Privacy Policy

Summary

We collect the minimum needed to run a VPN service: a Firebase account ID for authentication, peer registration data for the tunnel, and aggregate counters for the dashboard. We never log your browsing, DNS queries tied to your identity, or traffic content.

What we collect

Account data

A Firebase user ID (from Sign in with Apple or anonymous sign-in), email and display name if you choose to link an Apple ID. Used for authentication and syncing settings across devices.

VPN peer data

Your device's WireGuard public key, the IP address assigned by the server, and a policy type (parent / teen / kid / etc.). Required for the tunnel to function. Stored in a Postgres database on our infrastructure.

Aggregate counters

Counts of trackers, ads, and threats blocked per device, used to populate the dashboard. Stored as totals, not as individual events.

What we don't collect

• Browsing history or visited URLs
• DNS query logs tied to your identity
• Traffic content (encrypted end-to-end via WireGuard)
• IP addresses tied to browsing activity
• Family member messages, screenshots, or app activity

Third parties we use

Firebase (Google) for authentication and remote configuration. RevenueCat for subscription billing. Apple for App Store delivery and StoreKit payments. AdGuard Home on our own servers for DNS filtering. We do not share family safety data, browsing data, or device identifiers with advertisers.

Your rights (GDPR)

You can request access, correction, deletion, or export of your data at any time. Email privacy@gosenville.com. Account deletion is also available in-app under Profile → Sign Out → Delete Account.

Data retention

Account data is kept while your account is active. Peer registration data is deleted when you remove the device from the app. Aggregate counters reset on cancellation.

Contact

For any privacy question, email privacy@gosenville.com. For security disclosures, email security@gosenville.com.