Privacy Policy

1. Introduction

CloudNext Pte. Ltd. ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our network acceleration service. This policy complies with the General Data Protection Regulation (GDPR) and other applicable privacy laws.

By using our service, you consent to the data practices described in this policy. If you do not agree with our policies and practices, please do not use our services.

2. Information We Collect

2.1 Personal Information

We collect the following personal information:

• Email address (for account creation and communication)
• Payment information (processed securely through third-party payment processors)
• Username (chosen by you)
• Customer support communications

2.2 Technical Information

We collect minimal technical information necessary for service operation:

• Connection timestamps (deleted after 30 days)
• Bandwidth usage (for plan management)
• App crashes and error reports (anonymized)
• Device type and operating system version

2.3 What We DO NOT Collect

We maintain a strict no-logs policy:

• We DO NOT log your browsing history
• We DO NOT log traffic destinations or content
• We DO NOT log DNS queries
• We DO NOT log your IP address

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

• Contract: Processing necessary for the performance of our service contract with you
• Consent: You have given consent for marketing communications
• Legitimate Interests: Processing necessary for our legitimate interests (fraud prevention, network security)
• Legal Obligation: Processing necessary to comply with legal requirements

4. How We Use Your Information

We use the collected information for:

• Providing and maintaining our network service
• Processing payments and managing subscriptions
• Sending service-related communications
• Providing customer support
• Preventing fraud and abuse
• Improving our service performance
• Complying with legal obligations

5. Data Retention

We retain your data for the following periods:

• Account information: Until account deletion
• Payment records: 7 years (legal requirement)
• Connection timestamps: 30 days
• Support tickets: 2 years
• Marketing consent: Until withdrawn

6. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data ("right to be forgotten")
• Right to Restriction: Request limitation of processing
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to certain processing activities
• Right to Withdraw Consent: Withdraw consent at any time
• Right to Lodge a Complaint: File a complaint with supervisory authorities

To exercise these rights, contact us at [email protected]

7. Data Security

We implement appropriate technical and organizational measures to protect your data:

• AES-256 encryption for all data transmissions
• Secure data centers with physical access controls
• Regular security audits and penetration testing
• Employee data protection training
• Incident response procedures
• Data minimization practices

8. International Data Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure appropriate safeguards through:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions where applicable
• Additional security measures for data protection

9. Cookies and Tracking

We use minimal cookies necessary for service operation:

• Essential Cookies: Required for authentication and security
• Preference Cookies: Remember your settings and preferences
• Analytics Cookies: Help us understand service usage (anonymized)

You can manage cookie preferences in your browser settings. Note that disabling essential cookies may affect service functionality.

10. Third-Party Services

We use the following third-party services:

• Payment Processors: Stripe, PayPal (PCI-DSS compliant)
• Email Service: SendGrid (for transactional emails)
• Support System: Zendesk (for customer support)

These services have their own privacy policies and are prohibited from using your data for other purposes.

11. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we discover that we have collected information from a child under 16, we will delete it immediately.

12. Data Protection Officer

For privacy-related inquiries, contact our Data Protection Officer:

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new policy on this page
• Updating the "Last updated" date
• Sending an email notification for significant changes

Continued use of our service after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy, please contact us: