speakerNEW!iShredder iOS Enterprise is now available for Business users.Learn more

Declaration For VPNService of Android

Effective Date: October 08, 2024



Introduction

This Declaration outlines how Protectstar Inc. ("Protectstar", "we", "us", "our") utilizes Android’s VpnService the information we may collect when you use our products and services, and the choices available to you regarding the handling of that data. We also explain the measures we take to ensure the security of your information and how you can contact us with any questions or concerns about our privacy practices.

This Declaration specifically applies to the data collected when you download and use Protectstar apps that rely on the VpnService of Android, such as Firewall AI or DNSChanger, as well as any information gathered when these services are installed and operational on your device.

What is the Android's VPNService?

Android's VPNService (https://developer.android.com/reference/android/net/VpnService) s a foundational component that allows applications to create their own virtual private network (VPN) solutions. It provides a secure, device-level tunnel for data communication without requiring root access.

The VPNService sets up a virtual network interface on the device, manages IP addresses and routing, and provides the application with a file descriptor. This descriptor handles data packets by either reading outgoing packets routed through the virtual interface or writing incoming packets as though they came directly from the network.

Operating at the Internet Protocol (IP) level, each data packet is prefixed with IP headers, ensuring that all communication follows the proper protocol. The application processes these packets, routing them securely through a remote server across an encrypted tunnel, thus completing the VPN connection. This mechanism enables the app to manage network traffic securely and transparently.

How does the Firewall AI or DNSChanger app employ VPNService?

Our app uses VPNService to manage and secure network traffic directly on the device without needing a remote VPN server.

Its mode of operation can lead to one of two scenarios concerning your internet traffic:

  • When IP Filtering is Disabled: Any blocked internet traffic is routed into the local VPN service, effectively acting as a sinkhole that drops all blocked traffic.
  • When IP Filtering is Enabled: Both blocked and allowed internet traffic are routed into the local VPN service, but only allowed traffic is forwarded to the intended destination. No traffic is sent to a remote VPN server.

This functionality ensures local traffic management without root access, providing secure and transparent network filtering on your device.

Detailed Use Cases

While we do not collect or share personal data such as browsing history or domains accessed, our VPNService is essential for the following use cases:

  • Device Protection: Ensuring your device is protected from malware and other online threats by filtering malicious traffic.
  • Parental Control and Enterprise Management: Allowing administrators to monitor and control the device’s internet traffic without external VPN servers.
  • Network Performance Monitoring: We use anonymized and aggregated data about network performance to enhance app functionality. For example, we may collect diagnostic logs to monitor VPN connection stability or detect connectivity issues.

Our app does not redirect, alter, or manipulate user traffic from other apps for monetization purposes, in compliance with Google Play policies.

Why does we use Android's VPNService?

While we do not collect or share personal data such as browsing history or domains accessed, our VPNService is essential for the following use cases:

  • Device protection (anti-virus/malware and firewall features)
  • Manage traffic locally without external VPN servers.
  • Parental control and enterprise management

The VPNService is used in compliance with Google Play policies for device security and firewall functionality, without requiring a remote server. It is also employed for network performance monitoring and parental control/enterprise management as applicable

To illustrate this in action:
When the Firewall AI is activated, both 'blocked' and 'allowed' internet traffic are routed to the local VPN service. However, only the 'allowed' traffic is passed on to the intended destination, avoiding any traffic to a VPN server. This use of Android's VPN service lets us route all internet traffic to Firewall AI locally, circumventing the need for root access to establish this firewall application.

What data does our VPN service collect or share?

We do not collect personal information such as names, email addresses, or browsing history. However, for operational and diagnostic purposes, we may collect the following types of non-personal data:

  • Device and App Information: Includes app version, operating system version, device model, and manufacturer.
  • Network Diagnostics: Information about VPN connection quality, such as connection errors or performance metrics.

No identifiable personal data, including user browsing behavior or the websites visited, is collected or shared.

Firebase Messaging and Data Privacy

We use Firebase Messaging exclusively to send notifications and updates to your device to ensure you receive relevant messages and updates. No personal data or activity tracking occurs, so we do not collect personal or sensitive user data through Firebase Messaging.

No other Firebase services, such as Firebase Crashlytics, are used for collecting crash reports or personal data.

Data Collection Clarification

We do not collect any personal or sensitive data through our VPNService. Specifically, our apps do not collect or monitor browsing history, web traffic, or domains accessed through the VPN, even in an anonymized form. All network activity processed by the VPNService remains strictly on your device, and no information about your online activity is sent to external servers or third parties.

Who Do We Share Personal Data With?

We do NOT sell or share your personal data with third parties.

At present, none of our apps integrate third-party SDKs that collect or share personal or sensitive user data. If we decide to use any third-party SDKs in the future, we will ensure full compliance with Google Play's policies and will update this disclosure accordingly to provide details about the data collected and its purpose. Additionally, we will seek your explicit consent for any such integration.

Data Encryption

All data transmitted between the device and the VPN service is encrypted using AES-256 encryption, ensuring secure communication over the network. This encryption guarantees that even when data is processed locally, it remains protected from unauthorized access.

User Consent and Prominent Disclosure

In compliance with Google Play’s User Data policy, we provide a prominent disclosure within the app, explaining our use of VPNService and the types of data collected, if any. Before activating VPN functionality, we will seek your explicit consent to use VPNService through a clear in-app prompt. No VPNService operations begin until consent is granted.

User Opt-Out Options

You can manage the VPN functionality directly within the app settings:

  • Pause or Disable VPNService: If you do not want the VPN functionality to be active, you can easily pause or disable it in the app settings.
  • Uninstall the App: If you prefer to completely stop the VPNService from running, uninstalling the app will ensure no data collection or VPN operation continues.

Additionally, you can revoke consent for VPNService usage at any time by disabling the feature within the app.

Compliance with Google Play Policies

We adhere to all Google Play Developer Program Policies, including those related to ad fraud, permissions, and malware. Our apps also comply with the requirement to encrypt all data transmitted from the device to the VPN endpoint. You can find details of our VPNService usage in our Google Play Store listing.

What Choices Do You Have About Your Personal Data?

We respect your right to control your Personal Data. Here's how you can manage your information:

  1. Registered Users of Protectstar Apps:

    • Access and Correction: If you have registered a Protectstar app through MY.PROTECTSTAR at https://my.protectstar.com. You can access, and correct the Personal Data in your profile anytime by visiting your MY.PROTECTSTAR account.
    • Privacy Policy: You can find the specific Privacy Policy for your MY.PROTECTSTAR account at https://my.protectstar.com/app/privacy-policy

  2. Unregistered Users with Installed Protectstar Products:

    • Stop Data Collection: If you haven't registered a Protectstar app but have one installed on your device, you maystop Protectstar's collection of Personal Data from your device byuninstalling that product.

Changes to this VPNService Declaration

We may update this Declaration to reflect new features, legal requirements, or policy changes. Any significant updates will be posted at https://www.protectstar.com/en/vpnservice-disclosure and highlighted within the app to keep you informed.

How to Contact Us

If you have any questions or comments about this Disclosure, or if you would like us to update or remove information or preferences you provided to us, please may contact us at:

Protectstar Inc.
4281 Express Lane, Suite L3604
Sarasota, FL 34249, USA
E-Mail: