TuxlerVPN GDPR Compliance Statement

Effective Date: 28 April 2025
Last Updated: 28 April 2025

1. Introduction

TuxlerVPN is committed to protecting your privacy and ensuring the security of your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.

This statement outlines our practices regarding the collection, processing, storage, and protection of personal data, ensuring full compliance with GDPR principles.

2. Data Controller & Contact Information

TuxlerVPN, operated by Tuxler Privacy Technologies, Inc., acts as the data controller for your personal data collected through our website, services, and applications.

For any GDPR-related inquiries, you may contact our Data Protection Officer (DPO) at:
Email: privacy@tuxlervpn.com

3. Lawful Basis for Data Processing

Under GDPR, we process personal data based on the following legal grounds:

  • Consent – Where users provide explicit consent (e.g., for marketing communications, cookies).
  • Contractual Necessity – To provide and fulfill VPN services as per our Terms of Service.
  • Legitimate Interest – To ensure security, fraud prevention, and service improvements.
  • Legal Obligation – To comply with applicable laws and regulations.

4. Personal Data We Collect

We collect and process the following categories of personal data:

  • Account Information: Email address, username, encrypted password.
  • Payment Data: Processed securely by third-party payment providers; TuxlerVPN does not store credit card details.
  • Device & Usage Data: IP addresses, device types, connection logs (non-identifiable for privacy protection).
  • Communication Data: Support inquiries, chat logs, and customer interactions.
  • Cookies & Tracking Data: Collected based on user consent, as detailed in our Cookie Policy.

5. User Rights Under GDPR

Under GDPR, users have the following rights regarding their personal data:

  • Right to Access: Request a copy of personal data we process.
  • Right to Rectification: Correct inaccurate or incomplete data.
  • Right to Erasure (Right to Be Forgotten): Request deletion of personal data.
  • Right to Restrict Processing: Limit how we use your data under certain circumstances.
  • Right to Data Portability: Receive a structured copy of your data.
  • Right to Object: Opt out of direct marketing and certain processing activities.
  • Right to Withdraw Consent: Revoke consent at any time (e.g., for marketing communications).

To exercise your rights, please contact us at privacy@tuxlervpn.com.

6. Data Retention & Deletion Policy

TuxlerVPN retains personal data only as long as necessary for the purposes outlined in this policy:

  • Account Data: Stored until account deletion request.
  • Billing Data: Retained for 7 years for legal compliance.
  • Support Inquiries: Retained for up to 2 years.
  • Cookies & Analytics Data: Stored based on consent settings (see Cookie Policy).

When data is no longer required, we securely delete or anonymize it.

7. Data Security Measures

TuxlerVPN employs industry-standard security measures to protect personal data:

  • End-to-End Encryption for data transmission.
  • Zero-Log Policy – No activity logs are stored.
  • Access Controls – Restricted to authorized personnel only.
  • Regular Security Audits & Compliance Checks to uphold GDPR standards.

8. Data Transfers & Third-Party Processors

TuxlerVPN may transfer personal data outside the European Economic Area (EEA), ensuring compliance with GDPR Articles 44-50 via:

  • Standard Contractual Clauses (SCCs) for third-country transfers.
  • Adequacy Decisions (where applicable).
  • Privacy Shield Framework (for relevant U.S. entities).

We only share data with trusted third-party service providers, including:

  • Payment Processors
  • Cloud Hosting Services
  • Analytics Providers

For a full list of third-party processors, please contact support@tuxlervpn.com.

9. Incident Response & Data Breach Notification

In the event of a personal data breach, TuxlerVPN will:

  • Notify the affected users and relevant authorities within 72 hours, as per GDPR Article 33.
  • Provide details of the breach, mitigation actions, and potential risks.
  • Implement additional security measures to prevent future incidents.

10. Children’s Privacy & Age Restrictions

TuxlerVPN does not knowingly collect or process data from users under 18 years old. If we become aware of such data, we will delete it immediately.

11. Changes to This GDPR Compliance Statement

TuxlerVPN may update this GDPR Compliance Statement periodically. Any significant changes will be communicated via:

  • Email notifications (if applicable).
  • Website updates.
  • In-app notifications.

12. Contact Information

For GDPR-related inquiries, you can reach our Data Protection Officer (DPO) at:

Email: support@tuxlervpn.com

TuxlerVPN is committed to privacy, security, and full GDPR compliance. If you have any questions, please contact us at support@tuxlervpn.com.

Copyright 2011-2021 Tuxler Privacy Technologies, Inc.