Legal

Privacy Policy

Last updated: 29 April 2026

VPNBee (“we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and your rights in relation to it. By using vpnbee.org or the VPNBee applications, you agree to this policy.

1. Our core promise

VPNBee operates a strict zero-log policy. We do not record, monitor, or store:

  • Your browsing activity, visited websites, or online traffic
  • Your real IP address while connected to VPNBee
  • DNS queries made through our servers
  • Connection timestamps or session durations
  • Bandwidth usage per session

The VPN tunnel is private by design. We cannot, and do not, hand over connection logs to third parties because we do not keep them.

2. Information we do collect

To provide and maintain the service, we collect the minimum information required:

Account information

When you register, we collect your name, email address, and a hashed version of your password (we never store your password in plain text). We use this to authenticate you and communicate with you about your account.

Payment information

Payments are processed by Stripe, a PCI-DSS compliant payment processor. We store only a Stripe customer reference ID and your subscription status. We never see or store your full card number, CVC, or billing address — these go directly to Stripe. Stripe’s privacy policy is available at stripe.com/privacy.

Device information

When you register a device in the app, we store the device name, platform (e.g. Windows, iOS), and the WireGuard public key for that device. We assign a private VPN IP address to each device. No device identifiers (IMEI, MAC address, serial number) are collected.

Technical logs

Our web servers may record standard access logs (HTTP method, URL path, response code, and timestamp) for security and debugging purposes. These logs do not contain VPN tunnel data and are retained for no more than 30 days.

3. How we use your information

We use the information we hold to:

  • Create and manage your account
  • Process payments and manage subscriptions
  • Provide customer support
  • Send transactional emails (account confirmation, payment receipts, renewal reminders)
  • Detect and prevent fraud or abuse of the service
  • Comply with legal obligations

We do not sell your personal data to third parties. We do not use your data for advertising.

4. Third-party services

VPNBee uses a small number of trusted third-party services:

  • Stripe— payment processing. Subject to Stripe’s Privacy Policy.
  • Hosting providers — servers and infrastructure used to operate the VPN and API. These providers do not have access to VPN traffic.

We do not use any advertising networks, analytics platforms, or tracking pixels on our website or in our applications.

5. Data retention

We retain your account data for as long as your account is active. If you delete your account, we will permanently delete your personal data within 30 days, except where we are required by law to retain certain records (e.g. financial records for up to 7 years for tax purposes — these are held by Stripe, not us).

6. Your rights (GDPR)

If you are located in the UK or European Economic Area, you have the following rights under applicable data protection law:

  • Access — request a copy of the personal data we hold about you.
  • Rectification — ask us to correct inaccurate data.
  • Erasure — request deletion of your personal data (“right to be forgotten”).
  • Portability — receive your data in a structured, machine-readable format.
  • Objection — object to processing based on legitimate interests.
  • Restriction — request that we restrict processing of your data.

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

7. Security

We use industry-standard security measures to protect your data, including TLS encryption for all data in transit, Argon2 password hashing, and restricted access controls to our systems. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but take all reasonable steps to protect your information.

8. Children

VPNBee is not intended for children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with their data, please contact us and we will delete it promptly.

9. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a prominent notice on our website. The “Last updated” date at the top of this page reflects when the policy was last revised.

10. Contact us

For any privacy-related questions or requests, please contact us at [email protected].

Read our Terms of Service →