InvisibleVPNBack to home

Privacy Policy

Last updated 5/29/2026

1. Introduction

This Privacy Policy explains how InvisibleVPN (“we”, “us”, “our”) collects, uses, stores, and shares information when you use:

  • The InvisibleVPN mobile application (Android/iOS)
  • Our website at invisiblevpn.net
  • Related services such as account management, VPN connectivity, rewards, and subscriptions

By using our services, you agree to this Privacy Policy.

2. Information We Collect

2.1 Account and Profile Information

When you create or manage an account, we may collect:

  • Email address

  • Password (stored as a hashed value on our servers)

  • Optional profile details:

    • Full name
    • Nickname
    • Date of birth
    • Phone number
    • Gender
    • Country code

  • Profile photo (uploaded to our image hosting provider; URL stored on your account)

  • Email verification status

  • Reward points balance and premium entitlement status

2.2 Authentication Information

We support:

  • Email and password registration with email OTP verification
  • Email/password or PIN login
  • Google Sign-In (via Firebase Authentication); we store your Google provider identifier linked to your account
  • Biometric unlock (fingerprint/face) — processed on your device; we only store whether you enabled biometric login
  • JWT access and refresh tokens for session management

For convenience, the app may store login credentials (email, PIN, or password) locally on your device in encrypted secure storage if you enable features such as “Remember me” or biometric login.

2.3 Device Information

When you register or sign in, we collect:

  • Device identifier (e.g., Android device ID or iOS vendor identifier)
  • Device type (Android/iOS)
  • Device name/model
  • Firebase Cloud Messaging (FCM) token for push notifications

We do not collect precise GPS location from your device.

2.4 VPN and Connection Data

When you use the VPN, we collect connection and service metadata, including:

  • Selected VPN server and connection status
  • WireGuard public key (private key remains on your device)
  • Assigned VPN IP address
  • Connection and disconnection timestamps
  • Session upload/download data totals (bandwidth usage)
  • Connection logs such as server name, assigned IP, and endpoint information

We do not monitor, log, or store the content of your browsing activity (such as websites visited, DNS queries, or application traffic contents). Our in-app consent also states that we do not store personal browsing activity.

2.5 Speed Test Data

If you use the speed test feature, we may store:

  • Ping
  • Jitter
  • Packet loss
  • Download/upload speeds
  • Whether the test was run before or after VPN connection
  • Server used and test timestamp

2.6 Rewards, Games, and Spin Wheel

If you participate in rewards features, we may store:

  • Points earned and redeemed
  • Game session identifiers and scores
  • Spin wheel results and daily spin usage
  • Reward transaction history

2.7 Purchases and Subscriptions

For premium subscriptions (Google Play on Android):

  • Product ID
  • Purchase token
  • Subscription state
  • Expiry time
  • Google Play obfuscated account identifier
  • Raw purchase verification payload from Google

We do not receive or store your full payment card details; payments are processed by Google Play.

2.8 Push Notifications

If you enable notifications, we use Firebase Cloud Messaging to send:

  • Service alerts (e.g., account or VPN-related messages)
  • Promotional or marketing notifications (if enabled)

You can enable notifications in the app; disabling them must be done through your device Settings.

2.9 Advertising

The mobile app displays advertisements through Google Mobile Ads (AdMob). Google may collect device and advertising identifiers according to its own policies.

2.10 Support and Communications

If you contact us at [email protected], we receive the information you provide in your message.

2.11 Website Newsletter (Website Only)

If you subscribe to our newsletter on the website, we collect your email address after OTP verification. This flow is separate from the mobile app account.

3. How We Use Your Information

We use collected information to:

  • Create and manage your account
  • Provide VPN connectivity and server selection
  • Authenticate you and maintain secure sessions
  • Send push notifications you have opted into
  • Process subscriptions and premium entitlements
  • Operate rewards, games, and points redemption
  • Display connection history, logs, and speed test results in the app
  • Monitor server health and metrics
  • Improve our services and prevent abuse
  • Comply with legal obligations

4. Local Storage on Your Device

The app stores sensitive data locally using secure storage, including:

  • Access and refresh tokens
  • VPN private keys
  • Theme and app preferences
  • Cached notifications, logs, history, and speed test results
  • Optional saved login credentials

5. How We Share Information

We may share information with the following service providers and infrastructure partners:

  • Firebase (Google) — Authentication and push messaging
  • Google Play — In-app subscription billing
  • Google AdMob — Advertising services
  • Cloudinary — Profile image hosting
  • VPN server infrastructure providers — Delivering VPN connectivity

We do not sell your personal information.

We may disclose information if required by law or to protect our rights, users, or the public.

6. Data Retention

  • Account data is retained while your account is active.
  • VPN session history and connection logs are retained to provide in-app History and Logs features; you can delete logs from within the app.
  • Connection log entries per user are capped (approximately 100 recent entries).
  • Subscription and purchase records are retained as needed for billing and entitlement management.

7. Security

We use industry-standard measures including:

  • Encrypted VPN tunnels (WireGuard)
  • Hashed passwords and PINs on the server
  • Secure token-based authentication
  • Encrypted local storage on your device

No method of transmission or storage is 100% secure.

8. Your Choices and Rights

You can:

  • Update profile information in the app
  • Enable or disable push notifications (disable via device Settings)
  • Manage premium subscriptions via Google Play
  • Delete VPN logs from the Logs section in the app
  • Log out to clear local session data on your device
  • Contact us at [email protected] for privacy requests

Account Deletion

A self-service account deletion feature may not yet be available in the app. Contact us to request account deletion.

9. Children’s Privacy

InvisibleVPN is not intended for children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect data from children.

10. International Data Transfers

Your information may be processed on servers located in different countries where our VPN infrastructure and service providers operate.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated version at:

https://invisiblevpn.net/privacy

Continued use after changes constitutes acceptance.

12. Contact Us