Ghostables for WordPress encrypts the personal data your site holds about its users, members, and customers — names, emails, addresses, phone numbers, form submissions — before it ever touches the database. Works on any WordPress site: standard websites with contact or signup forms, membership platforms, and WooCommerce stores alike. Your site keeps working normally. If the database leaks, the attacker walks away with ciphertext.
The plugin sits between WordPress and your database. Personal data — from any source on your site — is encrypted before it's stored: user signups, contact-form submissions, member profiles, customer orders, CRM contacts, custom post-type meta. Legitimate reads (a user logging in, an admin opening a member profile, an order-confirmation email, a form export) get plaintext as normal. Only the database storage layer is opaque. Works with Contact Form 7, Gravity Forms, WPForms, MemberPress, Paid Memberships Pro, Restrict Content Pro, WooCommerce, and any custom post type holding personal data.
Install the plugin, generate an encryption key (one click), and existing personal data starts migrating in the background. No theme changes, no code edits, no manual configuration of which fields to protect. The plugin auto-detects which tables hold user, member, and customer data.
User signups, contact forms, member areas, WooCommerce orders, admin dashboards — everything reads as plaintext through the normal hooks. Login flows, email confirmations, profile pages, automation flows: all unaffected. The encryption is invisible to your users and to the plugins consuming the data.
A stolen database backup contains only ciphertext. The attacker can't reverse it to email addresses, names, addresses, or form submissions — the keys that would let them aren't held in the database.
A recovery phrase generated at setup lets you regain access if you forget your PIN. Same model as a crypto wallet — write it down and store it somewhere safe.
Standard WordPress — and every form, membership, and e-commerce plugin built on top of it — stores personal data as plaintext in the database. A single SQL injection, leaked backup, or misconfigured storage destination exfiltrates everything. Encryption changes the maths.
Ghostables for WordPress makes the personal data on your site unreadable if it's ever stolen — user accounts, member profiles, customer records, form submissions. Ghostables Defender is the active security plugin that stops the attacker from getting that far — malware scanning, firewall, login defence, hardening, and a tamper-evident audit chain. Every paid Ghostables for WordPress licence includes the matching Defender tier at no extra cost.
Install Defender alongside Ghostables for WordPress and it picks up your existing licence key automatically. No second checkout, no second invoice, no second renewal date — your subscription covers both.
Need Defender on a site that doesn't have Ghostables for WordPress installed? It's available standalone too — free on wp.org, or Pro tiers from £59/year.
See Ghostables Defender →All plans include automatic updates, secure recovery, and 14-day refunds. Cancel any time from your dashboard.
or £19/month · 1 WordPress site · email support
or £59/month · up to 5 sites · priority support
or £149/month · unlimited sites · SLA support
Ghostables is zero-knowledge encryption combined with forward secrecy, applied at the database layer. Sensitive data is unreadable on the server's storage, and historical records stay protected even if a current key is ever exposed. To our knowledge, the combination of those two properties at a working database level has not been delivered to production on the open market until now.
The database holds ciphertext, not data. A stolen backup, a compromised host, or a misconfigured snapshot returns nothing useful to an attacker. Decryption happens only where it is permitted to happen — never on the server's storage layer.
Today's keys do not decrypt yesterday's records. If a key is ever exposed, the historical data it once protected is still safe, because the keys that protected it no longer exist anywhere recoverable.
Field-level encryption exists. Application-tier vaults exist. End-to-end messaging has zero-knowledge. What has not existed — as far as we have found — is zero-knowledge together with forward secrecy applied uniformly to a live database that the rest of your stack still reads and writes against normally. That is the gap Ghostables closes.
Yes. The protection sits behind the standard data-access path, so checkout, accounts, form submissions, member dashboards, and admin tools behave exactly as before. The encryption is invisible to your users and to the plugins that consume the data.
Page-load impact is negligible — single-digit milliseconds per request. Initial setup runs once and takes about half a minute in your browser.
A recovery phrase is generated at setup. As long as you have that phrase, you can re-establish access. If you lose both the active key and the recovery phrase, encrypted data becomes permanently unreadable. That is the security property, not a defect — even Ghostables Ltd cannot recover it for you.
After activation, the plugin migrates existing plaintext records to encrypted form in the background. A site with around 10,000 entries typically finishes within a working day. Progress is visible from the plugin's status page.
You buy a subscription, we email a licence key. Paste it into the plugin on activation. The plugin checks in with our server daily to confirm the licence is still active. If your subscription lapses, the plugin enters read-only mode — existing data still decrypts, new encryption operations pause until you renew.
14 days, no questions. Cancel from your dashboard or email us. You retain access until the end of the current billing cycle; we ask that you uninstall after that.
Three-minute install. Your site keeps working. A stolen backup becomes worthless.