{"id":3,"date":"2025-11-12T21:29:23","date_gmt":"2025-11-12T21:29:23","guid":{"rendered":"https:\/\/www.drspeffle.co.uk\/?page_id=3"},"modified":"2025-11-13T00:15:15","modified_gmt":"2025-11-13T00:15:15","slug":"privacy-policy","status":"publish","type":"page","link":"https:\/\/portal.drspeffle.co.uk\/index.php\/privacy-policy\/","title":{"rendered":"Privacy Policy"},"content":{"rendered":"\n

1. Introduction<\/strong><\/h2>\n\n\n\n

Dr Speffle Cyber Resilience Ltd (\u201cwe\u201d, \u201cus\u201d, \u201cour\u201d) is committed to protecting the privacy and security of your personal data. This Privacy Policy explains what information we collect, how we use it, and your rights under UK GDPR and the Data Protection Act 2018.<\/p>\n\n\n\n

This website is intended for general information, research dissemination, and client communication regarding cyber resilience, consultancy services, technical documentation, and academic work.<\/p>\n\n\n\n

\n\n\n\n

2. What Data We Collect<\/strong><\/h1>\n\n\n\n

We may collect and process:<\/p>\n\n\n\n

2.1 Information you provide directly<\/strong><\/h3>\n\n\n\n
    \n
  • Contact form submissions (name, email address, message contents)<\/li>\n\n\n\n
  • Email correspondence<\/li>\n\n\n\n
  • Consultancy enquiries<\/li>\n\n\n\n
  • Optional Newsletter signup (if enabled)<\/li>\n<\/ul>\n\n\n\n

    2.2 Automatically collected technical data<\/strong><\/h3>\n\n\n\n

    Through cookies, analytics, and security plugins:<\/p>\n\n\n\n

      \n
    • IP address (for security + anti-spam protection)<\/li>\n\n\n\n
    • Browser type\/version<\/li>\n\n\n\n
    • Device information<\/li>\n\n\n\n
    • Pages viewed and time spent<\/li>\n\n\n\n
    • Referring website<\/li>\n\n\n\n
    • Error logs and security events<\/li>\n<\/ul>\n\n\n\n

      2.3 Plugin-related data<\/strong><\/h3>\n\n\n\n

      Our website uses several security, SEO, analytics, and performance plugins. These plugins may process limited technical data to function correctly. We only use reputable, security-focused plugins and do not allow third-party advertising or behavioural tracking.<\/p>\n\n\n\n

      Below is a full list of plugins that may process technical or personal data:<\/p>\n\n\n\n

      \ud83d\udd10 Security & Anti-Malware Plugins<\/strong><\/h2>\n\n\n\n

      Anti-Malware Security and Brute-Force Firewall<\/strong><\/h3>\n\n\n\n
        \n
      • IP address<\/li>\n\n\n\n
      • User-agent<\/li>\n\n\n\n
      • URL request patterns<\/li>\n\n\n\n
      • Suspicious activity logs<\/li>\n\n\n\n
      • Malware scanning<\/li>\n\n\n\n
      • Threat detection<\/li>\n\n\n\n
      • Firewall defence
        Lawful basis: Legitimate Interests (website security)<\/strong><\/li>\n<\/ul>\n\n\n\n
        \n\n\n\n

        Limit Login Attempts Reloaded<\/strong><\/h3>\n\n\n\n
          \n
        • IP address<\/li>\n\n\n\n
        • Failed login attempts<\/li>\n\n\n\n
        • Username entered (if provided)<\/li>\n\n\n\n
        • Brute-force protection
          Lawful basis: Legitimate Interests (security & fraud prevention)<\/strong><\/li>\n<\/ul>\n\n\n\n
          \n\n\n\n

          WP Armour \u2013 Honeypot Anti-Spam<\/strong><\/h3>\n\n\n\n
            \n
          • Form submission metadata
            Purpose:<\/li>\n\n\n\n
          • Spam prevention
            Lawful basis: Legitimate Interests<\/strong><\/li>\n<\/ul>\n\n\n\n
            \n\n\n\n

            WP fail2ban & WP fail2ban Blocklist<\/strong><\/h3>\n\n\n\n
              \n
            • IP address<\/li>\n\n\n\n
            • Login events<\/li>\n\n\n\n
            • Core WordPress activity logs
              Purpose:<\/li>\n\n\n\n
            • Logging security events to system logs<\/li>\n\n\n\n
            • Automatic blocklist integration
              Lawful basis: Legitimate Interests (security monitoring)<\/strong><\/li>\n<\/ul>\n\n\n\n
              \n\n\n\n

              \ud83d\udee1 Access Restriction Plugins<\/strong><\/h2>\n\n\n\n

              Password Protect WordPress Lite<\/strong><\/h3>\n\n\n\n
                \n
              • Password validation attempts<\/li>\n\n\n\n
              • User roles (if logged in)
                Purpose:<\/li>\n\n\n\n
              • Restricting access to certain pages
                Lawful basis: Legitimate Interests (site management)<\/strong><\/li>\n<\/ul>\n\n\n\n
                \n\n\n\n

                \u26a1 Performance Plugins<\/strong><\/h2>\n\n\n\n

                WP Fastest Cache<\/strong><\/h3>\n\n\n\n
                  \n
                • Anonymous cached page data
                  Purpose:<\/li>\n\n\n\n
                • Improve website loading speed
                  Lawful basis: Legitimate Interests (performance optimisation)<\/strong><\/li>\n<\/ul>\n\n\n\n
                  \n\n\n\n

                  \ud83d\udcc8 Analytics & SEO Tools<\/strong><\/h2>\n\n\n\n

                  Site Kit by Google<\/strong><\/h3>\n\n\n\n
                    \n
                  • IP address (anonymised)<\/li>\n\n\n\n
                  • Page views<\/li>\n\n\n\n
                  • Browser\/device info<\/li>\n\n\n\n
                  • Referrer
                    Purpose:<\/li>\n\n\n\n
                  • Analytics<\/li>\n\n\n\n
                  • Search Console performance<\/li>\n\n\n\n
                  • Page speed measurement
                    Lawful basis: Consent<\/strong> (for non-essential analytics cookies)<\/li>\n<\/ul>\n\n\n\n
                    \n\n\n\n

                    Rank Math SEO<\/strong><\/h3>\n\n\n\n
                      \n
                    • Structured data about posts (not personal data)<\/li>\n\n\n\n
                    • Search engine metadata
                      Purpose:<\/li>\n\n\n\n
                    • SEO optimisation
                      Lawful basis: Legitimate Interests (site discoverability)<\/strong><\/li>\n<\/ul>\n\n\n\n
                      \n\n\n\n

                      CrawlWP SEO \u2013 Instant Indexing<\/strong><\/h3>\n\n\n\n
                        \n
                      • Post metadata<\/li>\n\n\n\n
                      • URL indexing requests
                        Purpose:<\/li>\n\n\n\n
                      • Faster search engine indexing
                        Lawful basis: Legitimate Interests<\/strong><\/li>\n<\/ul>\n\n\n\n
                        \n\n\n\n

                        Instant Indexing (Rank Math)<\/strong><\/h3>\n\n\n\n
                          \n
                        • URLs submitted for indexing
                          Purpose:<\/li>\n\n\n\n
                        • Search engine submission
                          Lawful basis: Legitimate Interests<\/strong><\/li>\n<\/ul>\n\n\n\n
                          \n\n\n\n

                          \ud83c\udfa8 Design & Presentation Plugins<\/strong><\/h2>\n\n\n\n

                          Favicon by RealFaviconGenerator<\/strong><\/h3>\n\n\n\n
                            \n
                          • No personal data<\/li>\n\n\n\n
                          • Providing device-specific favicons<\/li>\n<\/ul>\n\n\n\n
                            \n\n\n\n

                            Under Construction<\/strong><\/h3>\n\n\n\n
                              \n
                            • Visitor role (logged in\/not logged in)<\/li>\n\n\n\n
                            • Display maintenance or \u201cunder construction\u201d page<\/li>\n<\/ul>\n\n\n\n
                              \n\n\n\n

                              \ud83e\udde9 Summary of Plugin Data Processing<\/strong><\/h1>\n\n\n\n

                              Across all plugins, typical data processed may include:<\/p>\n\n\n\n