Carol's VPN
Carol's VPN takes privacy seriously. Selling customer information or building the service around invasive tracking is not part of the business model.
This policy explains what information Carol's VPN collects, why it is collected, how it is protected, and how long it is kept.
What information we collect
- Account information. Email address, display name, access-control state, plan tier, and subscription status.
- Billing information. Stripe processes payment details. Carol's VPN stores Stripe customer, subscription, and checkout identifiers needed to manage subscription access.
- Diagnostic and support data. IP address, API request metadata, service logs, connection-state records, and limited account-activity logs used to diagnose failures, prevent abuse, and respond to support requests.
- VPN service data. The configuration and connection state required to issue WireGuard access and maintain the VPN service.
- Email delivery data. Sender, recipient, and message-delivery metadata needed to send access emails, receipts, and support responses.
What we do not collect as a product feature
- Browsing history for advertising or profiling.
- Destination URLs for analytics.
- Content of customer network traffic as a commercial data product.
- Stored customer payment-card numbers inside the Carol's VPN API.
Why we process data
- To authenticate users and control access to the service.
- To create, maintain, suspend, or revoke subscription-backed VPN accounts.
- To operate WireGuard infrastructure and issue customer tunnel access.
- To send provisioning emails, notices, receipts, and support responses.
- To detect abuse, fraud, spam, security incidents, or service misuse.
- To comply with legal obligations and valid governmental requests.
Third-party service providers
Carol's VPN uses third-party providers where necessary to run the service. Examples include Stripe for payments and Purelymail for transactional email delivery. Those providers process the data needed to perform their part of the service.
Retention
- Operational and diagnostic logs are kept only as long as needed for service operation, abuse response, and support.
- Account and subscription records are retained while the account is active and for a reasonable period afterward for billing, audit, fraud, and support purposes.
- An encrypted temporary copy of a newly issued access code may be retained until the code is delivered or first revealed to the customer, then it is cleared from the active billing record.
- When an account is closed, live account data is removed from active systems, although some information may persist briefly in backups.
Security
Carol's VPN uses HTTPS for API traffic and WireGuard for VPN tunnel transport. Active account access codes are stored as salted hashes on the server. A separate encrypted temporary copy may exist only long enough to complete post-checkout delivery or one-time reveal flows. Administrative access is restricted and the production admin interface is not publicly exposed.
No security system is perfect. Carol's VPN cannot guarantee that the service will never experience interruption, attack, or unauthorized disclosure.
Account and data requests
Customers can request account deletion, data deletion, data export, or refund review through the Account and Data Requests page or by contacting support. Carol's VPN may need to verify control of the billing or account email before completing a request.
Legal disclosures
Carol's VPN may monitor, retain, or disclose information when necessary to comply with law, regulation, legal process, or a valid governmental request, or when necessary to protect the service, customers, or the public from abuse or security harm.
Policy changes
This policy may change over time as the service changes. Continued use of the service after a policy update constitutes acceptance of the revised policy.
Contact
For privacy, account, or billing questions, contact support@carolsvpn.com.