Privacy Policy : ServicePress: WordPress Integration for ServiceNow

What data is collected
- National Vulnerability Database: NVDe for CVE and CWE information
- Wordfence Information: All CVE records matched up with the WordPress software that it may be attached to.
- WordPress Information: Website data for creating relationships between the Wordfence Data with the NVDe data.
How the data is used
- To monitor ALL possible Vulnerabilities that relate to WordPress sites & the software that exists on the Multisite Network.
Whether the data is shared with other parties.
- Shared between ServiceNow, WordPress, and Wordfence information.
- Data is not shared with any other parties.
How the data is transferred, stored, and secured.
- Transferred: Securely via HTTPS using REST
- Stored: Most are stored on custom tables with their own ACLs. However, a few of the tables are on the CMDB (Website, Software, Software Instances)
- Secured:
  - In Transit: Encryption via HTTPS
  - On ServiceNow: Users, Roles, and Groups set up
  - On WordPress: Username and Application Password generated by the User and their Roles.