Who we are

Simple Author Box belongs to WebFactory Ltd, here collectively called the “Company”. The Company respects your privacy rights and recognizes the importance of protecting the Personal Information (as defined below) provided by you to us. This Privacy Policy describes how the Company collects, stores, and uses the Personal Information you provide to us through the Company’s websites and through telephone or e-mail communications you may have with us. This Privacy Policy also describes the choices available to you regarding the Company’s use of the Personal Information you provide to us, and the actions you can take to access this information and request the correction or deletion of such personal information.


By using the Company’s websites, you acknowledge that you have read this Privacy Policy and that you consent to the practices described herein with respect to the Company’s collection, use and disclosure of the Personal Information provided by you to us. This is the Company’s entire and exclusive Privacy Policy and it supersedes any earlier version. We reserve the right to change this Privacy Policy in accordance with the terms herein at any time, which is why we encourage you to visit this page often, review this Privacy Policy frequently, and remain informed about any changes to it.
If, after review, you still have questions about any portion of this Privacy Policy, please contact the Company using the contact form provided on this page .

General Data Protection Regulation (GDPR)

The GDPR law is the European law that regulates the privacy rights of users from the European Economic Area (EEA). Our Declaration of Conformity can be found here.

GDPR’s main principle is that users own their personal data, and the companies have the obligation to make the right steps to facilitate the users’ rights:

  • to know what personal data companies collect, how they store this info and for how long
  • to know if the personal data is shared with third parties
  • to get the personal data (data portability)
  • to delete the personal data
  • to correct the personal data

Terms used in this document: We, users, third parties.

  • Simple Author Box is the provider of the service, referred sometimes as we.
  • By users we understand all the users of our tools and service, and also, the visitors of our site.
  • Visitors are those who browse the web pages of Simple Author Box. The logged in visitors are users of our service because they previously signed-up for a Simple Author Box account.
  • Customers are the users that purchased paid plans.
  • Third parties are other companies and the services they provide us.
  1. What personal data we collect and how we collect it

From the users of our WordPress plugins we directly collect the following data: url, email, name text, plugin name, plugin version, plugin author, language, PHP version, Server, WP version, uninstall reason, and uninstall details.

From the unlogged visitors of our website https://wpauthorbox.com we use cookies for our affiliate system and traffic analysis information offered by services such as Google Analytics.

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment. If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Visitor comments may be checked through an automated spam detection service

When the visitors of our website sign-up for an account we collect their emails, name, password.

We also keep the personal data used in the financial transactions. The invoice details as payment email, billing address, amount of money, name of the customer, company, and payment system, are not completely under the GDPR law, but due to the fiscal policy we need to store them for 10 years. Our customers cannot ask us to delete the payment details as we don’t have the right to do so.

  1. What we do with the collected personal data

Customer Support

In order to help our customers we need to use their personal data:

  • Personal data needed for user identification: the email address used for registration and name.
  • Personal data needed for debugging reasons: the domain where the theme/plugin is installed, theme information, plugin information.
  • Personal data needed to communicate with the clients that need assistance: their email addresses.

Information campaigns

We send emails to inform our users about new features, service changes (including Terms and Conditions & Privacy Policy updates), interruptions of our service, possible errors or bugs. These messages are an important part of our communication with our users.

Marketing campaigns

We send newsletters to our users about deals and promotions. Our marketing campaigns could promote other services as well, if we believe that they are compatible with our service, and that they could be useful for our users. We try to keep these types of messages at a maximum of two emails per user/ each month.

  1. How long do we keep your personal data?

The details of personal data used in the financial transactions we keep for accounting purposes and store them for 10 years. We also keep your account records and each user can access these records from their Simple Author Box account. This data is stored indefinitely and users have the right to ask us to delete their private data, even if this could mean the termination of the service we provide them due to technical reasons.

  1. What do we share, with whom, and under what conditions?

Our users’ data is shared with third parties that help us run the service. Please check below a list of the services that have full or partial access to our users’ data, and their privacy and data policies.

We will tell our users if we intend to share their info with other third parties. We don’t sell personal data.

  1. Important rights of our users regarding the personal data

Portability: You own your data. Please contact us if you want to receive the information we store about you and about your history with our service.

Personal data deletion and account removal: Users that want their personal data to be deleted can send a request at hello@wpauthorbox.com specifying if they want the deletion of all their personal information or just a partial removal. Furthermore, the users can request that their data won’t be handed over or used in some of the ways mentioned in this document. The deletion of personal information can lead to the termination of the service we provide due to technical reasons.

Please contact us if you wish to have your personal data removed or if you wish to terminate your account.

Personal data errors: You have the right to correct your personal data. Use our contact form or write us at hello@wpauthorbox.com if you want to correct your data.

The right to fill a complaint: For us, your personal data is important, and we try to take all the necessary steps to protect your personal data and to respect your rights. You have the right to fill a complaint at the National Authority for the Supervision of Personal Data Processing (Romanian: Autoritatea Naţională de Supraveghere a Prelucrării Datelor cu Caracter Personal), also known as ANSPDCP.

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

You can export data collected by us by creating a request here.

You can delete data collected by us by creating a request here.

  1. Third parties that have access to your personal data

Help Scout – helpscout.net

This is a customer and ticketing service. It helps us manage and track the complaints of our clients. Help Scout has access to the following personal data: IPs, email, name, license, and website url.

The Help Scout Company declared its compliance with GDPR, the EU law regarding the personal data protection. Read more about this here: https://www.helpscout.net/company/legal/dpa/

Help Scout promises to securely store the personal data needed for running their service and they will not use the personal data for other purposes.

WordPress – wordpress.org

WordPress.org is the foundation that manages the WordPress content management system, WordPress themes, WordPress plugins. WordPress is used by many of our users to develop and run websites. Our WordPress plugin is a piece of software that connects the sites built with WordPress to our servers, where we optimize the images of our users.

WordPress aggregates data about the active plugin installs and about the total number of downloads.

WordPress.org is developing a tool to help plugin creators (like us) to comply with the GDPR law. This tool is not ready as we speak. We will implement it as soon as it becomes available to the general public.

Here you can read more about WordPress’ efforts to align with GDPR guidelines: https://wordpress.org/news/2018/04/gdpr-compliance-tools-in-wordpress/
WordPress’ Privacy Policy: https://wordpress.org/about/privacy/

EDD – easydigitaldownloads.com

We collect information about you during the checkout process on our store. This information may include, but is not limited to, your name, billing address, shipping address, email address, phone number, credit card/payment details and any other details that might be requested from you for the purpose of processing your orders.
Handling this data also allows us to:
– Send you important account/order/service information.
– Respond to your queries, refund requests, or complaints.
– Process payments and to prevent fraudulent transactions. We do this on the basis of our legitimate business interests.
– Set up and administer your account, provide technical and/or customer support, and to verify your identity.

Additionally we may also collect the following information:
– Location and traffic data (including IP address and browser type) if you place an order, or if we need to estimate taxes and shipping costs based on your location.
– Product pages visited and content viewed while your session is active.
– Your comments and product reviews if you choose to leave them on our website.
– Account email/password to allow you to access your account, if you have one.
– If you choose to create an account with us, your name, address, and email address, which will be used to populate the checkout for future orders.

Kinsta – kinsta.com

Kinsta is a hosting company. We use their service for hosting our website.

Kinsta uses Google Cloud Platform which is fully compliant to GDPR: https://cloud.google.com/security/gdpr/

NinjaForms – ninjaforms.com

By default, WordPress does not include a contact form. We are using NinjaForms as our contact form plugin. Through our contact form we collect your name and email address. This data is stored indefinitely for customer support purposes and users have the right to ask us to delete their private data, even if this could mean the termination of the service we provide them due to technical reasons. We do not use the information submitted through here for marketing purposes.

Google Analytics – analytics.google.com

We use the Google Analytics service to obtain statistics about our site’s visitor number, origin and behavior. We took the necessary steps to ensure that the information we gather through Google Analytics is anonymized and that we cannot identify a particular visitor.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracing your interaction with the embedded content if you have an account and are logged in to that website.


If you wish to subscribe to the Company’s newsletter(s), we will use your name and e-mail address to send the newsletters to you.

Other Information Collected

Some information may be collected automatically every time you visit the Company’s web sites, such as cookies and computer information. In addition, information may be collected from other independent, third-party sources. We also collect information about which pages you visit within this site. This site visitation data is identified only by a unique URL.


The Company uses both session ID cookies and persistent cookies as part of its interaction with your browser. A cookie is an alphanumeric identifier (a file) that the Company’s web sites transfer to your computer’s hard drive through a web browser to enable its systems to recognize your browser for record-keeping purposes. A session ID cookie expires when you close your browser, while a persistent cookie remains on your hard drive for an extended period of time.

We use session ID cookies to make it easier for you to navigate our web sites. We use persistent cookies to identify and track which sections of its web site you most often visit. We also use persistent cookies in areas of its web site where you must register, and where you are able to customize the information you see, so that you don’t have to enter your preferences more than once.

The Company uses Google Analytics, an ad tracking technology that is provided by Google. For more information about Google Analytics, please visit https://www.google.com/analytics/

By configuring the options in your browser, you may control how cookies are processed by your system. However, if you decline the use of cookies, you may not be able to use certain features on this site and you may be required to reenter the information necessary complete an order during new or interrupted browser sessions.

Some of the Company’s business partners (e.g., advertisers) use cookies on the site. We have no access to or control over these cookies (see “Third Party Advertising” and “Third Party Cookies” below). Accordingly, this Privacy Policy covers the use of cookies by the Company only and does not cover the use of cookies by any advertisers.

Log Files

As it is true of most web sites, the Company gathers certain information automatically and stores it in log files. This information includes internet protocol (IP) addresses, browser type, internet services provider (ISP), referring/exit pages, operating system, date/time stamp, and clickstream data. The Company uses this information to analyze trends, to screen for fraud, to administer the Company’s sites, to track users’ movements around the web sites and to gather demographic information about the Company’s user base as a whole.

Information from Third Party Sources

To improve services and enhance personalization, the Company may periodically obtain information about you from other independent third party sources and add it to our account information. For example, when you visit a site on which the Company advertises, and click through such advertisement, the Company may place cookies on your computer.

Use of Information

Verification, Billing, and Order Status

The Company collects Personal Information to verify the accuracy of your name, billing address, shipping address, credit card number, and credit card expiration date provided, to screen for fraud, to bill you for the products and services purchased and to pay you for the products and services sold. The Company uses your e-mail address(es) to contact you regarding the status of your order when necessary and to send you a Receipt Purchase/Sale Confirmation and Order Shipping Notification.

Special Offers and Updates

The Company collects information about which sections of its web site you visit most often, so that it can send you our newsletter and the information about the offers, promotions, contests, and sweepstakes which may interest you.

Accordingly, the Company will occasionally send you information on products, services, special deals, promotions and sweepstakes.

Service-related Announcements

The Company may, but is not obligated, to send you strictly service-related announcements on rare occasions, when it is necessary to do so. For example, if our service is temporarily suspended for maintenance, we might send you an e-mail. Generally, you may not opt-out of these communications since they are not promotional in nature. If you do not wish to receive them, you may have the option to deactivate your account.


We also collect information for research purposes and to provide anonymous reporting for internal and external clients. The Company uses the information collected for its own internal marketing and demographic studies, to improve customer service and product offerings.

Customer Service

We will communicate with you in response to your inquiries, to provide the products and services you request, and to manage your account. We will communicate with you by e-mail, live chat or telephone.


The Company stores information that it collects through cookies, log files, and third party sources, to create a profile of your preferences, in order to improve the content of the Company’s web site for you.

Information Sharing and Disclosure

The Company does not sell or rent any of the information collected to third parties for any purposes, but it shares information with third parties as described below.

Service Providers

The Company discloses the information collected to external service providers, necessary to facilitate the following outsourced operations: address verification, credit card processing, and fraud screening.

Compliance with Legal Authorities

As required by law, and to enforce customers’ or the Company’s legal rights, and to comply with local, state, federal and international law, the Company may disclose information to law enforcement agencies.

Choice and Opt-Out

If you no longer wish to receive the Company’s promotional communications, you may “opt-out” of receiving them by following the instructions included in each communication.

Links to Other Web Sites

There are several places throughout the Company’s web sites that may link you to other web sites that do not operate under this Privacy Policy. When you click through these web sites, this Privacy Policy no longer applies. The Company recommends that you examine the privacy statements for all third party web sites, to understand their procedures for collecting, using, and disclosing your Personal Information.

Storage and Security of Personal Information

The Company stores the information it collects on computers located in a controlled, secure facility, protected from physical or electronic unauthorized access, use, or disclosure.


The Company protects the privacy and integrity of the information it collects by employing appropriate administrative protocols, technical safeguards, and physical security controls, designed to limit access, detect and prevent the unauthorized access, improper disclosure, alteration, or destruction of the information under its control. The Company transmits the information used by its external service providers for the specific outsourced operations listed above, across public and private networks via recognized encryption technologies, such as by using Secure Sockets Layer (SSL) software, which encrypts the information you input.

Although the Company follows the procedures set forth above to protect the Personal Information submitted to the Company, no method of transmission over the Internet, or method of electronic storage, is 100% secure. Thus, while the Company strives to use commercially acceptable means to protect your Personal Information, the Company cannot guarantee its absolute security.

If you have any questions about the Company’s security on its web sites, please feel free to contact us using the contact page on the site.

Internet Fraud

The Company has a ZERO TOLERANCE policy for Internet fraud or any attempt to access or acquire customer or other information on its web sites via illegal or surreptitious means. The Company works with local, national, and international fraud investigation agencies and employs a variety of electronic and other means to discourage, detect, and intercept fraudulent activities. The Company aggressively prosecutes, to the fullest extent of the law, those perpetrators apprehended conducting fraudulent activities on its web site.

International Transfer

Personal Information collected by the Company may be stored and processed in Romania or any other country in which the Company or its affiliates, subsidiaries or agents maintain facilities, and by using the Company’s web sites, you consent to any such transfer of Personal Information outside of your country.


The Company’s sites are not intended for or directed to persons under the age of 16. The Company does not buy or sell products or services from or to children. Any person who provides their information to the Company through the Company’s web sites attests that they are 16 years of age or older.

Changes to this Statement

The Company will, from time-to-time, update this Privacy Policy, each time revising the last updated date at the top of the Privacy Policy and indicate the nature of the revisions within the statement. The Company will notify customers of material changes to this statement by e-mail or by placing prominent notice on its web site.

Contact Information

You may contact the Company by using the contact form on the site.