Privacy Policy
Last updated: 2025-11-12Your privacy is our priority. This policy describes what we do and do not process when you use PrivatraVPN on Android.
No‑Logs & Session Data
- We do NOT store your browsing history, DNS queries, traffic content, or destination IPs/domains.
- We do NOT store your original IP address after a session ends.
- We do NOT profile or sell/share your personal data for cross‑context behavioral advertising.
To run the VPN, the service briefly processes your device IP and connection timestamps during an active session solely for routing and abuse prevention. This data is retained only transiently and is purged when the session ends or within minutes thereafter.
Data We May Process
- Anonymous app/device identifiers (e.g., Android App Set ID or instance ID) to operate features.
- Subscription status from Google Play Billing to enable Premium entitlement.
- Basic diagnostics (app version, country as coarse locale, connect/disconnect success/failure).
- Crash logs if you opt in (includes device model/OS/app version; no traffic contents).
Payments
- All purchases are handled by Google Play. We do not receive full card/billing details.
- We store only subscription status and entitlement dates to provide Premium features.
Permissions & Network
- VPN permission (Android VpnService) to create an encrypted tunnel.
- Optional notifications for status and reminders.
- We do not request location permission.
Security
- Transport uses strong encryption (e.g., AES‑GCM) between your device and our servers.
- Access to systems is restricted, authenticated, and logged.
- Data retention is minimized and aligned with the purposes described here.
Third‑Party Processing & SDKs
| Provider | Data | Purpose | Policy |
|---|---|---|---|
| Google Play Billing | Subscription status, purchase tokens | Enable and manage Premium access | Google Privacy Policy |
| AppLovin (MAX) *if ads enabled* | Advertising ID, IP, device info, app events | Ad serving/mediation; frequency capping and fraud prevention | AppLovin Privacy |
| Google Ads/AdMob *if ads enabled* | Advertising ID, IP, device info, app events | Ad delivery and measurement | Google Ads Privacy |
| OneSignal (push) *if enabled* | Push token, device info, coarse locale | Notifications and device messaging | OneSignal Privacy |
| Firebase Crashlytics *if enabled* | Crash traces, device/OS/app version | Stability diagnostics (no traffic contents) | Firebase Privacy |
- To limit ad personalization: Android Settings → Google → Ads → ‘Opt out of Ads Personalization’ and reset Advertising ID.
- You may disable notifications from system settings or within the app (if available).
Legal Requests
We respond to valid legal requests with the limited data we actually have (e.g., subscription/entitlement or diagnostics). We do not have logs of traffic contents or destinations.
Google Play Data Safety Summary
| Data Type | Collected | Shared | Purpose | Optional |
|---|---|---|---|---|
| Identifiers (app/device ID, Advertising ID*) | Yes | No | App functionality; ads*; fraud prevention | Ads*: Optional |
| App activity (connection success/failure) | Yes | No | Reliability/diagnostics | — |
| Diagnostics (crash logs*) | Yes* | No | Stability | Optional (opt‑in) |
| Purchases (entitlement status) | Yes | No | Premium access | — |
Ensure your Play Console answers match the table above.
Your Rights & Choices
- Access, correction, deletion, portability where applicable (GDPR/UK GDPR/CPRA).
- Submit requests via support@privatravpn.app.
- We do not sell or share personal information as defined by CPRA.
International Transfers
Servers and processors may be located outside your country. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses).
Children
PrivatraVPN is not directed to children under 13 (or higher age of consent per local law).
Changes
We will update this policy from time to time and change the date above. Material changes may be announced in‑app.