Privacy Policy
Version 0.9-draft (effective ) · Last updated Draft
Draft — pending legal review. This document is placeholder copy authored by the ForestVPN team and has not been reviewed or approved by counsel. It is provided so the structure and routes are in place; it is not binding legal text and must not be relied upon. Counsel will replace this body before launch.
ForestVPN is built around a simple idea: the safest data is the data we never collect. We run a no-logs VPN, which means we do not keep records of the websites you visit, the content of your traffic, or a connection log that could reconstruct what you did online. This policy explains the limited information we do handle, why, and the choices you have.
ForestVPN is also a white-label VPN platform: alongside our own consumer VPN app, we power VPN products that other businesses ("tenants") run under their own brand. If you reached this Service through a third-party brand, your relationship with that brand and with ForestVPN is described in section 5 below.
1. Information we collect
- Account information. When you create an account we collect your email address and, where you sign in with a third-party identity provider (such as Apple, Google, or your organization's single sign-on), the identifier that provider returns for you (an OIDC "subject") and the email associated with that sign-in. We use this to sign you in and contact you about the Service.
- Device records. For each device you connect we store a record containing a device name and platform (for example macOS, iOS, Android, Windows, Linux), the cryptographic public keys that device uses to join the network, and a "last seen" timestamp. We do not store the contents of anything that device sends or receives.
- Billing information. Paid plans are processed by our payment providers (see section 4). We receive limited billing metadata — such as plan, subscription status, card brand, card country, and the last four digits of a card — but the full payment-card number is held by the payment provider, not by us.
- Connection metadata (counters, not a log). To keep the Service running, to enforce plan limits, and to bill metered plans, we record aggregate transfer counters: a timestamp, the device and account the counter belongs to, whether the connection went direct or through a relay, the broad server region (not a destination), the direction (in/out), and the number of bytes and packets transferred. This is a usage meter, not an activity log: it contains no destination addresses, no domains, no DNS queries, and no traffic content, and it is automatically deleted after 90 days.
- Support correspondence. If you contact support, we keep that correspondence so we can help you and improve the Service.
2. What we do not collect
We do not log your browsing history, your DNS queries, the contents of your traffic, the destination IP addresses or domains you connect to, or a timestamped connection record that could be used to reconstruct your activity. The only per-connection data we keep is the byte/packet counter described above, which records how much you transferred and through which region — never where to or what. No-logs is the default we build around, not a setting you switch on.
3. How we use information
We use the limited information above to provide and secure the Service, process payments, enforce plan limits, meter usage on metered plans, prevent abuse and fraud, comply with legal obligations, and communicate with you about your account. We do not sell your personal information and we do not use it to build advertising profiles.
4. How we share information
We share information only with the service providers ("processors") that help us operate the Service, under agreements that require them to protect it; when required by valid legal process; and to protect the rights, safety, and security of ForestVPN, our users, and the public. Our principal processors are:
| Provider | Purpose |
|---|---|
| Stripe, CloudPayments | Card payment processing for web/direct subscriptions. |
| Apple App Store, Google Play | In-app purchases and subscription management on mobile. |
| Enbbox | Transactional account email (sign-in, billing, and service notices). |
| Cloudflare | Edge network, DNS, and DDoS protection in front of our services. |
| Hetzner | Server and infrastructure hosting for the core platform. |
| Google Cloud | Build artifact registry and object storage (GCS) for releases. |
Because we do not keep activity logs, we cannot produce activity records we never collected, even in response to legal process.
5. White-label products (who controls your data)
ForestVPN powers VPN products for other businesses ("tenants") under their own brands. If you signed up through a tenant's branded product rather than the ForestVPN consumer app:
- the tenant is the controller of your relationship with that branded product — they decide what to offer you, set their own terms, and are your first point of contact for your account with them; and
- ForestVPN acts as the tenant's processor for the personal data of that tenant's end users, handling it on the tenant's instructions and under a Data Processing Agreement (see our DPA).
The no-logs design described above applies the same way regardless of which brand you reached the Service through. Where a tenant's own privacy notice governs your relationship with that brand, it sits alongside this policy; this policy describes ForestVPN's own handling of data.
6. Data retention
We keep account and billing information for as long as your account is active and for a limited period afterwards as needed to comply with legal, tax, and accounting obligations or to resolve disputes. The byte/packet connection counters are automatically deleted after 90 days; usage records kept for metered billing are retained for a limited period (on the order of a year) to support invoicing and dispute resolution, then deleted or aggregated.
7. Your rights
Depending on where you live, you may have the right to access, correct, export, or delete the personal information we hold about you, and to object to or restrict certain processing. You can exercise these rights by contacting us at the address below; we will respond within the time required by applicable law.
8. Security
We protect information using encryption in transit, access controls, and operational safeguards appropriate to the sensitivity of the data. No system is perfectly secure, but minimizing what we collect is itself a security measure.
9. International transfers
We may process information in countries other than the one in which you live. Where we do, we use appropriate safeguards consistent with applicable data- protection law.
10. Children
The Service is not directed to children, and we do not knowingly collect personal information from children. If you believe a child has provided us information, contact us and we will delete it.
11. Changes to this policy
We may update this policy from time to time. When we make material changes, we will update the version and effective date shown at the top of this page and, where appropriate, notify you.
12. Contact
Questions about this policy, or requests to exercise your privacy rights, can be sent to [email protected].