Privacy Policy
Effective date: 1 March 2026 Controller: Route6, Croatia
What we collect
| Data | Purpose | Retention |
|---|---|---|
| Email address | Account identification, transactional email | Duration of account |
| Password hash (bcrypt) | Authentication | Duration of account |
| WireGuard public key | Tunnel provisioning | Duration of account |
| Stripe customer ID | Billing | 7 years (tax records) |
| Traffic counters (bytes in/out) | Bandwidth enforcement (free tier) | 90 days rolling |
| IP addresses in logs | Security, abuse prevention | 30 days |
What we do not collect
- We do not inspect the content of traffic passing through WireGuard tunnels.
- We do not sell, rent, or share your data with third parties for marketing purposes.
- We do not use cookies for tracking beyond session authentication.
Payment data
Payment details (card numbers, bank accounts) are processed entirely by Stripe. Route6 stores only the Stripe customer ID and subscription status.
GDPR rights
If you are in the EU/EEA, you have the right to:
- Access your data — email privacy@route6.me
- Rectification — update your profile in the dashboard
- Erasure — delete your account in Dashboard → Profile → Danger Zone
- Portability — export your data in Dashboard → Profile
Data transfers
We are incorporated in Croatia (EU member state) — Data is processed in the EU.
Contact
Privacy questions: privacy@route6.me