Sign in
Edit Content

Privacy Policy

Privacy Policy for Sombha.com

This Privacy Policy explains how Sombha.com (https://www.sombha.com) collects, uses, maintains, and discloses information collected from users (each, a “User”) of the site, including data processing specific to our hosting, optimization, and billing services.

1. Information We Collect (General WordPress Functions)

Comments

When visitors leave comments on the site, we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

2. Technical Data & Site Performance Optimization

We utilize third-party and local services exclusively to ensure the speed, security, and stability of the website. These services process limited connection data as described below:

Cloudflare (CDN and Security)

We use Cloudflare as a Content Delivery Network (CDN) and for security protection. When you visit our site:

  • Data Collected: Cloudflare logs standard web access information, including your IP address, browser information, and requested pages.

  • Purpose: This data is used solely for the detection and mitigation of security threats, load balancing, and speeding up content delivery by serving cached files from the server closest to you.

  • Email Protection: Cloudflare also runs a small JavaScript script (/cdn-cgi/scripts/email-decode.min.js) in your browser to obscure email addresses from spam bots.

LiteSpeed Cache and Object Caching

Our site uses the LiteSpeed Cache plugin and Memcached (Object Cache) for performance optimization.

  • Data Processed: These systems store temporary copies of HTML pages, images (in WebP format), and database query results in a cache.

  • Purpose: The sole purpose is to reduce server load and increase website speed (Time to First Byte/TTFB). No personal user data is permanently stored, tracked, or marketed by the caching system.

3. Client Area, Billing, and Account Data

Our services and client accounts are managed through a dedicated billing system, located at https://billing.sombha.com/. This section outlines data handling for all registered clients.

  • Data Collected: When you sign up for services, we collect Full Name, Billing Address, Email Address, Phone Number, Service Details, and Transaction Records.

  • Payment Information: We do not store full credit card details on our servers. All payment transactions are processed securely by our partner and third-party payment gateway https://www.relworx.com/. We may store a token or the last four digits of your card for billing reference purposes.

  • Security Logging: WHMCS logs your IP address upon login, checkout, and administrative actions for security purposes, fraud detection, and to protect against session hijacking.

4. Cookies (Standard WordPress & Login)

Cookie Usage

If you leave a comment on our site, you may opt-in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

Session Cookies

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me,” your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

5. Third-Party Embedded Content

Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These external websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction if you have an account and are logged in to that website.

6. Who We Share Your Data With

We share data only as necessary for site function and security:

  • Visitor comments may be checked through an automated spam detection service.

  • Your IP address is shared with Cloudflare for security and CDN purposes.

  • If you request a password reset, your IP address will be included in the reset email.

7. Your Data Rights

Data Retention

If you leave a comment, the comment and its metadata are retained indefinitely. For users that register on our website, we also store the personal information they provide in their user profile.

Your Rights

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.