1. Introduction
IPforAgents ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our IP tunnel services and website.
By using our Service, you consent to the data practices described in this policy. If you do not agree with the practices described, please do not use our Service.
2. Information We Collect
2.1 Information You Provide
- Account Information: Email address, name, company name, billing information
- Payment Information: Credit card details (processed by our payment provider Stripe)
- Communications: Messages you send to our support team
2.2 Information Collected Automatically
| Data Type | Purpose | Retention |
|---|---|---|
| Request metadata (timestamps, status codes) | Analytics, debugging | 30 days |
| IP addresses (source and destination) | Abuse prevention | 7 days |
| Usage statistics (request counts, bandwidth) | Billing, capacity planning | 1 year |
| Browser/device information | Website analytics | 90 days |
2.3 Information We Do NOT Collect
- Request bodies: We do not inspect or log the content of requests passing through our network
- Response bodies: We do not store responses from destination servers
- Credentials: We do not access or store authentication credentials in tunneled requests
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve our Service
- Process transactions and send billing information
- Send technical notices and security alerts
- Respond to your support requests
- Monitor for abuse and violations of our Terms
- Analyze usage patterns to improve performance
- Comply with legal obligations
4. Data Sharing
We do not sell your personal information. We may share information with:
- Service Providers: Companies that help us operate (Stripe for payments, AWS for infrastructure)
- Legal Requirements: When required by law or to protect our rights
- Business Transfers: In connection with a merger or acquisition
5. Data Retention
We retain your information only as long as necessary for the purposes outlined in this policy:
- Account data: Duration of your account plus 30 days
- Billing records: 7 years (legal requirement)
- Request logs: 7-30 days depending on data type
- Support communications: 2 years
6. Security
We implement industry-standard security measures to protect your data:
- All data encrypted in transit (TLS 1.3) and at rest (AES-256)
- API keys hashed using bcrypt
- Regular security audits and penetration testing
- SOC 2 Type II compliance (in progress)
- Access controls and audit logging for internal systems
While we strive to protect your information, no method of transmission over the Internet is 100% secure. You are responsible for maintaining the security of your account credentials.
7. Your Rights
Depending on your location, you may have the following rights:
7.1 All Users
- Access your personal data
- Correct inaccurate data
- Delete your account and associated data
- Export your data in a portable format
7.2 California Residents (CCPA)
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of sale (we do not sell data)
- Right to non-discrimination for exercising rights
7.3 EU/UK Residents (GDPR)
- Right to access and portability
- Right to rectification and erasure
- Right to restrict processing
- Right to object to processing
- Right to withdraw consent
To exercise any of these rights, contact us at privacy@ipforagents.com.
8. Cookies and Tracking
We use minimal, essential cookies:
- Session cookies: To maintain your login state
- Preference cookies: To remember your settings
- Analytics: We use privacy-focused analytics (Plausible) that do not use cookies
We do not use third-party advertising cookies or tracking pixels.
9. Children's Privacy
Our Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
10. International Data Transfers
Our servers are located in the United States. If you access our Service from outside the US, your information will be transferred to and processed in the US.
For EU/UK users, we rely on Standard Contractual Clauses approved by the European Commission to ensure adequate protection for transferred data.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting the new policy on our website
- Updating the "Last updated" date
- Sending an email for significant changes (if you have an account)
12. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us: