Skip to content

MiniCRM plugin: Privacy Policy

Effective date: June 9, 2026
Last updated: June 9, 2026

This Privacy Policy explains how the Rusenas miniCRM plugin for WordPress (the “Plugin”) handles personal data. The Plugin is published by Rusenas (“Rusenas”, “we”, “us”, or “our”), a company based in the Republic of the Philippines.

This policy is a companion to the Rusenas CRM Terms and Conditions.

1. Summary

The Plugin is self-contained. It does not send any data to Rusenas, and Rusenas does not collect, receive, store, or have access to any of your data or your users’ data. The Plugin does not track website visitors and does not use analytics or advertising. All data the Plugin handles stays inside your own
WordPress installation.

2. Who Is Responsible for Your Data

  • You (the site operator) are the data controller for any personal data processed through the Plugin on your WordPress site (your “Site”). You decide what data is entered, who has access, and how long it is kept.
  • Rusenas is the publisher of the Plugin’s software. Because the Plugin does not communicate with Rusenas, we do not process personal data on your behalf through the Plugin and act neither as a controller nor a processor of your Content.

If you make the Plugin available to your team or clients, you are responsible for providing them with appropriate privacy information and for complying with the laws that apply to you, including, where applicable, the Philippine Data Privacy Act of 2012 (Republic Act No. 10173) and any other relevant laws.

3. What Data the Plugin Processes

The Plugin processes the following data locally on your Site so that its CRM features can work:

  • Projects and tasks — titles, descriptions, statuses, due dates, and file attachments you create.
  • User associations — the WordPress user IDs of project authors, task assignees, and the users on a project’s access list, used to control who can view, comment on, or edit each record.
  • Comments — comments posted on projects and tasks. These use WordPress’s built-in comment system, which records the comment author’s name, the associated WordPress user, the comment text, and the date.
  • Notifications — in-app notification records (recipient user ID, a message, a link, the related record, a read/unread flag, and a timestamp), stored in a dedicated table in your WordPress database.
  • Email preference — each user’s choice of whether to receive email notifications, stored as WordPress user metadata.

The Plugin does not create new visitor-facing forms and does not collect data from your site’s public visitors.

4. Where Data Is Stored

All of the data described above is stored within your own WordPress installation — in your site’s database and media library — on the hosting you control. None of it is transmitted to Rusenas or to any external Rusenas service.

5. How the Data Is Used

The data is used only to operate the CRM: to display projects and tasks to the users who have access, to enforce role- and capability-based permissions, to show the calendar and comment threads, and to deliver notifications.

6. Email Notifications

When enabled, the Plugin sends notification emails to the relevant WordPress users using your site’s standard mail function (wp_mail). The recipient’s email address comes from their WordPress user account. The Plugin itself does not send email through any Rusenas server.

If you configure a third-party email or SMTP service (for example, an SMTP plugin) to deliver your site’s mail, that service processes the outgoing email
under its own privacy policy and terms, which are outside Rusenas’s control.

7. Cookies and Tracking

The Plugin does not set tracking cookies, does not fingerprint users, and does not run analytics or advertising. (WordPress core and your theme or other plugins may set their own cookies, such as login-session cookies for administrators; those are not created by the Plugin.)

8. Comment Metadata

Comments are handled by WordPress’s core comment system. Depending on your WordPress configuration, WordPress core may record additional metadata for a comment (such as the commenter’s IP address). This behavior comes from WordPress itself, not from the Plugin, and is governed by your overall WordPress and site privacy settings.

9. Data Sharing

Rusenas does not receive your data and therefore does not sell, rent, or share it. The Plugin does not share your data with any third party. Any sharing that occurs is the result of choices you make on your own Site (for example, granting another user access to a project, or configuring a third-party mail service).

10. Data Retention and Deletion

Your Content remains in your Site for as long as you keep it. You can delete individual projects, tasks, comments, and notifications at any time.

Deactivating the Plugin keeps your data in place. Deleting (uninstalling) the Plugin removes the data it created — its settings, the capabilities it added to
roles, its notifications table, and the projects and tasks it created — from your database. You are responsible for maintaining your own backups.

11. Security

The Plugin relies on WordPress’s user authentication, roles, and capabilities, and uses standard WordPress security measures (such as capability checks and nonces) to protect access to CRM records. However, the overall security of the data depends on your WordPress installation, hosting environment, and administration. You are responsible for keeping WordPress, the Plugin, your server, and your user accounts secure and up to date.

12. Data Subject Rights

Because Rusenas does not hold your data, requests to access, correct, delete, or restrict the processing of personal data stored through the Plugin should be directed to you, the site operator, as the data controller. Where the Philippine Data Privacy Act or another applicable law grants individuals such rights, you are responsible for honoring them using the tools available in WordPress and the Plugin.

13. Children’s Data

The Plugin is an administrative tool for site operators and their authorized users. It is not directed at children, and it does not knowingly process
children’s personal data.

14. International Transfers

The Plugin does not transfer data internationally, because it does not transmit data off your Site. Any transfer that results from your own hosting location or the third-party services you choose is your responsibility.

15. Changes to This Policy

We may update this Privacy Policy from time to time. The current version is indicated by the “Last updated” date above and takes effect when published.

16. Contact

Rusenas
Republic of the Philippines
Website: https://rusenas.com
Email: mail@rusenas.com