What is your privacy policy for the use of your Dropbox app?

This privacy policy is published by the creators of UpdraftPlus, Updraft WP Software Ltd. (please see the footer of this page for company registration number). It applies only if you are using our built-in app for authentication. If you configure UpdraftPlus to use your own app, then it does not apply, and in that case no data comes to any of our servers.

Use of Dropbox with UpdraftPlus involves visiting our authentication server (website) as part of the authentication (OAuth) flow. Note that no backup data or other data from your WordPress site goes to our servers – this all remains on your server on which you are hosting WordPress. The authentication procedure will cause:

  • Your IP address to be logged in our webserver logs. No further processing of these logs is carried out. These logs are kept for 6 months in accordance with UK law, and then automatically deleted. We carry out no further processing on them. They are not shared with any third party.
  • (If authentication succeeds) your Dropbox account identifier may be stored in the authentication server’s database, so that the necessary authentication token can be given to your site if it requests it again. We carry out no further processing on them. They are not shared with any third party. Note that at the time of writing, we do not currently perform this storage, as Dropbox’s authentication procedures do not make it technically advantageous. (We merely reserve the right to do so if it becomes technically helpful in future).

No other data is sent or implicitly gathered by any of our servers in the process of using Dropbox. Any changes to this privacy policy in future will be notified of on this page.

Posted in: Dropbox, GDPR