legitimate interests
  • Right to Restriction: Request restriction of processing in certain circumstances
  • Right to Withdraw Consent: Withdraw consent for data processing at any time
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

CCPA Rights (California)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

  • Know what personal information we collect and how we use it
  • Request deletion of your personal information
  • Opt-out of the sale of personal information (note: we do not sell personal information)
  • Non-discrimination for exercising your privacy rights

How to Exercise Your Rights

To exercise any of these rights, please contact us at privacy@lensforwp.com. We will respond to your request within 30 days. You may need to verify your identity before we can process your request.

Cookies and Tracking Technologies

We use cookies and similar tracking technologies to improve your experience on our website.

Types of Cookies We Use

  • Essential Cookies: Required for website functionality (e.g., remembering you're logged in)
  • Analytics Cookies: Help us understand how visitors use our website (anonymized data)
  • Preference Cookies: Remember your settings and preferences

Plugin Tracking

The Lens plugin does not use cookies or tracking technologies. All plugin data is stored locally in your WordPress database. We do not track your usage or collect analytics from within the plugin.

Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. Note that disabling essential cookies may affect website functionality.

Third-Party Services and Integrations

The Lens plugin may integrate with third-party WordPress plugins or services you've installed, such as:

  • Cloud storage plugins (WP Offload Media, Media Cloud)
  • Page builders (Elementor, Divi, Beaver Builder)
  • E-commerce plugins (WooCommerce)

These integrations are subject to the privacy policies of those respective services. We recommend reviewing their privacy policies to understand how they handle your data.

Lens does not send your data to third-party services unless you explicitly configure such integrations.

Children's Privacy

Lens is not directed to children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@lensforwp.com and we will delete such information from our systems.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country.

When we transfer data internationally, we implement appropriate safeguards such as:

  • Standard Contractual Clauses approved by the European Commission
  • Data Processing Agreements with service providers
  • Ensuring service providers are certified under relevant privacy frameworks

Important: The Lens plugin itself stores all data in your WordPress database on your server. Plugin data is not transferred to our servers or any external location.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

Retention Periods

  • Plugin Data: Stored in your WordPress database until you uninstall the plugin or delete it manually
  • Account Information: Retained for the duration of your active license plus 7 years for tax/legal compliance
  • Purchase Records: Retained for 7 years for accounting and tax purposes
  • Support Tickets: Retained for 3 years for quality assurance and reference
  • Website Analytics: Anonymized data retained for 26 months
  • Marketing Communications: Until you unsubscribe

After the retention period expires, we securely delete or anonymize your data. You can request early deletion of your data by contacting us, subject to legal obligations.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last updated" date at the top of this policy
  • Notify you via email if you have an active Pro license
  • Display a prominent notice on our website
  • For significant changes, request your consent where required by law

We encourage you to review this Privacy Policy periodically. Your continued use of Lens after changes are posted constitutes acceptance of the updated policy.

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Inquiries:

Email: privacy@lensforwp.com

General Support: support@lensforwp.com

We aim to respond to all privacy requests within 30 days.

Additional Information for Specific Jurisdictions

European Economic Area (EEA)

Legal Basis for Processing: We process your personal data under the following legal bases:

  • Contract Performance: Processing necessary to provide services under our terms
  • Legitimate Interests: For analytics, security, and service improvement
  • Consent: For marketing communications (you can withdraw at any time)
  • Legal Obligation: For compliance with tax, accounting, and regulatory requirements

United Kingdom

UK residents have rights under UK GDPR similar to those described in the "Your Privacy Rights" section. You can contact the UK Information Commissioner's Office (ICO) if you have concerns about our data practices.

Australia

We comply with the Australian Privacy Principles (APPs) under the Privacy Act 1988. Australian residents can contact the Office of the Australian Information Commissioner (OAIC) with privacy concerns.

Canada

We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA). Canadian residents can contact the Office of the Privacy Commissioner of Canada with privacy concerns.

Your Privacy, Your Control

Lens is built with privacy at its core. Your data stays on your server, and we're committed to transparency in everything we do.

Get Started View FAQ