Privacy Policy
Last updated: June 8, 2026
We're a privacy company. This document explains exactly what data we touch and what we don't.
The short version
We don't log your proxy traffic. We don't record your browsing history. We don't sell your data. We collect the minimum needed to run the service, keep your device online, and bill you accurately.
What We Collect
We collect information in three categories:
Account Information
- Name and email address (when you create an account)
- Phone number, only if you choose to add one (optional)
- Password (stored as a bcrypt hash. We never see your actual password)
- Billing metadata: your Stripe customer ID, subscription status, plan type, and invoice history. Stripe is our payment processor and handles your card details directly. We never see or store your full card number.
- Whether you opted in to marketing email (a separate checkbox at signup that you can change any time in your account email preferences)
Device Telemetry
- Device ID and firmware version
- Online/offline status, uptime, and last heartbeat timestamp
- The Wi-Fi network name (SSID) your box is connected to, plus signal strength and connection quality metrics
- Ethernet connection status (whether a wired connection is in use)
- CPU, memory, and temperature readings
- The device's public IP address, which is the home ISP address your proxy and VPN egress from
- Bandwidth usage totals (upload/download bytes per hour, not per-request)
Your Home Network Device List
Your ProxyBox scans your own home network (the LAN it is plugged into) and reports the devices it finds back to your dashboard, so you can see what is connected. For each discovered device this can include its hostname and the manufacturer associated with its MAC address.
- This scan covers your own network only, and the results are shown only to you, the account owner.
- We do not sell, share, or use this list for anything other than displaying it to you and helping you spot unfamiliar devices.
- If you would rather not see it, contact us and we can disable the scan for your device.
Network Information
- Encrypted proxy and VPN credentials issued for your device (and for any members you share with). These are stored encrypted and used to authenticate connections.
- Apple push notification tokens, if you use our iOS app and enable notifications, so we can alert you when your device goes offline or needs attention.
- Relay and tunnel metadata used to keep your device reachable (for example, connection timestamps and the tunnel endpoint your box uses).
- IP addresses that connect to your proxy (connection metadata only, not traffic content)
- VPN connection timestamps and data transfer totals
What We Don't Collect
This matters more than what we do collect:
When our marketing says "zero logs" or "no logs ever," we mean exactly this: we do not log the content or destination of your proxy or VPN traffic. We never record which sites you visit, what you send or receive, or what you look up. The connection metadata described above (such as bandwidth totals and connection or session timestamps) is the small amount of operational data we need to run the service and bill accurately. It is not a log of your traffic content or where it goes.
- No traffic logging: We don't inspect, record, or store the content of your proxy or VPN traffic. Period.
- No browsing history: We don't know what websites you visit through your ProxyBox.
- No DNS logs: We don't record DNS queries made through your device.
- No request-level logging: We track bandwidth totals (e.g., "2.4 GB today"), not individual HTTP requests.
- No third-party tracking: We don't embed analytics trackers, ad pixels, or social media widgets in our dashboard.
- No data selling: We don't sell, rent, or share your personal information with data brokers or advertisers. Ever.
How We Use Your Data
- Service operation: Routing proxy traffic, maintaining VPN connections, delivering firmware updates
- Billing: Processing payments, managing subscriptions, calculating bandwidth usage
- Support: Diagnosing issues when you contact us, sending service alerts
- Product improvement: Aggregated, anonymized telemetry to improve firmware and service reliability
- Security: Detecting abuse, preventing unauthorized access, protecting the network
Data Retention
- Account data: Retained while your account is active. Deleted within 30 days of account closure.
- Device telemetry: Granular metrics retained for 90 days, then rolled up into daily aggregates kept for 1 year.
- Bandwidth records: Hourly records kept for 30 days, daily summaries kept for 1 year.
- Connection metadata: VPN session records retained for 30 days, then deleted.
- Billing records: Retained for 7 years as required by tax law.
- Push tokens: Kept while your device token is valid and removed when it becomes invalid or you turn off notifications.
- Home network device list: We keep only the latest scan result for display on your dashboard. It is replaced on each scan and removed when the device is unlinked or your account is deleted.
Third-Party Services
We use a small number of third-party services:
- Stripe: Payment processing. Stripe handles your credit card information directly. It never touches our servers. See Stripe's Privacy Policy.
- Apple (APNs): If you use our iOS app with notifications on, we send push alerts through Apple's Push Notification service. Apple processes the delivery token; we do not share your account details with Apple beyond what is needed to deliver the notification.
- Plausible Analytics: We use Plausible for basic, privacy-friendly website analytics. It does not use cookies, does not track you across sites, and does not collect personal information. See Plausible's Privacy Policy.
- Infrastructure providers: Our servers run on cloud infrastructure. All data is encrypted at rest and in transit.
We don't use Google Analytics, Facebook Pixel, ad networks, or any cross-site tracking service. The only analytics we run is Plausible, described above, which is cookie-free and does not profile you.
Data Security
- All web traffic is encrypted with TLS 1.3
- Device authentication uses HMAC-based signatures with rotating tokens
- Passwords are hashed with bcrypt (12 rounds)
- VPN keys are encrypted at rest with AES-256-GCM
- Wi-Fi credentials transit your ProxyBox over an encrypted channel during setup and are stored on the device only. We never store your Wi-Fi password on our servers.
- Database connections are encrypted
- Refresh tokens use rotation with reuse detection (compromised tokens automatically revoke the entire session family)
- Rate limiting on all authentication endpoints
Your Rights
You have the right to:
- Access: Request a copy of all data we hold about you
- Correction: Update or correct your personal information
- Deletion: Delete your account and associated data at any time yourself. Sign in and go to your account settings, where the Delete account option permanently removes your account, cancels any active subscription, and unlinks your devices. The same option is available in the iOS app. You can also email us and we will do it for you.
- Export: Download your data in a machine-readable format
- Objection: Object to specific uses of your data
To exercise any of these rights, email privacy@proxybox.us. We'll respond within 15 business days.
Cookies
We use minimal cookies. Specifically: a session cookie to keep you logged in and a CSRF protection token. That's it. No tracking cookies, no analytics cookies, no advertising cookies. We don't use cookie banners because we don't do anything that requires consent beyond basic session management.
Children's Privacy
ProxyBox is not intended for anyone under 13 years of age. We don't knowingly collect personal information from children. If you believe we've inadvertently collected data from a child, please contact us immediately at privacy@proxybox.us and we'll delete it.
California Residents (CCPA)
If you're a California resident, you have additional rights under the California Consumer Privacy Act:
- Right to know what personal information we collect and how we use it
- Right to delete your personal information
- Right to opt out of the sale of personal information (we don't sell it, so this doesn't apply)
- Right to correct inaccurate personal information we hold
- Right to opt out of the sharing of personal information for cross-context behavioral advertising (we don't share it, so this doesn't apply)
- Right to limit the use of sensitive personal information (we do not use your data for purposes that would trigger this)
- Right to non-discrimination for exercising your privacy rights
European Residents (GDPR)
If you're in the European Economic Area, our legal basis for processing your data is:
- Contract performance: Processing necessary to provide the ProxyBox service
- Legitimate interests: Service security, fraud prevention, and product improvement
- Legal obligations: Tax and billing record retention
- Consent: Sending you marketing email, where you opted in. You can withdraw consent at any time in your email preferences.
You have the right to lodge a complaint with your local data protection authority. You also have the right to data portability and to restrict processing in certain circumstances. Some of our sub-processors (such as Stripe and Apple) may process data outside the EEA; where that happens we rely on standard contractual clauses or equivalent safeguards.
Changes to This Policy
We'll notify you by email before making material changes to this policy. The "Last updated" date at the top tells you when it was last revised.
Contact
For privacy-related questions or requests, email privacy@proxybox.us.
For general inquiries, visit our contact page.