Privacy Policy
TinyVPN™ was created with three core elements in mind: privacy, security, and cost. First and foremost our priority is to customer privacy, which we use as our guiding principle for all decisions regarding TinyVPN. Our focus on privacy is what separates us from our competitors and allows us to provide a truly effective service.
Our goal is to provide the most private and secure VPN service possible. TinyVPN will always place transparency and user privacy over all else. To learn more about TinyVPN and the beliefs that inspired its creation, please see the “About Us” page.
We realize the first step in providing a truly transparent VPN service is for customers to fully understand what we mean by privacy. This policy gives you an overview of:
- What does our “No-log” policy mean
- How we handle user information access requests
- What information TinyVPN collects, how it’s stored, and how it’s used
- What happens in the case we are subpoenaed, receive a court order or notice of copyright infringement
- What we do with information relating to canceled or dormant accounts
We’ve tried our best to make our privacy policy clear and easy to understand so you can quickly answer any questions you may have.
Total user privacy is our mission
As a service focused on providing privacy we go to great lengths to collect the minimum amount of customer information needed to operate TinyVPN. Unlike most services when you sign up, we do not require any personal or identifiable information such as name, email address, etc. TinyVPN will never log or track your IP address.
Due to this policy of not requiring personal information, we will have no way to contact you in the event there are issues with your account. If you wish you can provide such information at sign-up or alternatively contact 24/7 customer support here.
What data don’t you log?
We do not log any data relating to a user’s VPN activity (while connected or connecting to the VPN).
- No traffic logging
- No connection timestamp or connection duration
- No DNS request logging
- No logging of user bandwidth
- No logging of customer IP addresses
- No logging of any account activity except active total simultaneous connections (explained below)
What data do you log on sign-up?
When a new account is created, we store the following data: (please note that the following information may vary by payment method, we are using simplified formatting below to highlight relevant information)
| Username | Created at | Password | Acct ID |
|---|---|---|---|
| TVPN-XXXX-XXXX-XXXX | 2020-09-21 05:03:13 | TinyVPN | 1234 |
What information is logged when making a payment using a Credit Card, PayPal, Cash, or Cryptocurrency?
When you top up your account, the following information is stored:
| Payment ID | Account ID | Amount | Currency | Timestamp | Transaction ID |
|---|---|---|---|---|---|
| xxx | xxx | 100 | USD | 2020-10-2 14:01:11 | xxx |
Some payment information may be related to your account, for example, if PayPal is used a PayPal transaction ID will be associated with your account, as well as a subscription ID to set up a PayPal subscription. For credit card payments, our payment processor may store a transaction ID or other information against your account. If you elect to enable auto-renew for card payments, a subscription ID will also be stored. Third-party payment processors may collect additional information, these data points are not stored by TinyVPN. No third-party payment provider has access to TinyVPN customer account credentials.
To summarize, if we can offer anonymous payment methods we will, and we collect as little information as possible to do so. However, third-party payment systems and their data processing and storage methods are out of our control. For maximum privacy, we recommend that TinyVPN customers make payments by cryptocurrency or cash.
Please select cash or cryptocurrency payments should privacy be of concern.
Why do you store Account and Transactions IDs?
To be able to process refunds for our 30-day money-back guarantee and resolve other payment issues, as well as to enable auto-renewal of subscription.
What information is logged when I visit the TinyVPN website?
TinyVPN collects some information on site visitors using web analytics. These tools allow us to understand user engagement with our site and understand where it delivers value or where it can be improved. It also helps us to know where our site visitors originate and ensure those referring sites are making realistic and accurate claims.
TinyVPN will never share or sell any information or data collected by site visitors.
When your web browser loads a page on our site, a small snippet of code is executed within your browser which submits information such as;
- Your browser user-agent
- Language
- Screen resolution
- Referring website
- IP address
To limit the gathering of information turn on privacy settings in your browser before visiting the site.
Where is my data stored and who has access to it?
TinyVPN will not locate it’s servers in countries where it could be forced to transfer data to countries with weaker privacy laws. Due to the nature of our logging practices, TinyVPN servers do not contain any personally identifiable information and thus, if requested or seized, could not be used to identify users.
All servers and information is stored in a protected and secure environment.
What information is retained when I stop using your service?
When a TinyVPN account is terminated on our network due to the subscription ending, non-payment, or for any other reason, all data associated with that TinyVPN account including the account itself (except the accounting data below) is automatically deleted after 90 days. After the account is deleted, the remaining accounting data below has no link to any past account ID. If you want to delete your data immediately, simply click on the “Contact Us” page and send us a message.
| Date of payment | Amount | Payment method | Transaction ID | Account ID |
|---|---|---|---|---|
| 2020-01-24 | $19 | Credit Card | 123 | 123 |
How can I get access to the data stored on my behalf via an access request?
Reasonable requests for the release of a specific user’s data will be honored within 28 days of an acceptable request from a user or person with a provable legal relationship with that user.
We reserve the right to refuse or charge for requests that are deemed unfounded or excessive. Any refused requests will be responded to without undue delay including the refusal reason.
Subject access requests should be made in writing to info@tinytechshop.com
What happens if you receive a legal notice such as a supeona or DMCA for copyright material that I have downloaded?
Since our customers are using a TinyVPN issued IP address when using our service, such notices are directed to TinyVPN and our legal department will issue the appropriate response. Since we store no connection logs and keep minimal data, we couldn’t fulfill a request for such data even if legally compelled to do so.
How do you react when an authority requests information relating to a customer?
If a court order is received from a recognized legal authority with jurisdiction over TinyVPN, then the company will comply with that order. However, the company cannot be compelled to hand over information that it does not have. When a customer signs up, we require no personal or identifying information. If it ever becomes required by law for us to keep a persistent log of our customer’s connections or any personal data relating to their network activity, we will immediately notify our customers and do everything in our power to change jurisdictions or close operations in order to protect those who use our service. For more information on legal notices see our Warrant Canary.
What happens if laws change?
TinyVPN is committed to keeping its customers informed of any serious legislative threats to our service and customer privacy. If the laws in our jurisdiction change in way that effect our service we will always inform our customers as soon as possible. If this is the case, we will also allow customers to cancel or change their subscription at any time.
Device permissions for Personal Data access
TinyVPN desktop and mobile apps may request certain permissions that allow it to access the user’s device data as described below.
These permissions must be granted by the user before the respective information can be accessed. Once permission has been given, it can be revoked by the user at any time in the device settings.
Mobile App
Background location permission (continuous):
Required to access the current Wi-Fi SSID, when the Network Protection feature is enabled.
Desktop App
Permission to save VPN profile:
Required to access the current Wi-Fi SSID, when the Network Protection feature is enabled.
Changes to policy
TinyVPN™ & Tiny Tech Shop™ reserves the right to change this privacy policy at any time. We will take every reasonable step to ensure that these changes are brought to your attention before the new policy becomes effective.
If you have any questions or comments regarding this policy, please do not hesitate to contact us.