Get In Touch

Privacy Policy

Last Updated: 01 May 2026

Introduction

Your privacy matters to us. This Privacy Policy explains how Moosk, a division of Apricus Digital LLP (UEN: T12LL0507B), registered in Singapore, collects, uses, stores, and protects your personal information when you use our WordPress management services.

We are committed to transparency and compliance with the Personal Data Protection Act (PDPA) of Singapore. For clients in the EU, UK, and other regions, we are also aware of and respect GDPR and other applicable data protection regulations.

1. Information We Collect

1.1 Information You Provide Directly

When you engage with our services, you may provide:

  • Contact Details: Name, email address, phone/WhatsApp number
  • Business Information: Company name, website URL
  • Communications: Messages submitted via contact forms, email, live chat, or WhatsApp
  • Technical Access: WordPress admin credentials, hosting/cPanel login details, SFTP/SSH credentials, premium theme/plugin license keys, and third-party marketplace credentials (for authorised software updates)

1.2 Information Collected Automatically

When you visit our website, we may automatically collect:

  • IP address and geolocation data
  • Browser type, device information, and operating system
  • Pages visited, time spent, and referral source
  • Cookies and analytics data (see Section 8)

1.3 Information Collected During Service Delivery

To provide and improve our WordPress management services, we may collect:

  • WordPress version, active plugins, and themes
  • Premium software license status
  • Security scan results and vulnerability reports
  • Website backup data (files and databases)
  • Performance and uptime metrics
  • Server configurations and hosting environment details

2. How We Use Your Information

We process your personal data for the following purposes:

  • Service Delivery: To provide WordPress maintenance, security, updates, backups, and support
  • Communication: To respond to enquiries, send service updates, alerts, and monthly reports
  • Billing & Administration: To process payments, issue invoices, and manage your account
  • Security & Compliance: To perform security audits, monitor uptime, and prevent fraud
  • Service Improvement: To analyse usage, improve our platform, and enhance customer experience
  • Legal Obligations: To comply with applicable laws, regulations, and legal processes

What We Don’t Do

  • We do not sell your personal data to third parties
  • We do not use your data for third-party advertising or marketing
  • We do not share your data except as required for service delivery or legal compliance

3. Legal Basis For Processing (PDPA & GDPR)

We process your data under the following lawful bases:

  • Contractual Necessity: To fulfil our service agreement with you
  • Consent: Where you have explicitly provided consent (e.g., marketing communications)
  • Legitimate Interests: To improve services, prevent fraud, and ensure security
  • Legal Obligation: To comply with tax, accounting, and regulatory requirements

4. Credential Security & Handling

Your credentials are handled with the highest level of care:

  • Encrypted Storage: All credentials are stored in industry-standard encrypted password management systems
  • Access Control: Only authorised team members assigned to your website have access
  • Purpose Limitation: Credentials are used strictly for legitimate service delivery (e.g., applying updates, backups, security checks)
  • Marketplace Credentials: Used solely to download and install authorised premium theme/plugin updates on your behalf
  • Secure Deletion: All credentials are permanently deleted within 7 business days of service termination

5. Backup Data Handling

5.1 What We Back Up

As part of our service, we create and store encrypted backups of:

  • Website files (themes, plugins, uploads, core files)
  • WordPress databases
  • Configuration files (where applicable)

5.2 How We Protect Backups

  • Stored on secure, offsite infrastructure with encryption
  • Retained according to your service plan (e.g., 30-day, 90-day retention)
  • Used only for disaster recovery, restoration, and service continuity

5.3 Backup Deletion

Upon service termination, backups are securely deleted in accordance with our retention schedule, typically within 30 days unless otherwise specified.

6. Third-Party Service Providers

We work with trusted third-party providers to deliver our services. These may include:

CategoryPurpose
Payment ProcessorsSecure billing and invoicing
Backup & Cloud StorageOffsite backup infrastructure
Security ToolsMalware scanning and firewall protection
Analytics ProvidersWebsite performance and usage insights
Communication ToolsEmail, live chat, and WhatsApp support
Uptime MonitoringServer and website availability tracking

Important: Third-party providers process data according to their own privacy policies. We conduct due diligence to ensure they maintain adequate security and privacy standards.

7. DATA RETENTION

We retain your data only as long as necessary to provide services and meet legal obligations:

Data TypeRetention Period
Account & billing recordsAs required by law (typically 7 years)
Communication historyUp to 24 months after last contact
Login credentialsDeleted within 7 days of service termination
Backup dataPer service plan, then securely deleted
Reports & audit logsRetained for operational reference

8. Cookies & Tracking Technologies

Our website uses cookies and similar technologies for:

  • Essential Functionality: Session management, security features
  • Analytics: Google Analytics or similar (to understand site usage)
  • Live Chat: To enable real-time support conversations
  • Marketing Attribution: To track enquiry sources (if applicable)

You can control cookies via your browser settings. Disabling cookies may affect site functionality.

9. Your Privacy Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Portability: Request your data in a structured, machine-readable format
  • Withdraw Consent: Opt out of marketing communications or revoke consent
  • Object: Object to processing based on legitimate interests

To exercise your rights, contact us at:
hello@moosk.co

We will respond to requests within 30 days (or as required by law).

10. DATA SECURITY MEASURES

We implement robust technical and organisational safeguards to protect your data:

  • Encryption: Passwords, backups, and sensitive data are encrypted
  • Access Controls: Role-based permissions and multi-factor authentication (MFA)
  • Secure Infrastructure: Cloud storage with enterprise-grade security
  • Regular Audits: Internal security reviews and software updates
  • Staff Training: Team members trained on data protection best practices

Disclaimer: While we take security seriously, no system is 100% risk-free. We continuously improve our safeguards to minimise risks.

11. International Data Transfers

We serve clients globally. Your data may be:

  • Processed and stored in Singapore (where we are based)
  • Transferred to third-party providers in other jurisdictions (e.g., cloud infrastructure, backup services)

For EU/UK clients, we ensure appropriate safeguards (e.g., Standard Contractual Clauses) are in place where data is transferred outside the EEA.

12. Children’s Privacy

Our services are intended for businesses and professionals. We do not knowingly collect personal data from individuals under 18 years of age. If you believe we have inadvertently collected such data, please contact us immediately.

13. COMPLAINTS & REGULATORY AUTHORITY

If you have concerns about how we handle your data, you may:

  1. Contact us directly: hello@moosk.co
  2. File a complaint with Singapore’s Personal Data Protection Commission (PDPC): www.pdpc.gov.sg
  3. EU/UK residents: Contact your local supervisory authority (e.g., ICO in the UK)

14. Updates To This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. The “Last Updated” date at the top indicates the latest revision.

We encourage you to review this page regularly. Continued use of our services constitutes acceptance of the updated policy.

15. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:
Email: hello@moosk.co
Website: https://moosk.co

Moosk
A division of Apricus Digital LLP
UEN: T12LL0507B
Singapore