logo
Privacy policy

Privacy policy

69 View
|
19:58 - 10/02/2025
Share

1. Introduction

This Privacy Policy outlines how VPNSec collects, processes, and protects your personal data in accordance with applicable data protection laws, ensuring your privacy when using our services.

In this policy, the terms "we," "us," "our," and "VPNSec" refer to VPNSec and/or GZ Systems Private Ltd, Intershore Chambers, P.O. Box 4342, Road Town, Tortola, VG1110, British Virgin Islands.

We are firmly committed to protecting your personal information. By accessing or subscribing to VPNSec, you confirm that you have read, understood, and agreed to the terms of this Privacy Policy. If you do not consent to these terms, we kindly ask that you refrain from using our services.

2. Our Services and Platform

VPNSec is accessible via mobile, TV, and web-based applications. The mobile version, including Android TV and Apple TV apps, is available through the Google Play Store and Apple App Store, respectively (collectively referred to as the "App"). The web-based platform, including proxy browser extensions (collectively, the "Web-App"), can be accessed using supported browsers such as Google Chrome, Mozilla Firefox, and Brave on Windows, macOS, and Linux.

All versions of VPNSec are specifically designed to prioritize and protect your online security and privacy.

3. What Information We Collect

To use the App or Web-App, users must create an account, which serves as their unique identity on VPNSec. During the registration process, we collect the following information:

  • Name

  • Email address

  • Password

  • Payment method

This data is stored solely to deliver and improve our services (“stored data”). No additional personal information is required or stored during sign-up.

During service use, we may collect limited technical information to support your experience:

  • Connection date only – We do not store the exact time of connection.

  • ISP data (name and routing paths) – We do not collect or retain your personal IP address or precise location.

  • Connection timing – We do not log exact timestamps of connections.

  • Activity logs – We do not record or monitor your online activity.

For the purpose of service enhancement and support, we may collect:

  • Anonymous software performance data and usage statistics

  • Information provided through support channels, including emails, chats, and feedback forms

None of this data can be used to personally identify or track any user.

4.Information We Do NOT Collect

VPNSec operates under a strict no-logs policy. We do not collect or retain any data that could be used to identify, monitor, or track your online activity. This includes—but is not limited to—the following:

  • Browsing behavior or history

  • Identifiable connection records

  • Assigned or originating IP addresses

  • Connection timestamps

  • Websites visited or content accessed

  • Outbound traffic details

  • DNS queries

Even under legal obligation, we are unable to provide any of the above, as such data is never collected or stored.

Important Note: If you enable the optional Tracker and Ad Blocker feature, domain-level data may be visible only during the active session. This data is not retained once the session ends.

Our infrastructure is purpose-built to avoid data retention, ensuring that your online activity remains entirely private—even from us.

5. Use of Stored Data

The information we collect is essential for delivering, supporting, and enhancing your experience with VPNSec. We process your data for the following purposes:

  • To deliver, manage, and maintain our services

  • To personalize, refine, and expand the functionality of our platform

  • To analyze usage patterns and optimize user experience

  • To communicate with you directly or via our trusted partners, for service-related updates, support, and promotional content

  • To process payments and manage transactions

  • To enhance contract administration

  • To enforce our Terms of Service and exercise legal rights when necessary

We do not collect VPN connection logs, including:

  • Your original IP address

  • The VPN IP address assigned to you

  • Specific connection timestamps

  • Online activity while connected to our VPN

For details on our verified no-logs practices, please visit: https://www.VPNSec.com/no-log-vp

Dedicated and Extended VPN IPs

  • Dedicated IP Add-on: When you purchase this add-on, you are assigned a static VPN IP, which remains on record for 25 days after your subscription ends.

  • Extended WireGuard Duration Add-on: This manually configured option assigns a fixed IP that is retained for 24 hours post-subscription expiry or after disconnection/inactivity.

Tracker and Ad Blocker

Our optional Tracker and Ad Blocker feature enhances your privacy by blocking ads and trackers. To improve this feature, we temporarily log:

  • Blocked domain names

  • Frequency of blocks

This data is stored only in system memory for a limited time and is automatically deleted. No personally identifiable information is collected or stored. You may enable or disable this feature at your discretion.

Bandwidth Usage

VPNSec provides unlimited bandwidth across all VPN locations, except for the Residential Network add-on, which has usage limits. To maintain optimal performance for all users, we monitor total bandwidth consumption.

In the event of irregular usage impacting service quality, VPNSec may contact users to address the issue.

Software Analytics and Performance Metrics

VPNSec gathers limited, non-identifiable statistics to ensure smooth operation and customer satisfaction. No details such as browsing data, IP addresses, or DNS requests are collected.

These analytics help us:

  • Understand software functionality

  • Track app and Web-App usage frequency

  • Monitor in-app events

  • Evaluate overall performance

  • Identify and analyze connection issues

The tools we use for analytics include:

  • Google Analytics 

  • iTunes

  • Firebase 

  • New Relic 

  • MixPanel 

  • Facebook Pixel 

  • Intercom.io 

  • Sentry

We regularly release updates to our App and Web-App to enhance functionality and strengthen security. While users are notified when updates are available, VPNSec may enforce updates to ensure optimal service and compliance with our policies.

6. Dark Web Monitoring Services

VPNSec offers a Dark Web Monitoring feature, available via subscription through our mobile, TV, and web applications, designed to enhance your online security and protect your sensitive information.

When you subscribe to VPNSec, this feature automatically retrieves your registered email address and scans the dark web for any data breaches involving it. You may also voluntarily submit additional data—such as your phone number, credit card number (excluding CVV), Social Security Number (SSN), national identity number, or passport number—for breach detection.

Access by Subscription Plan

  • Standard and Plus Plans: Users can monitor their email address and phone number. They will be notified of the number of breaches detected but not the full breach details.

  • Max Plan: Users gain full access to detailed breach information, can monitor additional data types (e.g., credit card, SSN, national ID, passport number), and receive security recommendations.

Users have the option to disable this feature at any time by turning off automatic monitoring in their account settings.

Third-Party Data Processing

To perform dark web scans, the data you choose to monitor is securely shared with SpyCloud, a trusted third-party service provider. This includes any monitoring assets you submit—such as your email, phone number, credit card, passport number, or SSN/national ID—unless you opt out. SpyCloud compares this information against their breach databases to identify any compromises. You can view their privacy practices here: SpyCloud Privacy Policy.

We also use Twilio, another third-party provider, for SMS-based phone verification. Your number is shared only for verification and is protected in accordance with Twilio’s Privacy Policy. Data is retained solely for the duration needed to fulfill this purpose and is handled in compliance with applicable laws.

Security and Verification

To ensure your privacy, an OTP (One-Time Password) will be sent to your phone or email before any breach data is shown. This step ensures only verified users can access sensitive breach information.

All personal data shared for dark web monitoring is used strictly for breach detection and is not stored or reused by our third-party partners. If any data is found to be compromised, you’ll be notified promptly so you can take corrective action. Once the feature is deactivated, all associated data is permanently erased from third-party systems.

By enabling this feature, you consent to the data processing described and confirm your understanding of our privacy policy.

User Responsibility and Restrictions

  • Breach information is provided only to verified Max Plan subscribers. These users are responsible for managing and responding to any compromised information related to them.

  • Data that can create or infer a digital identity is never returned or exposed in public search results, whether via the app or Web App.

  • Users are prohibited from sharing breach details or reports obtained via this service with third parties. This feature is intended for personal use only.

Users are solely accountable for the accuracy and legitimacy of any data submitted for monitoring. VPNSec disclaims liability for misuse or submission of unauthorized or incorrect data. The user bears full responsibility for any consequences arising from such actions.

How We Collect, Store, and Use Information

We collect personal information directly from users who subscribe to this service. This data is:

  • Used exclusively for monitoring data breaches

  • Encrypted before storage—no raw, unencrypted data is retained

  • Shared securely with our trusted third-party provider (SpyCloud), who processes it for detection purposes only. No data is stored permanently by them.

When a breach is detected, our system matches it against encrypted user data. If a match is found, we notify the subscriber via email, app, or web notification. Notifications are sent only to users who have completed our double opt-in process—requiring both email entry and explicit subscription confirmation.

Storage of Dark Web Monitoring Data

Information such as email address, phone number, credit card number, SSN, national ID, and passport number is stored only in encrypted form. We never retain this data in plain text. Our third-party partners also do not store any user data beyond the necessary scanning period.

Disclaimer

The Dark Web Monitoring feature is provided “as is” and “as available.” While we strive to deliver accurate and timely breach detection, neither VPNSec nor its partners (including SpyCloud) guarantee the completeness, reliability, or availability of breach data.

VPNSec and GZ Systems Ltd expressly disclaim liability for any direct or indirect damages resulting from use of this service—including data loss, financial loss, or reputational damage—except where caused by willful misconduct or gross negligence.

Indemnification

By using this service, you agree to indemnify and hold harmless VPNSec, GZ Systems Ltd, its affiliates, officers, employees, and partners against any claims or damages arising from:

  • Misuse or unauthorized use of the Dark Web Monitoring feature

  • Submission of false, inaccurate, or unauthorized data

  • Breach of our Terms of Use or Privacy Policy

  • Improper sharing or use of breach data obtained through this service

7.International Data Transfers

Our systems are spread across the globe, which means the stored data is traveling through servers in multiple locations which might or might not be in the customer’s country of residence. While we rely on some third-party service providers to deliver our services, we make sure that the stored data is protected during this process. VPNSec has strict data processing agreements in place with all service providers to safeguard data. For transfer of personal data from the European Economic Area (EEA) to third countries we rely on Standard Contractual Clauses.

It is important for users to understand that their stored data will be transferred and/or processed when required, as it is an integral part to maintain excellence in our services and live up to our Terms of Service.

8. Security of Collected Information

With the exception to the stored data mentioned in Section 3. What Information We Collect, VPNSec neither stores any user data nor sells or rents it out to any third party. Hence, no such information is kept with us. The only information mentioned in Section 3 What Information We Collect is stored to provide the products and services required by users which is kept safe without sharing or selling it to any third party.

Security measures to protect your information

All stored data is secured with strong cryptographic algorithms and other security measures wherever required. VPNSec takes appropriate measures for the protection of all customer information against any unauthorized access, alteration, destruction and disclosure of data. Access to personal customer information by VPNSec employees, contractors and agents is restricted.

It is important for all users to understand that despite the strictest precautionary and cybersecurity measures that have been deployed following the international best practices and standards for information security architecture. Information systems are susceptible to breach and taken, no system cannot be declared 100%, protected or secure.

In the event of a data breach, we will notify you and the relevant supervisory authority within 72 hours, as required by the GDPR, if the breach is likely to result in a high risk to your rights and freedoms.

For users in California, in compliance with the CCPA, you will be notified if your unencrypted personal information is accessed by an unauthorized party.

9.Data Retention Policy and Your Data Protection Rights

Retention of Information

VPNSec may retain your information including your name and email address as required or permitted by applicable laws and regulations, including to honor your choices, for our records purposes and to fulfill the purposes described in this privacy policy, specifically, we retain information for our legitimate interests and essential business purposes, such as operation, maintaining and improving our services; complying with our legal obligations; providing you services on the App and Web app and exercising our legal rights and remedies, including enforcing our terms of use. We retain this data until you remain our subscriber and actively use our App and Web App.

Rights as Data Subjects:

Depending on your location, you have certain rights under GDPR for European residents, and CCPA for residents of California.

For users in the European Union (GDPR)

If you are a resident of the European Economic Area (EEA), you have the following data protection rights:

  • Right to Access: You can request access to the personal data we hold about you at any time.
  • Right to Rectification: You can correct any inaccurate or incomplete personal data that we may have.
  • Right to Erasure: You may request the deletion of your personal data when it is no longer needed for the purposes for which it was collected.
  • Right to Restrict Processing: You may ask us to restrict the processing of your personal data.
  • Right to Object: You may object to the processing of your personal data for direct marketing purposes.
  • Right to Withdraw Consent: You have the right to withdraw your consent for data processing at any time.

To exercise your rights under GDPR, please contact us at support@VPNSec.com. We will respond to your request within 30 days. Your email address will be kept and used to avoid account duplication and creation of fake accounts in your name. Your email address will be deleted only after we receive an explicit request from you to do so.

For Users in the United States (CCPA)

If you are a resident of California or U.S, you have the following data protection rights:

  • Right to Know: You have the right to know the categories and specific pieces of personal information we collect, how we use it, and whether we share or sell it.
  • Right to Delete: You can request the deletion of your personal information that we hold, subject to exceptions under the CCPA.
  • Right to Opt-Out of Sale: VPNSec does not sell personal information, but if this changes, you will have the right to opt out of the sale of your data.
  • Right to Non-Discrimination: You will not be discriminated against for exercising your privacy rights, including being denied services or offered different pricing.

To exercise these rights, you may contact us at [support@VPNSec.com]. We will verify your identity and respond within the timeframe required by CCPA.

For Users in Other Regions (Including Asia, Middle East, and Oceania)

If you reside in other regions such as Asia, the Middle East, Australia, or New Zealand, your rights under applicable local laws may include the ability to access, correct, or delete your personal data. We are committed to complying with the privacy regulations in all regions where we operate, and we offer you similar rights to those provided under GDPR and CCPA.

To inquire about your rights or exercise them, please contact us at [support@VPNSec.com]. We will respond to your request in accordance with the laws applicable in your jurisdiction.

10.Cookies and VPNSec

VPNSec utilizes different types of cookies to store information related to a visitor on our website. This is done in order to provide the best experience, and to deliver advertising messages and offers that are relevant to our users.

Please see how VPNSec Uses Cookies to get a better understanding about the cookies we employ, what type of data is collected, how that data is used, and how a user can opt-out of this program.

11.Third-party website links

VPNSec’s App and Web App might contain links to other third-party websites. We do not control how they operate their privacy practices nor can we take responsibility for them. For detailed information on how these third parties handle your data, refer to the privacy policies linked above.

12.Financial and Credit Information

As with all online businesses, VPNSec also uses third-party payment processors. All payment data rests with the respective processor.

However, some do require us to process the payment. And in such cases we process all payments realtime and pass it on to the processor and chargeback service without storing any data.

Please review the privacy policy of your preferred payment processor for a better understanding of the information they collect, store and use. Because privacy and anonymity are at the heart of what we do, VPNSec has included Coin Payments in the list of payment methods we accept. These are 100% anonymous payment methods that will protect your privacy.

13.Consent and Age Restrictions

We accept the usage of our website, apps, extensions and services by the users as an agreement of our Privacy Policy and Terms of Usage.

The services provided by VPNSec are intended for people 18 years or older, or as required by applicable laws in the relevant jurisdiction, who are capable of providing informed consent. We do not knowingly collect personal data from children under the age of 13 (or the minimum age required by applicable law) without verifiable parental consent, in accordance with the Children’s Online Privacy Protect Act (COPPA) and other applicable regulations. If you suspect that the information, including personally identifiable information (PII), has been recorded or used to subscribe to our services by a minor. Parents or legal guardians must notify VPNSec immediately at support@VPNSec.com.

All data requests, including those made on behalf of the minor, are subject to successful verification of identification before any request be processed. If we discover that a child under the age of 13 has provided us with personal information without parental consent, we will promptly delete such data from our systems.

14.Legal Basis

Our legal basis for collecting and using your personal information is primarily to provide you with our services and may depend on:

  • The personal information concerned.
  • The specific context in which it is collected.
  • The only time we collect personal information from users is:
  • When the users sign up and enter into a contract with us.
  • Where the processing is in our legitimate interests and does not violate your privacy rights.

15.Waiver of Legal Liability

As defined herein, the best and most robust information security architecture has been deployed to ensure a seamless user experience and protect user rights. However, in the unlikely event of a data breach, system failure, or any arising dispute, reasonable efforts shall be made to resolve the dispute in an amicable manner. The user understands that there are certain unavoidable risks that arise in the normal course of business operations and that VPNSec or GZ Systems Ltd, and their affiliates shall not be liable (financial or non-financial), damages, or injury, whether direct or indirect, to the maximum extent permissible under applicable law, except in cases of gross negligence or willful misconduct resulting from your use of our service.

16.Amendments

VPNSec may update its Privacy Policy from time to time. When changes are made that significantly impact how we process your personal data, we will notify you in advance through appropriate channels, such as in-app notifications, updates on our website, or via email of any material changes in our Privacy Policy.

VPNSec encourages you to review this page regularly to stay informed about any updates. By continuing to use our services after changes have been made, you acknowledge and accept the revised Privacy Policy.

The date of the latest revision will always be displayed at the top of this page.

17.Contact Information

For any questions or clarity on our Privacy Policy, please send your queries to legal@VPNSec.com

Latest article

Related articles

Social Links
Social Links
Stay up to date and enhance your experience with VPNSEC by following us across our social media platforms. Get the latest updates, expert security tips, feature announcements, and more.
Read more
Terms & Conditions
Terms & Conditions
These Terms & Conditions govern the use of VPNSEC services. By accessing and using VPNSEC, you agree to comply with these terms.
Read more
Setup on Devices
Setup on Devices
This guide offers clear, step-by-step instructions for configuring VPNSEC across a range of devices, helping you maintain secure and private internet access on any platform.
Read more
EULA (End User License Agreement)
EULA (End User License Agreement)
This End User License Agreement ("EULA") sets forth the terms and conditions governing your use of VPNSEC services. By accessing or using our services, you agree to abide by the terms detailed in this agreement.
Read more
Acknowledgement
Acknowledgement
This page is dedicated to recognizing the invaluable contributions of the individuals and organizations who have played a pivotal role in the development and growth of VPNSEC. We extend our heartfelt appreciation to everyone who has supported us on ...
Read more
Your notice