Privacy Policy

Last updated: December 2024

1. Introduction

YourVPN ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our VPN service. Our core principle is simple: we cannot share what we do not have.

2. Strict No-Logs Policy

YourVPN operates under a strict no-logs policy. We do not monitor, record, log, store, or share any information about your online activities while connected to our VPN.

We DO NOT Log:

  • Browsing history - Websites you visit are never recorded
  • Traffic content - We cannot see or store the data you transmit
  • DNS queries - Your domain lookups are not logged
  • IP addresses - Neither your original IP nor destination IPs
  • Connection timestamps - When you connect or disconnect
  • Session duration - How long you stay connected
  • Traffic destinations - Which servers or services you access
  • Data packets - The actual content of your communications

Why This Matters:

Because we do not log this information, we have nothing to provide in response to legal requests for browsing activity. We cannot hand over data we do not possess.

3. Information We DO Collect

To operate our service, we collect minimal information necessary for account management and billing:

Account Information

  • Email address: Required for account creation, key delivery, and service communications
  • Payment information: Processed securely through Stripe; we never see or store your full card details

Aggregate Usage Data (Non-Identifying)

  • Total bandwidth used: To enforce fair usage limits (50GB/week)
  • Account status: Active, cancelled, expired

Note: Bandwidth tracking is aggregate only (total bytes) and cannot be used to determine what content was accessed.

4. How We Use Your Information

  • To provide and maintain the VPN service
  • To process payments and manage subscriptions via Stripe
  • To send service-related communications (account confirmations, key delivery, renewal notices)
  • To enforce bandwidth limits and prevent abuse of our servers
  • To respond to customer support requests

We never sell, rent, or share your personal information with third parties for marketing purposes.

5. Data Security

We implement industry-standard security measures to protect your data:

  • VPN Encryption: All VPN traffic is encrypted using ChaCha20-IETF-Poly1305
  • HTTPS: All website and API communications use TLS encryption
  • Payment Security: Payments processed through Stripe (PCI DSS Level 1 compliant)
  • Database Security: Account data encrypted at rest
  • Server Security: Secure infrastructure with regular security updates

6. Data Retention

We retain your account information only as long as necessary:

  • Active accounts: Data retained while subscription is active
  • After cancellation: VPN access key deleted immediately
  • 30 days post-cancellation: Account data retained for potential reactivation
  • After 30 days: All personal data permanently deleted

Bandwidth usage data is reset weekly and not stored historically.

7. Law Enforcement & Legal Requests

Our response to legal requests is limited by the data we possess:

What We Cannot Provide (No-Logs Policy)

  • Browsing history or websites visited
  • Traffic content or data packets
  • IP addresses (yours or destinations)
  • Connection timestamps or session data
  • DNS queries

We cannot provide data that does not exist.

What We May Provide (If Legally Required)

  • Email address associated with an account
  • Payment history (dates, amounts - not full card details)
  • Whether an account exists

We will only provide this information in response to valid legal process (subpoena, court order, etc.) and will notify users when legally permitted to do so.

8. Third-Party Services

We use the following third-party services:

9. Your Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data ("right to be forgotten")
  • Portability: Export your data in a standard format
  • Cancellation: Cancel your subscription at any time
  • Objection: Object to certain processing of your data

To exercise these rights, contact us at support@yourvpn.ai. We will respond within 30 days.

10. International Users

YourVPN is operated from the United States. If you are accessing the Service from outside the US, please be aware that your information may be transferred to, stored, and processed in the US. By using the Service, you consent to this transfer.

11. Children's Privacy

YourVPN is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email at least 30 days before taking effect. Continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices:

General Support: support@yourvpn.ai

Privacy Concerns: privacy@yourvpn.ai

Abuse Reports: abuse@yourvpn.ai