Legal

Privacy Policy

Last updated: April 2026

CharityVPN is a VPN service. The whole point is to reduce what passes through your network without your knowledge. This policy explains the limited data we do collect and what we do with it.

What we collect

Account information

  • Email address (for sign-in and transactional email).
  • Firebase Auth identifier tied to your account.
  • Your selected charity, stored with your account.
  • Your monthly contribution amount.

Payment information

Payments are processed by Stripe. We don't store or see your full card number. Stripe provides us with a customer ID and limited metadata (last four digits of a card, subscription status, payment success/failure) needed to run the service.

Connection metadata

We store the minimum needed to operate the tunnel:

  • Your device's public WireGuard key (not private key — private keys never leave your device).
  • The private internal IP we allocate you inside a region (e.g. 10.10.0.47).
  • Timestamps of your last successful WireGuard handshake per region.
  • Total bytes transferred per session, for capacity planning.

What we do not collect

  • Browsing activity, URLs visited, or page contents.
  • DNS queries.
  • The origin IP addresses of servers you connect to.
  • Advertising identifiers or third-party trackers.

How we use data

  • To provision and maintain your VPN tunnel.
  • To bill you and honor cancellations.
  • To aggregate monthly donations by selected charity and route them via Every.org.
  • To diagnose service issues and abuse (e.g. detecting idle peers to free capacity).

How long we keep it

  • Peer records are retained while your subscription is active and for up to 30 days after the peer is revoked, for audit.
  • Allocated IPs are held in a 5-minute quarantine after release before returning to the pool.
  • Aggregated byte counters are retained up to 90 days for capacity planning.
  • Billing records are retained for the period required by tax and accounting law in our jurisdiction.

Third parties we rely on

  • Stripe — payment processing.
  • Firebase (Google) — authentication and Firestore storage.
  • Google Cloud — VPN servers and backend services.
  • Every.org — aggregated monthly charity donations.

Each of these providers has its own privacy practices. We share only the minimum data needed for them to perform their function.

Your rights

Depending on where you live, you may have rights to access, correct, export, or delete your personal data. You can request any of these by emailing privacy@vpn.charity. We'll respond within a reasonable time frame, typically within 30 days.

Children

CharityVPN is not intended for children under 16. We don't knowingly collect data from children. If you believe a child has provided us data, contact us and we'll delete it.

International data transfers

Your data may be processed in countries other than the one you live in. We rely on GCP's standard data protection practices and lawful transfer mechanisms where applicable.

Security

Tunnels are encrypted with WireGuard. Your device's private key never leaves your device. Server-side data is stored in Firestore with access restricted to the CharityVPN service accounts. No system is perfectly secure, but we do not collect the kind of browsing-behavior data that would make a breach catastrophic.

Updates

We may update this policy occasionally. Material changes will be communicated in-app or by email.

Contact

Privacy questions: privacy@vpn.charity. General support: support@vpn.charity.