We care about your Privacy

Please read this Privacy Policy carefully

Short version:

When you sign-up for our service, we ask for your email address – which we use to identify you as the technical administrator of your website. Occasionally, we use this to request for feedback/suggestions about our service.

During the operation, we collect your server access logs that usually include the IP Address of your website visitors. We use these logs to determine whether the visitor’s activities fit a normal human access pattern and whether it matches a known attacker’s address. We retain this information for a short period (usually a few weeks) to aid in any investigation in the event your website is hacked.

We DO NOT collect any other Personally Identifiable Information.
We DO NOT rent / sell your information to anyone.


At DSD InfoSec (the company that makes ActiFend), we care about your privacy. We make conscious effort to factor this into all our activities. In this document we outline our privacy policy. If you have any suggestions for improvement or comments on this, please send an email to support@actifend.com.

By using our website ActiFend and any other linked pages, mobile applications, or any other services we offer from time to time in any manner, you acknowledge that you accept the practices and policies outlined in this privacy policy, and you hereby consent that we will collect, and use your information in the following ways.

Information you provide to us:

We receive and store any information you knowingly provide to us. When registering for Actifend service you provide us your email address and metadata about the website you are registering as your asset. This metadata includes the name of the website (referred to as the Fully Qualified Domain Name or FQDN) and its public IP address. You also provide us your email address when you register to hear from us through our mailing list.

When you choose to automatically install the ActiFend plugin from the mobile app, you provide your WordPress admin credentials to the app. We DO NOT collect or store this information anywhere. This information never leaves your mobile device – other than to your own website, and that too only for the purpose of installing the plugin needed to provide our service.

Information collected automatically:

Whenever you interact with our website, we automatically receive and record information on our server logs from your browser including your IP address, ‘cookie’ information, and the page you requested. ‘Cookies’ are identifiers we transfer to your computer (or mobile device) that allow us to recognise your browser and tell us how and when pages in our website are listed and by how many people. You may be able to change the preferences on your browser or mobile device to prevent or limit your computer or device’s acceptance of cookies. For example, we honor the Do Not Track (DNT) flag sent by modern browsers. You can delete your browser’s cookie using the options provided by your browser.

When we collect usage information (such as the numbers and frequency of visitors to our websites), we only use this data in aggregate form, and not in a manner that would identify you personally. For example, this aggregate data tells us how often users use part of the website, so that we can make the website appealing to as many users as possible.

We do not save any personal information in the cookie and cannot connect the information in the cookie to a specific person.

We also collect usage information when you use our mobile application. This information is also collected in aggregate form, and not in a manner that would identify you personally.

When you use our plugin or any agent software on your webserver, it sends us information regarding the visitors to your website. This includes the visitor’s IP address, metadata about the resources they requested from your website, their browser identifier string, and their referrer (the site from which they were referred to your site) string. This information is essential to the service we provide – and is used only for this purpose.

We DO NOT collect any of the actual information your visitors receive from your site; and any data they submit through your site’s forms (through HTTP POST) to you.

We offer backup and restore of your website content. For this purpose alone, whenever a backup is requested we compress, encrypt and transmit your website content to our storage infrastructure. This is not accessed by us for any purpose other than to restore your data when you need it.

E­mail and other communications:

We may contact you by email, about your use of our product(s) and service(s). Also, we may receive a confirmation when you open an email from us. The confirmation helps us make emails more interesting and improve our service. If you don’t want to receive email, please indicate your preference by emailing us at support@actifend.com.

Privacy-related Frequently Asked Questions (FAQs):

Will DSD Infosec / ActiFend share any of the personal information it receives?

We DO NOT share, rent or sell your personal information to anyone.

Is personal information about me secure?

At the time, the only personal information we store is your email address. We endeavour to protect the privacy of your account in our database, but we can not guarantee complete security. Unauthorised entry or use, hardware, or software failure, and other factors, may compromise the security of user information at any time. The website may contain links to other sites. We are not responsible for the privacy polices and /or practices on other sites. When following a link to another site you should read that site’s privacy

What choices do I have to not to disclose information?

You can always opt not to disclose information to use; or send us a request to support@actifend.com to permanently erase your data in our records. Please keep in mind though that in order to provide you the web security service, we do need your email address – to identify you as the administrator of the website.

Why do you use third party logins such as Google / Facebook / LinkedIn in your mobile app?

Creating and securing managing login credentials in a large number of sites is a security risk. We chose this federated authentication mechanism – so that you have one less userid and password to remember andn manage, while still retaining strong security practices that are supported by these parties. Each of these parties do verify that you control your primary email account. That is the assurance we need to know that it is safe to show your website’s security console.

Changes to this privacy policy:

We may amend this privacy policy from time to time. Use of information we collect is subject to the privacy policy in effect at the time such information is used. If we make changes in the way we use personal information, we will notify you by updating this document on our website or by sending you an email.