Privacy Policy.

We collect only the information necessary to provide, operate, and improve the v-proxies service. This falls into two categories: information you provide directly, and information generated by your use of the service.

Information you provide:

• Email address — used for account creation, authentication, and service communications.
• Password — stored as a salted, one-way hash. We never store or transmit plaintext passwords.
• Payment information — processed exclusively by Stripe. v-proxies never stores credit card numbers, CVV codes, or full card details on our servers.

Information generated by service use:

• Bandwidth consumed — gigabytes used per credential, per billing period. Used for billing and plan enforcement.
• API request metadata — timestamps and endpoints hit on the v-proxies management API (not proxy traffic). Retained for 30 days for debugging and security.
• Account activity — credential creation, deletion, and IP allowlist changes. Retained for 90 days.
• Billing events — subscription changes, top-up purchases, and invoices via Stripe webhooks.

• The contents of any HTTP or HTTPS request or response passing through our gateway.
• Destination URLs, domain names, or IP addresses of sites you access through the proxy.
• Request or response headers, cookies, or body content from proxied connections.
• Browsing history, search queries, or any behavioral data derived from proxy traffic.
• The real IP addresses of sites you visit or their geographic location.

Our infrastructure is designed so that even if compelled by a legal order, we cannot produce proxy traffic logs — because we do not create them.

We use the information we collect strictly to:

• Authenticate your account and process logins.
• Calculate and charge for bandwidth consumed.
• Send transactional emails: purchase confirmations, low-balance alerts, and password resets.
• Enforce rate limits and detect abuse of the service infrastructure.
• Investigate security incidents or violations of our Terms of Service.
• Respond to support requests you initiate.
• Comply with legal obligations when legally required.

We do not use your data for advertising, behavioural profiling, or sale to third parties. We do not run analytics on your proxy usage beyond bandwidth totals.

We do not sell, rent, or trade your personal information. We share data only in the following limited circumstances:

Service providers:

• Stripe — payment processing. Subject to Stripe's Privacy Policy.
• Supabase — database and authentication infrastructure. Data is stored in the EU and US regions with encryption at rest.
• Vercel — application hosting and edge delivery.

Legal requirements:

We may disclose account information (email address, billing records) if required by a valid legal process — subpoena, court order, or applicable law. We cannot disclose proxy traffic logs because we do not retain them. When legally permitted, we will notify you of such requests.

Business transfers:

In the event of a merger, acquisition, or sale of assets, user data may be transferred. We will notify affected users before any such transfer takes effect.

v-proxies uses a minimal set of cookies:

• Session cookie — stores your authentication session. Essential for the dashboard to function. Expires when you sign out or after 7 days of inactivity.
• Vercel Analytics — anonymous, aggregated page-view analytics. No personal identifiers are collected. No cross-site tracking.

We do not use advertising cookies, third-party tracking pixels, or any form of behavioural retargeting. There is no cookie consent banner because we do not run non-essential cookies.

Upon account deletion, all personal data (except billing records required for legal compliance) is permanently deleted within 30 days.

Depending on your jurisdiction, you may have the following rights with respect to your personal data:

• Access — request a copy of the personal data we hold about you.
• Correction — request correction of inaccurate data.
• Deletion — request deletion of your account and associated data.
• Portability — receive your data in a machine-readable format.
• Objection — object to processing of your data where we rely on legitimate interest.
• Restriction — request that we limit how we use your data in certain circumstances.

To exercise any of these rights, email privacy@v-proxies.com. We respond within 30 days. Identity verification may be required for data deletion or export requests.

EU and UK residents may lodge a complaint with their local supervisory authority if they believe their rights have been violated.

We implement industry-standard security measures to protect your data:

• All data in transit is encrypted using TLS 1.2 or higher.
• Passwords are hashed using bcrypt with a per-user salt.
• Database access is restricted to authenticated service accounts with least-privilege roles.
• API keys are stored as hashed values; the plaintext is shown once at creation.
• Infrastructure providers maintain SOC 2 Type II certification.

Despite these measures, no system is 100% secure. If you discover a security vulnerability, please disclose it responsibly to security@v-proxies.com.

v-proxies is not directed at children under the age of 16. We do not knowingly collect personal information from children. If you believe a child under 16 has created an account, please contact us at privacy@v-proxies.com and we will delete the account promptly.

We may update this Privacy Policy from time to time. Material changes will be communicated by email to the address on your account at least 14 days before they take effect. Continued use of the service after that date constitutes acceptance of the updated policy.

All historical versions of this policy are available on request.

For privacy-related inquiries or to exercise your rights: