Skip to content
Legal

Privacy Policy

Last updated

1. Who we are

Controller: SquadProxy Ltd. ("SquadProxy"), Spaces Shoreditch, 25 Luke Street, London EC2A 4DS, United Kingdom. Contact: privacy@squadproxy.com.

2. What we collect

From customers

Account identifiers (email, organisation name), billing information (via Card2Crypto for card payments and on-chain transaction references for native crypto — we do not store card numbers), technical metadata (API usage, request counts, IP address of the session origin).

From proxy network peers

Peers who opt in to share bandwidth in exchange for a free product tier or revenue share grant us a narrow licence to relay traffic through their connection. We collect: a pseudonymous peer identifier, connection metadata (ASN, approximate geo-location), and uptime statistics.

3. Lawful basis

For customer data, our lawful basis is performance of the contract under Art. 6(1)(b) UK-GDPR. For peer data, it is the consent recorded in the peer app's onboarding flow under Art. 6(1)(a) UK-GDPR.

4. What we do not collect

We do not intercept, decrypt, or log the payloads of customer traffic relayed through the gateway. Metadata necessary for routing and billing is retained separately from payload data, which is never stored.

5. Sharing and processors

We use the following sub-processors: Card2Crypto (card-to-crypto payment processing), AWS and Google Cloud (infrastructure), Plausible or Google Analytics (website analytics, if enabled on your deployment), and Telegram (support-message delivery via bot API). Transactional email is not sent as of this policy date; if we add an email sub-processor later we will update this page and notify affected customers. Native-crypto settlements (USDT ERC-20, BTC) are on-chain and do not involve a sub-processor.

6. Retention

Account data: duration of the contract plus 6 years for tax records. Request metadata: 90 days. Peer metadata: duration of participation plus 12 months.

7. International transfers

We operate infrastructure in the EU, the UK, the US, and selected APAC regions (JP, SG, KR, AU). Transfers outside the UK or EEA are protected by the UK IDTA or the EU Standard Contractual Clauses. A copy is available on request.

8. Your rights

You have the right to access, correct, port, delete, restrict, or object to the processing of your personal data. Exercise these by emailing privacy@squadproxy.com. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the UK or your local supervisory authority.

9. Changes

We update this policy when our processing changes. The date at the top of this page is authoritative.