How the plugin connects
A customer creates a site connection in InboxMend Cloud, then uses the generated site key in the WordPress plugin. The plugin reports connection, polling, inbox and notification status signals back to the customer workspace.
Security & Data Handling
InboxMend is designed to keep the working form inbox inside WordPress while adding Cloud visibility for connected site health and notification status signals.
Last updated: 6 June 2026
Use site keys and authenticated accounts to connect WordPress sites to Cloud.
Send only the monitoring/status data needed for your workflow.
Treat Cloud as a visibility layer, not a replacement for WordPress, SMTP logs or CRM backups.
Status data that can be sent
Depending on settings, the plugin may send site identification, plugin version, WordPress version, sync timestamps, form names, submission metadata, limited previews, notification status, email event status and diagnostic information.
Data to avoid sending
Customers should avoid sending sensitive form fields, payment details, health information, passwords, private notes or other high-risk content to Cloud unless it is clearly needed and legally permitted.
Sensitive data handling principles
InboxMend favors a saved-first workflow where detailed submissions remain in WordPress. Cloud should receive the minimum useful context needed to monitor form activity, notification status and site health.
API keys and site keys
Site keys and tokens should be treated like credentials. Customers should store them securely, limit who can access them, revoke keys that are no longer needed and avoid sharing keys in public tickets or screenshots.
Access control
InboxMend workspaces use authenticated access and role-based controls. Customers are responsible for inviting the right users, removing old users and choosing who can view connected site and monitoring data.
Retention and deletion
Cloud data is retained to provide monitoring history, reporting, support, billing and security review. Customers can request deletion of Cloud data, while WordPress-local records remain under the customer’s control.
Product limits
InboxMend helps detect silent problems, but it does not guarantee WordPress uptime, SMTP uptime, email inbox placement, third-party form plugin behavior or recovery of every possible submission.
Customer WordPress configuration
Customers should keep WordPress, form plugins and SMTP settings maintained, test forms after changes, review privacy notices, secure administrator access and confirm that connected site data settings match their own compliance needs.