Privacy Policy

Last updated: June 2026

Our core principle

Torvad is committed to protecting your privacy in compliance with GDPR and applicable data protection regulations. We collect the minimum data required to operate our services.

What we collect

When you create an account, you receive a unique account number. Our privacy-focused infrastructure is designed to minimise the collection of personal data. We process data in accordance with GDPR principles of data minimisation and purpose limitation.

Account data

Your account data includes:

Payment data

We record the payment method type (e.g., "card") and the amount. For card and PayPal payments, the transaction is processed by third-party providers (Stripe, PayPal) who handle payment details directly.

Email service

Emails are stored encrypted at rest. Stored emails are permanently deleted 30 days after account expiration.

VPN service

We operate a WireGuard VPN with privacy-focused infrastructure. VPN servers use RAM-only mode for enhanced security. Data processing is limited to what is technically necessary for service delivery.

DNS service

Our secure DNS service processes queries with encryption (DoH/DoT). Data processing is limited to service delivery and infrastructure security.

Website

This website uses a session cookie to maintain your login state. We may use analytics to improve service quality.

Data sharing

We do not sell personal data to third parties. We may share data with law enforcement authorities when required by applicable law or valid legal process.

Data retention

Account data is retained for 30 days after expiration, then permanently deleted.

Your rights

Under GDPR, you have the right to access, rectify, or delete your personal data at any time. You may also request data portability or object to processing. To exercise your rights, contact us at the address below.

Contact

For privacy-related questions: privacy@torvad.eu