Last updated: 16.09.25
This Privacy Policy (“Policy”) describes how Loadweb Ltd. (“Loadweb”, “we”, “our”, or “us”) handles personal data (“Information”) collected in connection with our website building platform, white-label tools, and associated services (collectively, the “Services”).
This Policy applies to the following categories of data subjects:
Account Holders / Platform Customers / White-Label Partners
Business entities and professionals who register for and use the Services to build and manage websites, online stores, landing pages, calendars/bookings, newsletters, and other solutions for themselves or for their own customers (“Customers”, “Partners”, or “Website Owners”).
Authorized Users on behalf of the Customer
Contributors, collaborators, employees, contractors, or other users who are invited to access a Customer’s account or projects.
Visitors of Customer Websites
Individuals browsing websites, applications, or other online properties built, branded, and managed by a Customer using our platform (“Customer Sites”). These individuals are typically End Users of the Customer, not of Loadweb.
Visitors of Loadweb’s Own Sites and Assets
Individuals visiting websites, apps, or landing pages operated directly by Loadweb (“Company Sites”), registering for our webinars/events, or receiving our marketing content.
Use of the Services and Company Sites is subject to this Privacy Policy and our Terms of Use, and constitutes consent to the processing of Information as described herein.
You are not legally required to provide us with Information. However, if you choose not to do so, we may be unable to provide access to some or all of the Services.
We may collect and process the following categories of Information about you as a Customer / Partner:
A. Profile & Account Data
Name, business contact details (email, phone)
Account username, hashed password
Role, company/organization name
User permissions and access roles within the account
Profile photo or logo (if you choose to upload one)
B. Business & Payment Details
Business name, registration/ID number (where provided)
Billing address, country, preferred currency
Transactional data: invoices, payments, subscription plans, renewal history
Payment method details handled via secure third-party payment processors
We do not store full credit card numbers; these are typically handled by the payment provider.
C. Usage & Configuration Data
Projects and websites created in your account
Domains (including Customer domains connected to the Platform)
Enabled modules and add-ons (eCommerce, bookings, email tools, affiliate/expert tools, etc.)
Design configurations, templates, layouts, and site structure
Integration settings (e.g., analytics tags, pixels, CRM or email providers, payment gateways)
Administrative logs and account activity (such as login timestamps, actions in the dashboard)
D. Technical Data (for Customers using the Platform)
IP address, approximate location inferred from IP (where applicable)
Device type, operating system, browser type and version, screen resolution, language and time zone
Cookies, pixels, and similar technologies (see Section 5 below)
Log files, performance data, and basic usage metrics (e.g., clicks within the dashboard, feature usage, error logs)
E. Support & Communication Data
Support tickets, inquiries, and correspondence
Chat logs, emails, and notes from live support interactions
Call recordings where permitted by applicable law and with appropriate notices
Feedback forms, surveys, and other communications
For users invited into a Customer’s account (e.g., staff, contractors):
Name, email, role, and permissions inside the Customer’s account
Activity and actions within the account (e.g., websites edited, settings changed)
Technical and usage data similar to that described above for Customers while using the Platform.
In such cases, the Customer is generally the primary business that determines the purpose of processing. Loadweb processes such data in accordance with these Terms and, where applicable, as a processor on behalf of the Customer.
When End Users visit or interact with Customer Sites and those Customer Sites are hosted on our infrastructure, we may collect certain Information on behalf of the Customer, depending on the Customer’s configuration and applicable law.
A. Usage and Technical Data
IP address, device type, browser and operating system
Date and time of visit, pages viewed, referring URLs
Cookies and similar technologies (e.g., session identifiers, analytics cookies), where enabled by the Customer
Approximate geolocation (if derived from IP, where used and legally permissible)
B. Forms, Interactions, and Transactions
When an End User fills in forms or interacts with features on a Customer Site (for example: contact forms, newsletter sign-ups, bookings, account registrations, orders), the data submitted may include:
Name and contact information (email, phone, address)
Message content, inquiries, or support requests
Booking/appointment details
Order details (products, services, pricing, billing/shipping data)
Payment-related details handled by third-party payment providers
Important:
The Customer (Partner / Website Owner) determines what information is collected on their Customer Site and for what purposes. Loadweb merely provides the underlying infrastructure and, for such data, typically acts as a data processor on behalf of the Customer. The Customer is the Data Controller of the data collected on their own Customer Site.
When you visit sites operated directly by Loadweb (e.g., our marketing website, landing pages, webinars, documentation):
Usage and technical data (similar to the above)
Cookies/pixels for analytics and marketing (subject to applicable law and your consent preferences)
Contact forms and registrations: name, email, organization, position, phone, content of the inquiry
Newsletter sign-ups and marketing preferences
In this context, Loadweb acts as the Data Controller.
We may receive Information from third parties, including:
Payment processors – payment confirmations, limited card details (e.g., last digits), transaction IDs and status
Analytics and marketing tools – aggregated or pseudonymized usage data and campaign performance metrics
Social networks or identity providers – if you log in via a third-party provider or connect your account
Business partners – where we run joint offerings, referrals, or integrations
We only receive such data in accordance with your settings, authorizations, and applicable law.
We use Information, as applicable, for the following purposes:
Providing and Operating the Services
Creating and managing accounts
Hosting and operating websites and solutions
Domain tools and DNS-related functions
Enabling white-label features, affiliate and expert modules, eCommerce tools, or other add-ons
Identity verification and security of logins
Customer Support and Communications
Responding to support requests and inquiries
Providing help articles, guidance, and technical assistance
Notifying you of incidents, disruptions, or maintenance
Payments, Billing, and Account Administration
Processing subscription payments and issuing invoices
Managing subscriptions, renewals, and upgrades
Handling disputes and chargebacks
Customization, Optimization, and Product Improvement
Understanding how the Platform is used to improve usability and performance
Debugging, error tracking, and troubleshooting
Developing new features, modules, and integrations
Personalizing your experience within the dashboard (e.g., recommended content, tips)
Security, Fraud Prevention, and Abuse Detection
Monitoring suspicious activity and enforcing acceptable use policies
Protecting accounts and infrastructure from unauthorized access, spam, attacks, or misuse
Investigating and preventing fraud, security incidents, or illegal activities
Operational and Marketing Communications
Sending system and service-related messages (plan changes, usage notices, security alerts, policy updates)
Sending marketing communications about our Services, promotions, or events, subject to your consent and applicable law
Managing your communication preferences and opt-outs
Legal and Regulatory Compliance
Complying with record-keeping obligations under applicable law
Responding to lawful requests by public authorities
Enforcing our Terms of Use and other agreements
Aggregated and Anonymous Data
Creating statistics and reports that do not identify individuals
Improving the Platform based on anonymized usage patterns
Benchmarking and business intelligence
Our role under data protection laws may differ depending on the specific context:
We act as a Data Controller in relation to:
Data about Customers / Partners / Authorized Users using the Platform
Data about visitors of Company Sites (our own marketing and corporate sites)
Our own marketing activities and communications
Our internal product analytics and improvement processes (to the extent they relate to personal data)
In these cases, we independently determine the purposes and means of processing.
For End Users of Customer Sites, the Customer (Partner / Website Owner) generally acts as the Data Controller. We process personal data from Customer Sites:
Based on the Customer’s configurations and instructions
In order to provide hosting and technical services to the Customer
Subject to our agreements with the Customer and applicable law
Accordingly:
The Customer is responsible for complying with their obligations as Data Controller (or equivalent) under applicable law, including:
Transparency and notices on their site
Publishing their own Privacy Policy and Cookie Policy
Implementing necessary consent mechanisms
Responding to data subject requests (e.g., access, deletion)
Loadweb assists the Customer as reasonably required by law (for example, by providing tools or logging to help them respond to such requests), but is not responsible for the Customer’s legal compliance.
We do not sell personal data. We may share Information with:
We may engage third-party companies and individuals to:
Host and operate our infrastructure (cloud providers, CDNs)
Provide storage, database, and backup services
Process payments and billing
Provide support tools (e.g., ticketing, live chat)
Provide analytics, security, and monitoring services
Provide professional and consulting services (e.g., legal, accounting)
Such service providers will receive only the minimum Information reasonably necessary to perform their functions and are bound by appropriate data protection obligations, including (where applicable) data processing agreements.
At the Customer’s discretion, Customer Sites and accounts may be integrated with third-party services, including:
Analytics and tracking tools (e.g., Google Analytics)
Pixels and advertising platforms (e.g., social media ad platforms)
CRM systems and email marketing tools
Payment gateways and invoicing systems
External widgets, scripts, or APIs
When you or your End Users connect or use such third-party services:
Personal data may be shared directly between you/End Users and the third party;
Such third parties’ use of data is governed by their own privacy policies, not by this Policy;
You, as the Customer, are responsible for configuring and managing these integrations and for informing your End Users.
We may disclose Information if required to do so by law or in good faith belief that such action is necessary to:
Comply with a legal obligation, court order, or governmental request
Protect the rights, property, or safety of Loadweb, our Customers, End Users, or the public
Enforce our Terms of Use or other agreements
Detect, prevent, or address fraud, security, or technical issues
In the event of a merger, acquisition, asset sale, or corporate reorganization involving Loadweb, Information may be transferred to a successor or acquiring entity, subject to this Policy and applicable law. We will take reasonable steps to ensure continuity of protection and will provide notice where required.
In any other situation not covered above, we will share personal data only with your explicit consent or at your direction.
We may share aggregated or de-identified data (which does not identify individuals) for business or research purposes, including with partners or the public.
Personal data may be processed and stored:
In Israel; and/or
In other countries (including the EEA, the United States, or other jurisdictions) where Loadweb or our service providers have facilities.
When personal data is transferred outside of Israel or your country of residence, we will take appropriate steps to ensure a level of protection that is not lower than required by Israeli law and, where applicable, relevant data protection regimes (e.g., GDPR), including by using contractual safeguards where required.
We retain personal data:
For as long as reasonably necessary to fulfill the purposes described in this Policy;
For the duration of any contractual relationship with you;
To comply with legal, regulatory, accounting, or reporting requirements;
For the period in which claims could be brought against us.
After the applicable retention period, personal data will be deleted, anonymized, or archived in a manner consistent with applicable law and our internal policies.
We and Customer Sites running on our infrastructure may use cookies and similar technologies (e.g., pixels, tags, local storage) to:
Enable basic functionality and session management
Remember preferences and login status
Enhance security and fraud detection
Measure performance and usage of our Services
Run analytics and, where permitted, marketing campaigns
Cookie use may vary depending on your role and settings (for example, as a Customer in the dashboard, or as an End User on a Customer Site).
You can manage cookies through:
Your browser or device settings (e.g., blocking or deleting cookies);
Cookie banners or consent tools implemented by us or by the Customer, where applicable.
Blocking or deleting cookies may impact the functionality of some features of the Platform or Customer Sites.
For more details, please refer to our Cookie Policy (if provided) or the Customer Site’s own cookie notice.
Our Services may include AI-based tools that assist with:
Generating or suggesting text (e.g., headings, descriptions, blog posts)
Generating or suggesting images or design elements
Providing recommendations around content or layout
You acknowledge and agree that:
AI-generated content may be inaccurate, incomplete, outdated, or otherwise inappropriate;
We do not guarantee that AI outputs are legally compliant, accurate, or free from third-party rights;
You are solely responsible for reviewing, verifying, editing, and approving any AI-generated content before publishing or using it;
You must ensure that your final content complies with all applicable laws, including intellectual property, privacy, and consumer protection.
We may send service-related communications that are necessary for the performance of the Services, such as:
Account and subscription notices
Security alerts and incident reports
Policy updates and changes to the Services
Technical or operational messages regarding availability, maintenance, or feature changes
Because these communications are fundamental to the Services, you may not be able to opt out of them while continuing to use the Services.
We may send you marketing communications about:
New features, products, and services
Webinars, events, and promotions
Educational content and tips regarding the Platform
We do so in accordance with applicable law and with your consent where required. You may opt out of marketing communications at any time by:
Using the unsubscribe link in the email, or
Contacting us at privacy@loadweb.com or another address as indicated in the communication.
Opting out of marketing communications will not affect service/operational messages as described above.
When you contact our support (via email, chat, forms, or phone), we may log and, when permitted by law, record the interaction for:
Documentation and quality control;
Improving our internal processes and training;
Resolving your issues.
We implement reasonable and industry-standard technical and organizational measures to protect personal data, including:
Encryption in transit and at rest, where appropriate
Access controls and authentication mechanisms
Segmentation and logical separation between accounts
Monitoring and logging for suspicious activity
Periodic reviews of security measures and configurations
However, no method of transmission or storage is entirely secure. We cannot guarantee absolute security, and you acknowledge that:
You share responsibility for protecting your login credentials and devices;
You should implement your own security measures, especially where you process sensitive data or large volumes of End-User data.
If you believe your account may have been compromised, please notify us immediately at privacy@loadweb.com or support@loadweb.com.
Subject to applicable law (including Israel’s Privacy Protection Law and, where applicable, the EU/UK GDPR and other local regimes), individuals may have some or all of the following rights:
Right of Access – to know whether we hold personal data about them and to receive a copy
Right to Rectification – to correct inaccurate or incomplete data
Right to Deletion/Erasure – to request deletion of personal data in certain circumstances
Right to Restriction – to limit processing under certain conditions
Right to Data Portability – to obtain data in a structured, commonly used, and machine-readable format (where applicable)
Right to Object – to object to processing, including direct marketing
Right to Withdraw Consent – where processing is based on consent, to withdraw such consent at any time (without affecting the lawfulness of prior processing)
For data where Loadweb is the Data Controller (e.g., Customer account data, visitors of Company Sites):
You may send requests to: privacy@loadweb.com
We may ask for additional information to verify your identity before fulfilling the request
We will respond within the timeframes required by applicable law
For data where the Customer is the Data Controller (e.g., End-User data collected via Customer Sites):
Requests should generally be addressed directly to the relevant Customer / Website Owner;
If we receive a data subject request in such a context and can identify the relevant Customer, we may forward the request to the Customer and/or instruct the requester to contact the Customer directly;
We will assist the Customer as reasonably required to help them comply with their obligations (subject to our agreements and applicable law).
The Services are intended for business use and are not aimed at children under the age of 18.
We do not knowingly offer accounts to minors or knowingly collect personal data of minors in our capacity as Data Controller.
If we become aware that we have inadvertently collected personal data from a minor in violation of applicable law, we will take reasonable steps to delete such data or to block access.
Customers who operate Customer Sites and collect data from minors are solely responsible for:
Complying with all applicable laws regarding minors;
Implementing appropriate parental or guardian consents;
Configuring their Customer Sites accordingly.
Company Sites and Customer Sites may include links to third-party websites, apps, or services, as well as embedded content or third-party scripts.
We are not responsible for:
The privacy practices or content of such third-party sites or services;
The way third parties handle personal data.
Use of third-party sites and services is subject to the privacy policies and terms of those third parties. We encourage you and your End Users to read the privacy policies of any third-party services before providing them with personal data.
As a Customer / Partner / Website Owner, you understand and agree that:
You are generally the Data Controller of the personal data collected on your Customer Sites and through your use of the Services for your own business purposes.
You are responsible for:
Reviewing and understanding the privacy and data protection laws applicable to your activities (and your End Users’ jurisdictions, where relevant);
Publishing your own, tailored Privacy Policy and Cookie Policy (or equivalent) on your Customer Sites;
Implementing appropriate cookie and consent mechanisms where required;
Obtaining all necessary consents from End Users (e.g., for marketing, analytics, or special categories of data);
Responding to data subject requests in accordance with applicable law;
Configuring and using the Platform in a way that complies with legal requirements.
We may provide templates, tools, and guidance to assist you, but:
Such materials are for convenience only and do not constitute legal advice;
You remain fully responsible for reviewing and adapting such documents and settings to your specific situation;
You should seek professional legal advice where needed.
This section is general guidance only and does not replace legal consultation. Before publishing your Customer Sites or starting data collection, you should verify that your policies, configurations, and internal processes comply with applicable law.
We may update this Privacy Policy from time to time to reflect:
Changes in our Services or business operations;
Changes in applicable laws or regulations;
Feedback from Customers, regulators, or other stakeholders.
We will post the updated Policy on our Company Sites and indicate the date of the latest revision at the top. For material changes, we may also provide additional notice (e.g., via email or within the Platform).
Your continued use of the Services after the effective date of any updated Policy constitutes your acceptance of the revised Policy. If you do not agree with the changes, you should stop using the Services and may request deletion of your account, subject to applicable law and our retention obligations.
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, you may contact us at:
Email (Data Protection / Privacy): privacy@loadweb.com
General Contact: info@loadweb.com (or as listed on our Company Sites)
Where applicable, you may also have the right to lodge a complaint with a competent supervisory authority in your jurisdiction.