Privacy Policy

Our privacy policy and how we use your data

Last updated: May 27, 2026

1. Introduction

Vantyr ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our DDoS protection and proxy management services.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Name and email address
  • Billing information and payment details
  • Company name and contact information
  • Account credentials

2.2 Traffic Data

To provide our protection services, we process:

  • IP addresses (source and destination)
  • Traffic volume and bandwidth usage
  • Protocol and port information
  • Attack signatures and patterns
  • Geographic origin of traffic

Important: We do not inspect or store the payload content of your traffic. We only analyze metadata necessary for threat detection.

2.3 Usage Data

We automatically collect:

  • Dashboard access logs and activity
  • API usage and request logs
  • Device and browser information
  • Feature usage statistics

3. How We Use Your Information

We use collected information to:

  • Provide and maintain our DDoS protection services
  • Detect, analyze, and mitigate attacks in real-time
  • Process payments and manage subscriptions
  • Send service notifications and security alerts
  • Improve our threat detection algorithms
  • Provide customer support
  • Comply with legal obligations

4. Data Sharing

We may share your information with:

  • Service Providers: Third parties who assist in operating our services (payment processors, cloud infrastructure)
  • Threat Intelligence Networks: Anonymized attack data may be shared with security partners to improve global threat detection
  • Legal Requirements: When required by law, subpoena, or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

5. Data Retention

  • Account data: Retained while your account is active and for 30 days after termination
  • Traffic metadata: Retained for 90 days for analysis and reporting
  • Attack logs: Retained for 1 year for security research and pattern analysis
  • Billing records: Retained as required by law (typically 7 years)

6. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS 1.3) and at rest (AES-256)
  • Multi-factor authentication
  • Regular security audits and penetration testing
  • Access controls and audit logging
  • SOC 2 Type II compliance

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data ("right to be forgotten")
  • Export your data in a portable format
  • Object to or restrict processing
  • Withdraw consent

To exercise these rights, contact us at privacy@vantyr.com.

8. International Transfers

Your data may be processed in countries where our infrastructure is located. We ensure appropriate safeguards are in place, including Standard Contractual Clauses for transfers outside your region.

9. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect information from children.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or through our Services.

11. Contact Us

For privacy-related inquiries:

  • Email: privacy@vantyr.com
  • For EU residents, you may also contact your local data protection authority.