Privacy Policy

Last updated: March 2026

Introduction

VistoShield is a server security product developed by Vistoweb. We take your privacy seriously. This policy explains what data VistoShield collects, how it is used, and your rights regarding that data.

What We Collect

License Key Validation

When you activate a Pro license, VistoShield sends your license key to vistoshield.com to verify its validity and check your subscription status. This request includes the license key and the server IP address or domain where the product is installed. No other data is transmitted.

Update Checks

VistoShield periodically contacts vistoshield.com to check for software updates and updated threat signature files. These requests include only the current version number and edition type.

Error Reporting (Optional)

If you enable error reporting, VistoShield may send anonymized error logs to help us diagnose and fix issues. Error reports never contain personal data, passwords, or the content of your files. You can disable error reporting at any time.

WordPress Plugins

All VistoShield WordPress plugins store data exclusively in your own WordPress database on your own server. This includes firewall logs, login attempt records, scan results, and activity logs. No data from your WordPress site is sent to VistoShield servers unless you explicitly enable a Pro feature that requires it (such as license validation).

Server Edition

The VistoShield Server Edition daemon runs entirely on your server. It connects to vistoshield.com only for two purposes:

• License key validation (Pro edition only)
• Downloading updated bot signatures and IP reputation lists

All firewall rules, logs, and configuration files remain on your server under your full control.

What We Do Not Collect

• We do not use third-party analytics or tracking scripts in our products
• We do not sell, rent, or share your data with any third party
• We do not collect personal information about your website visitors
• We do not store your server passwords or SSH keys
• We do not place advertising cookies or tracking pixels

Website (vistoshield.com)

The VistoShield website does not use third-party tracking cookies. We may use basic server-side analytics (access logs) to understand traffic patterns. No personally identifiable information is collected through the website beyond what you voluntarily submit through contact forms.

GDPR Compliance

VistoShield is compliant with the European Union General Data Protection Regulation (GDPR). You have the right to:

• Access — Request a copy of any data we hold about you
• Rectification — Ask us to correct inaccurate data
• Erasure — Request deletion of your data
• Portability — Receive your data in a machine-readable format
• Objection — Object to processing of your data

To exercise any of these rights, contact us at info@vistoshield.com.

Data Retention

License validation records are retained for the duration of your active subscription plus 30 days. Error reports are retained for up to 90 days. If you request data deletion, we will process your request within 30 days.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of VistoShield after changes are posted constitutes acceptance of the updated policy.

Contact

If you have questions about this Privacy Policy, contact us at:
info@vistoshield.com