Built with Love. Made in Belgium.

Privacy Policy

PRIVACY POLICY

Last updated: 18/02/2026

1. Controller identity

Stormlabs
Vermeersch, Gert
Steenbergstraat 21/301
VAT: BE0548783537

Email: [email protected]
Website: https://stormlabs.be

Stormlabs is the data controller responsible for processing your personal data.

2. Personal data we collect

We collect only the data necessary to provide our services.

A. Account and purchase data

When you create an account or place an order:

  • name
  • email address
  • billing address
  • company name (if provided)
  • VAT number (if provided)
  • purchase history
  • license keys issued

B. Payment data

Payments are processed by Mollie B.V.

We do not store full payment card details.

Mollie may process:

  • payment identifiers
  • billing information
  • transaction metadata

Their privacy policy applies:
https://www.mollie.com/privacy

C. Plugin license and update data (IMPORTANT)

When using a Stormlabs plugin with a license key, the plugin may contact Stormlabs servers to:

  • validate license status
  • check for updates
  • retrieve download information

This may include:

  • domain name where the plugin is installed
  • IP address of the server
  • plugin version
  • WordPress version
  • activation status

This processing is necessary to:

  • provide updates
  • prevent license abuse
  • ensure service functionality

D. Website usage data

When visiting our website we may collect:

  • IP address
  • browser type
  • pages visited
  • timestamps
  • referral URL

This data is used for:

  • security
  • performance monitoring
  • analytics (if enabled)

E. Support communications

If you contact support:

  • email content
  • attachments
  • technical information you provide

This is used solely to resolve your request.

3. Legal bases for processing

We process data under GDPR on the following grounds:

Contract performance

Processing necessary to:

  • deliver downloads
  • issue licenses
  • provide updates/support
  • manage your account

Legal obligation

Processing required for:

  • accounting
  • VAT compliance
  • invoicing retention

Legitimate interests

Processing for:

  • fraud prevention
  • server security
  • service improvement

Consent

Where required, for:

  • non-essential cookies
  • marketing communications (if applicable)

4. Data retention

We retain personal data only as long as necessary:

  • account & purchase data: retained for the lifetime of the account + legal accounting period (typically 7–10 years in Belgium)
  • license activation logs: retained while license remains valid and for reasonable audit period afterward
  • support emails: retained as long as needed for service history
  • analytics data: according to analytics tool settings

5. Data sharing

We do not sell your personal data.

We may share data with trusted processors:

Payment processor

  • Mollie B.V. (payments)

All processors handle data only on our instructions and under GDPR-compliant agreements.

6. International data transfers

If processors are located outside the European Economic Area, transfers occur only:

  • under EU adequacy decisions, or
  • using Standard Contractual Clauses or equivalent safeguards

7. Your GDPR rights

You have the right to:

  • access your personal data
  • correct inaccurate data
  • request deletion (“right to be forgotten”)
  • restrict processing
  • object to processing based on legitimate interest
  • receive a copy of your data (data portability)

Requests can be sent to:
[[email protected]]

You also have the right to lodge a complaint with:

Belgian Data Protection Authority
https://www.dataprotectionauthority.be/

8. Security measures

We implement appropriate technical and organizational measures, including:

  • HTTPS encryption
  • secure payment processing via Mollie
  • restricted database access
  • server monitoring and updates

However, no system can guarantee absolute security.

9. Cookies

Our website uses cookies.

These may include:

  • essential cookies for login and cart functionality
  • analytics cookies (if enabled)
  • preference cookies

Non-essential cookies are only placed after consent.

Full details are available in our Cookie Policy.

10. Children’s data

Our services are not intended for children under 16.

We do not knowingly collect personal data from minors.

11. Changes to this policy

We may update this Privacy Policy from time to time.

The latest version is always available on our website.

Material changes will be communicated where required by law.