Privacy Policy

1. What we collect

When you create an account, we collect your email address and a hashed password. When you use the proxy gateway, we log connection metadata: timestamp, bytes transferred, destination hostname, and your proxy username. We do not log request content, response bodies, URL paths, or headers. We never read the traffic passing through the network.

2. How we use it

Connection metadata is used for three purposes:

• Billing — calculating GB transferred per billing period
• Abuse prevention — detecting and blocking traffic that violates our acceptable use policy
• Service reliability — diagnosing network issues and monitoring uptime

We do not sell connection metadata to third parties. We do not use it for advertising.

3. Retention

Connection logs are retained for 90 days, then deleted. Account data is retained until account deletion. If you delete your account, all associated data is purged within 30 days.

4. Third parties

We use Stripe for payment processing. Stripe's privacy policy governs payment data; we do not store full card numbers or CVVs. We use Vercel Analytics for aggregate page view data — no individual user tracking. We do not use third-party advertising networks.

5. GDPR

If you are in the European Economic Area, you have the right to access, correct, port, or delete your personal data at any time. To exercise these rights, email privacy@proxly.cc. We will respond within 30 days.

6. Security

Account passwords are hashed with bcrypt. Data at rest is encrypted. Access to production systems is restricted by hardware keys and reviewed quarterly. We hold SOC 2 Type II certification — audit reports are available on request.

7. Contact

Questions about this policy: privacy@proxly.cc