Privacy Policy
1. Who we are
SOLARA VPN ("we", "us") is operated by Triple Seven Solutions, a Florida-based business.
- Mailing address: 2083 SW 72nd Ave, Davie, FL 33317, USA
- Privacy contact: [email protected]
- Abuse contact: [email protected]
2. What this policy covers
This policy explains what we do — and do not do — with information that flows through the SOLARA VPN apps for iOS, iPadOS, and macOS, our Safari extension, this website, and the VPN servers that those apps connect to.
3. What we do not collect
We do not log, store, or sell:
- Your real IP address
- The IP addresses, hostnames, or URLs of the sites you visit through the VPN
- The DNS queries your device makes
- Your browsing history, search history, or activity content
- Bandwidth or session timestamps tied to your identity
- Any device identifier (UDID, IDFA, Apple ID, push token) for the purpose of user tracking
This is enforced technically: our VPN servers do not run any connection logging, our DNS resolvers do not retain query logs, and our control plane never sees the destination of any user traffic.
4. What we do collect
To operate the service and process payments, we collect:
| Data | Why | Retention |
|---|---|---|
| Apple App Store subscription receipt hash | To verify you have a valid paid subscription | Until 30 days after subscription cancellation |
| Your device's WireGuard public key | To authorize your device on our VPN servers (never the private key) | Until you uninstall or rotate |
| Email address (only if you contact support) | To respond to your message | 12 months after the last reply |
| Anonymous crash reports (only if you opt in) | To fix bugs | 90 days |
| Aggregate server metrics (CPU, total bandwidth) | Capacity planning | 12 months, never per-user |
We do not assign you a username, account number, or persistent identifier linkable to your real identity.
5. URL parameter cleaning
When you have the Safari extension enabled, your browser removes tracking parameters (utm_*, gclid, fbclid, etc.) from URLs locally on your device before the request is sent. The list of parameters is hardcoded in the extension. No URL or query string is ever transmitted to SOLARA VPN servers for this feature.
6. Third parties
We use the following third-party services. None of them receive your browsing content:
- Apple — for App Store distribution, StoreKit subscription receipts, and push notifications. Governed by Apple's privacy policy.
- Cloudflare Workers + D1 — hosts our control-plane API (handles subscription verification and WireGuard public-key registration). Governed by Cloudflare's privacy policy.
We do not use Google Analytics, Facebook Pixel, or any advertising SDKs.
7. Where your data is processed
- VPN server traffic: routed by the server you selected. The traffic is end-to-end encrypted between your device and the server.
- Control-plane API: Cloudflare's global edge, with primary D1 region in North America.
- Customer support email: stored in our private mail server.
If you are located in the EU, UK, or California, you have the right to request, correct, export, or delete the limited account-linkage data we hold. Email [email protected].
8. Government and law-enforcement requests
We respond to valid legal process. Because we do not log user activity, we have nothing to produce for requests asking "what did this user do." For account-linkage data, we will require a subpoena or equivalent valid order under U.S. law before disclosing.
We publish a yearly transparency report at /transparency.
9. Children
SOLARA VPN is not directed to children under 13 and we do not knowingly collect any information from them. If you believe we have, email [email protected] and we will delete it.
10. Changes to this policy
If we change this policy, we will update the date at the top and post the new version. Material changes will be announced in-app at least 30 days before they take effect.
11. Contact
[email protected] — for privacy questions or requests.
[email protected] — for abuse reports.