🏠 Home Services 🎨 Figma to WordPress ⚡ Figma to Elementor ✏️ Adobe XD to WordPress 💎 Sketch to WordPress 🏗️ Framer to WordPress 🔗 InVision to WordPress 🌐 HTML to WordPress Company 💰 Pricing 🖼️ Portfolio 📝 Blog 👥 About Us 📩 Get Free Quote
Last Updated: 1 January 2025  |  Effective Date: 1 January 2025  |  Data Controller: WPCraft Studio  |  Contact: privacy@wpcraftstudio.com

1. Who We Are

WPCraft Studio ("we", "us", "our") operates the website wpcraftstudio.com and provides professional design-to-WordPress conversion services. We are the data controller responsible for your personal information collected through this website and our service engagements.

2. Information We Collect

2.1 Information You Provide Directly

  • Contact form submissions: Name, email address, company name, project details, and design file links.
  • Project files: Design files and assets you share with us for conversion purposes.
  • Payment information: Processed securely through Stripe or PayPal — we do not store card details directly.
  • Communications: Emails, messages, and feedback you send to us during project engagements.

2.2 Information Collected Automatically

  • Usage data: IP address, browser type, pages visited, time spent, and referring URLs.
  • Cookies: Session cookies, analytics cookies, and preference cookies. See our Cookie Policy for full details.
  • Analytics: Aggregated data collected via Google Analytics about how visitors interact with our website.

3. How We Use Your Information

We use the personal data we collect for the following purposes:

  • To respond to your enquiries and provide requested quotes
  • To deliver, manage, and support project services
  • To process payments and maintain project records
  • To improve our website, services, and user experience
  • To send project updates, invoices, and relevant communications
  • To comply with legal obligations and enforce our agreements

We do not sell, rent, or trade your personal data to third parties for their marketing purposes.

4. Legal Basis for Processing (GDPR)

For clients in the European Economic Area (EEA) and UK, we process your data on the following legal bases:

  • Contractual necessity: Processing required to deliver our services to you.
  • Legitimate interests: Analytics, improving our services, and preventing fraud.
  • Consent: Marketing communications, where you have opted in.
  • Legal obligation: Maintaining financial records as required by law.

5. Data Sharing & Third Parties

We share your data only with trusted third-party service providers necessary to deliver our services:

  • Stripe / PayPal: Secure payment processing
  • Google Analytics: Website usage analytics (anonymised)
  • Email services: For project communications and quote delivery
  • Cloud storage: Secure storage of project files

All third-party providers are contractually obligated to handle your data securely and only for the purposes we specify.

6. Data Retention

We retain personal data for as long as necessary to fulfil the purposes outlined in this policy. Client project data is retained for 7 years for accounting and legal purposes. Marketing data is retained until you opt out or request deletion. You may request deletion of your data at any time by contacting us.

7. Your Rights

Under GDPR and applicable privacy laws, you have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Rectification: Correct inaccurate or incomplete data.
  • Erasure: Request deletion of your personal data ("right to be forgotten").
  • Restriction: Request that we limit how we use your data.
  • Portability: Receive your data in a portable, machine-readable format.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw consent: Where processing is based on consent, withdraw it at any time.

To exercise any of these rights, please contact us at privacy@wpcraftstudio.com. We will respond within 30 days.

8. Security

We implement industry-standard technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include SSL/TLS encryption, access controls, and regular security audits. However, no internet transmission is 100% secure, and we cannot guarantee absolute security.

9. International Transfers

If we transfer your data outside the EEA, we ensure appropriate safeguards are in place — such as Standard Contractual Clauses approved by the European Commission — to protect your data in accordance with this policy.

10. Children's Privacy

Our services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice on our website or by email. We encourage you to review this policy periodically.

12. Contact & Complaints

For any privacy-related questions or to exercise your rights, contact our Data Protection team at: privacy@wpcraftstudio.com. If you are unsatisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority.

Privacy Questions?

Our team will respond to all privacy enquiries within 30 days.

Contact Us →