Last Updated: 02/22/2026
This Privacy Policy describes how the Engage WordPress Plugin (“the Plugin”) processes information when installed and used on a WordPress website.
The Plugin provides AI-powered chat functionality and optionally allows users to request follow-up contact from the website owner.
1. Information Collected
A. Chat Functionality
When a site visitor uses the chat feature, the Plugin processes:
- Chat Messages – Messages entered into the chat interface. These messages are transmitted to the Engage API for AI-generated responses.
- Session ID – A randomly generated identifier stored in the browser’s
sessionStorage.- Not stored as a cookie
- Automatically cleared when the browser tab is closed
- Page URL – Used to provide context-aware responses.
- Previous Response ID – Used to maintain conversation threading during the session.
B. Optional Contact Information (User-Initiated)
The Plugin may ask users whether they would like to be contacted by the website owner.
If a user voluntarily chooses to provide contact information, the following may be collected:
- Name
- Email address
- Phone number
This information is:
- Collected only if the user explicitly provides it
- Transmitted securely to the website owner via the Engage API
- Used solely for follow-up communication initiated by the website owner
The Plugin does not require contact information to use the chat feature.
2. Information Not Collected Automatically
The Plugin does not automatically collect or transmit:
- Personal identifiers (unless voluntarily submitted by the user)
- Account credentials
- Cookies or persistent tracking data
- IP addresses to Engage servers
- Analytics data
- Browser fingerprinting data
- Telemetry or behavioral tracking data
Rate limiting is performed locally using WordPress transients and does not require transmitting IP addresses to Engage servers.
3. Data Sharing
Data is shared only as necessary to provide the service:
- Chat messages and optional contact information are transmitted securely to the Engage API for processing and routing.
- Data may be processed by AI service providers strictly for response generation.
- Data may be disclosed if required by applicable law or valid legal process.
The Plugin and Engage do not sell, rent, or trade personal data.
4. Data Retention
- Chat messages: Retained for up to 90 days.
- Optional contact information: Retained for up to 90 days unless otherwise required by the website owner.
- Rate limiting data: Stored locally for up to 1 hour.
- Session IDs: Cleared when the browser tab closes.
Website owners are responsible for any additional retention after they receive contact information.
5. Security
Security measures include:
- TLS encryption for all API communications
- Server-side API key handling (API keys are not exposed in client-side code)
- Standard WordPress security practices
No method of transmission over the internet is completely secure, but reasonable safeguards are implemented.
6. Role of the Website Owner
The website owner operating the Plugin acts as the data controller for any personal information collected through the contact request feature.
Website owners are responsible for:
- Updating their own website privacy policy to disclose use of the Plugin
- Informing users that chat messages and optional contact details are transmitted to a third-party AI service
- Responding to user privacy requests
- Ensuring compliance with applicable privacy laws
7. User Rights (GDPR & CCPA)
Depending on jurisdiction, users may have rights to:
- Access their personal data
- Request correction
- Request deletion
- Restrict or object to processing
- Opt out of the sale of personal information (the Plugin does not sell personal data)
Requests should be directed to the website owner operating the site where the Plugin is installed.
8. Children’s Privacy
The Plugin is not directed toward children under 13 (or 16 where applicable). Personal information should not be submitted by children without parental consent.
9. International Data Transfers
Data may be processed in countries outside the user’s country of residence. Where required, appropriate safeguards are implemented.
10. Contact Information
For questions about this Privacy Policy, please contact:
Empirevault LLC
info@empirevault.com
Home