This Privacy Policy explains how SIMNETIQ LTD ("Company", "we", "us", or "our"), a company registered in England and Wales (Company Number 16861177), with its registered office at 2 Frederick Street, Kings Cross, London, WC1X 0ND, United Kingdom, collects, uses, and protects your information when you use DopplerVPN (our VPN application available on iOS, Android, and Windows) and our AI-powered video generation tool (collectively, the "Services"). We are committed to protecting your privacy in compliance with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), the California Consumer Privacy Act (CCPA), and all other applicable data protection laws.

1. No-Logs Policy (VPN Service)

DopplerVPN operates under a strict no-logs policy. We do not track, record, store, or share any of the following: your browsing activity or history, connection timestamps, originating or assigned IP addresses, DNS queries, bandwidth usage or transfer amounts, VPN session duration, or any other data that could be used to identify you or your online activities. All VPN traffic is encrypted end-to-end using the VLESS-Reality protocol and is never inspected, logged, modified, or stored on our servers. This policy applies to all users regardless of jurisdiction.

2. Information We Collect

We collect only the minimum information necessary to provide and improve our Services. For DopplerVPN: a randomly generated device identifier (not linked to your personal identity), anonymous aggregated server performance metrics, and your email address only if you voluntarily contact support. Payment information: all payments are processed securely through Revolut (web subscriptions), Apple App Store (iOS), Google Play Store (Android), or RevenueCat (mobile subscription management). We never directly access, store, or process your credit card numbers, bank account details, or other financial information. For full details on how we process your data, see our Data Processing Agreement at dopplervpn.org/dpa.

3. VPN Data Handling

When you connect to DopplerVPN, your internet traffic is encrypted using the VLESS-Reality protocol and routed through our servers. We do not inspect, log, store, modify, or sell any data that passes through our VPN tunnel. Our DNS-level ad blocker and content filter operate on our DNS resolver and do not log individual queries or browsing patterns. Our server infrastructure is configured to minimize data retention by design, and we do not have the technical ability to match a specific user to specific network activity.

4. Legal Basis for Processing (GDPR)

Under the EU and UK GDPR, we process your personal data on the following legal bases: (a) Contract Performance — processing necessary to provide the Services you have subscribed to; (b) Legitimate Interest — processing necessary for our legitimate business interests, such as improving our Services and preventing fraud, provided these interests are not overridden by your rights; (c) Consent — where you have given explicit consent, such as subscribing to marketing communications; (d) Legal Obligation — processing necessary to comply with applicable laws. You may withdraw your consent at any time by contacting us at support@simnetiq.store.

5. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data: the right to access the personal data we hold about you, the right to rectification of inaccurate data, the right to erasure ("right to be forgotten"), the right to restrict processing, the right to data portability, the right to object to processing, and the right not to be subject to automated decision-making. EU/EEA and UK residents may exercise these rights under GDPR by contacting us at support@simnetiq.store. California residents may exercise their rights under the CCPA by the same contact method. We will respond to all legitimate requests within 30 days. You also have the right to lodge a complaint with your local data protection authority — for UK residents, this is the Information Commissioner's Office (ICO).

6. Data Security

We implement industry-standard technical and organisational measures to protect your data, including: end-to-end encryption using the VLESS-Reality protocol for VPN traffic, TLS encryption for all web communications, regular security audits and infrastructure reviews, strict access controls on all production systems, and data minimisation by design across all Services. While no method of electronic transmission or storage is 100% secure, we take all reasonable steps to protect your personal information.

7. Third-Party Services

We do not sell, trade, or rent your personal information to third parties. We share data only with the following categories of service providers, who are contractually bound to process data only as instructed: Revolut (payment processing — processes web subscription payments), Apple App Store and Google Play Store (process mobile app payments), RevenueCat (mobile subscription management — processes anonymous purchase identifiers), cloud infrastructure providers (server hosting — no access to user data), and analytics providers (aggregate, anonymised usage data only). We may disclose information if required by law, court order, or governmental authority, though our no-logs policy means we have minimal data to provide. For a complete list of our subprocessors, visit dopplervpn.org/subprocessors.

8. International Data Transfers

Our servers are located in multiple countries to provide optimal VPN performance. When your data is transferred outside the UK or EEA, we ensure adequate safeguards are in place through Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions where applicable, or other legally recognised transfer mechanisms. Due to our no-logs policy, the VPN data that passes through our servers in any jurisdiction is encrypted and not stored.

9. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected: account information is retained while your account is active and for up to 30 days after deletion to allow for account recovery, payment records are retained as required by applicable tax and accounting laws (typically 6 years in the UK), support correspondence is retained for up to 12 months after resolution, and VPN usage data is not retained at all (no-logs policy). You can request deletion of your account and data via our account deletion page at dopplervpn.org/delete-account, or by contacting support@simnetiq.store.

10. Cookies and Tracking

Our website (dopplervpn.org) uses essential cookies required for the website to function properly and anonymous analytics cookies to understand website traffic in aggregate. We do not use advertising cookies or cross-site tracking technologies. You can control cookie preferences through your browser settings. Our VPN and AI applications do not use cookies.

11. Children's Privacy

Our Services are not directed at children under the age of 16 (or 13 in jurisdictions where applicable). We do not knowingly collect personal information from children. DopplerVPN's content filtering feature includes parental control capabilities, which operate at the DNS level without collecting or storing personal data about users of any age. If we become aware that we have collected personal data from a child without parental consent, we will take steps to delete that information promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of material changes by posting the updated policy on our website with a revised "Last updated" date, and where required by law, by email. Your continued use of the Services after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy, wish to exercise your data protection rights, or have a complaint, please contact us: SIMNETIQ LTD, 2 Frederick Street, Kings Cross, London, WC1X 0ND, United Kingdom. Email: support@simnetiq.store. For data protection matters, you may also contact the UK Information Commissioner's Office (ICO) at ico.org.uk.