NetCloak VPN Privacy Policy

1. Introduction

NetCloak VPN ("NetCloak", "we", "us", or "our") is operated by NeuEra Apps. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our mobile application for Android and iOS devices (the "Service").

NetCloak is a free VPN service supported by advertising. We are committed to protecting your privacy and collecting only the minimal data necessary to provide our VPN service.

IMPORTANT: NetCloak VPN is intended for users aged 18 and older. By using our Service, you confirm that you are at least 18 years of age.

2. Information We Collect

We are committed to minimal data collection. We collect only:

What We Collect:

• IP Addresses: We collect IP addresses solely for system logs and security purposes. These are necessary for:
  • Maintaining service security
  • Troubleshooting technical issues
  • Preventing abuse and fraud
  • Complying with legal obligations

What We DO NOT Collect:

• Your name or personal identification
• Email addresses (unless you choose to create an account in future premium versions)
• Browsing history or VPN traffic content
• Connection timestamps
• Device IDs or browser information
• Location data beyond IP addresses
• Any payment information (for our free service)

3. How We Collect Information

We collect information through:

• Automatic Collection: When you connect to our VPN service, we automatically collect your IP address for operational purposes.
• Direct Input: In future versions, optional account creation for premium features.
• Third-Party Services: Through Firebase for anonymous authentication and app functionality.

We do not use cookies or similar tracking technologies in our mobile application.

4. How We Use Your Information

We use the collected information to:

• Provide and maintain the VPN service
• Create and manage user sessions
• Send service-related communications (if you provide contact information)
• Improve and optimize our service
• Comply with legal obligations
• Prevent fraud and ensure security
• Conduct analytics and research to improve our service

5. Information Sharing and Disclosure

We may share your information with:

Service Providers:

• Firebase (Google) for authentication and app functionality
• Vultr for cloud infrastructure and VPN server hosting
• Future payment processors (when premium features are implemented)

Advertising Partners:

Google AdMob for displaying advertisements (they receive anonymized data only)

Analytics Providers:

Firebase Analytics (when implemented) for service improvement

Legal Requirements:

We may disclose information to government authorities or law enforcement officials when required by law or to:

• Comply with legal process
• Protect our rights and safety
• Prevent illegal activities

Business Transfers:

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

With Your Consent:

We may share information for other purposes with your explicit consent.

WE DO NOT SELL YOUR PERSONAL DATA TO THIRD PARTIES.

6. Data Security

We implement comprehensive security measures including:

• Encryption in transit using HTTPS/TLS protocols
• Encryption at rest for stored data
• WireGuard protocol encryption (ChaCha20-Poly1305) for VPN connections
• Access controls and authentication mechanisms
• Regular software updates and security patches
• Secure development practices
• Rate limiting and DDoS protection
• Zero-knowledge architecture - we cannot see your VPN traffic
• Automatic expiration of inactive client configurations

7. Data Retention

We retain data as follows:

• Account Data: Until you delete your account
• IP Address Logs: Retained for 30 days for security and troubleshooting
• Session Data:
  • Free users: Sessions expire after 30 minutes to 3 hours of inactivity (dynamically adjusted based on server load)
  • Premium users (when available): Extended session duration
  • Expired configurations are automatically deleted
• Legal Compliance: We may retain data longer if required by law

8. International Data Transfers

Your information may be transferred to and processed in:

• United States (our primary operation base)
• European Union (Firebase data centers)
• Any country where we or our service providers maintain facilities

We ensure appropriate safeguards are in place for international transfers in compliance with applicable laws.

9. Your Privacy Rights

Depending on your location, you may have the following rights:

• Access: Request information about what personal data we have about you
• Deletion: Request deletion of your personal data
• Portability: Download your data in a portable format
• Object to Processing: Object to certain uses of your data
• Withdraw Consent: Withdraw consent for data processing at any time

To exercise these rights, contact us at hello@neuera.app. We will respond to requests within 30 days.

Regional Rights:

• EU Residents: Rights under GDPR
• California Residents: Rights under CCPA/CPRA
• Canadian Residents: Rights under PIPEDA
• Brazilian Residents: Rights under LGPD

10. Children's Privacy

NetCloak VPN is not intended for users under 18 years of age. We implement age verification at app startup and do not knowingly collect personal information from anyone under 18. If we learn we have collected information from a user under 18, we will delete that information immediately.

11. Third-Party Services

Our Service integrates with:

• Firebase Authentication: For anonymous authentication (account creation optional for future premium features)
• Firebase Firestore: For storing minimal user and app data
• Vultr: For VPN server infrastructure
• Google AdMob: For advertising and app monetization

These services have their own privacy policies governing their use of your information.

12. Advertising

NetCloak VPN is supported by advertisements through Google AdMob. AdMob may use anonymized information to display relevant ads. You can learn more about Google's advertising practices at www.google.com/policies/privacy/partners/.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes:

• We will update the version date at the top of this policy
• We will notify you through in-app notifications
• We will require you to accept the updated policy before continuing to use the Service

14. Our Privacy Commitments

• No-logs policy: We do not log or monitor your VPN traffic, browsing activity, or connection timestamps
• Minimal data collection: We only collect the absolute minimum data required to provide the VPN service
• Strong encryption: All connections use modern, audited encryption protocols
• Automatic data deletion: Inactive sessions and configurations are automatically purged
• No personal information required: Use our service without providing personal details
• IP address protection: Your real IP address is never exposed while using our VPN
• Transparent practices: This policy clearly outlines all data we collect and how we use it
• No selling of data: We never sell, rent, or share your personal information for marketing

15. Contact Us

If you have questions about this Privacy Policy or our privacy practices, contact us at:

Last Updated: August 5, 2025
Version: 2025-08-05