Privacy Policy

Effective Date: 1st March 2024
Last Updated: 15th July 2025

EcoVPN operates with a strict privacy-first approach. Our infrastructure is engineered to minimise metadata leakage and suppress unnecessary traceability. This policy outlines how we handle information during VPN usage and site interactions.

1. Information We Collect

  • Account Data: Name, email address, access tier, and configuration metadata.
  • Network Logs: Minimal logs retained only for operational integrity (e.g. configuration expiration).
  • Node Diagnostics: Connection timestamps and device identifier hashes, anonymised by default.
  • No Browsing Logs: EcoVPN does not log websites visited, DNS queries, or traffic contents.

2. Use of Information

  • Provision configuration files and access credentials.
  • Enforce time-limited and usage-aware node access.
  • Maintain security and network performance.
  • Notify clients of dark web alerts or breach detections (if enabled).

3. Storage & Retention

  • Data stored in UK/EU jurisdictions aligned with organisational routing choices.
  • Logs auto-purged on defined cycles. No indefinite retention.

4. Disclosure

  • No sale or sharing of data with third parties.
  • Disclosure only if legally required within jurisdictional constraints.

5. Network Monitoring & Egress Management

  • EcoVPN implements selective outbound (egress) monitoring to ensure infrastructure integrity and prevent abuse.
  • Proxy-based routing may be used to filter unauthorised destinations and detect command & control signatures.
  • TLS inspection may be enabled for standard clients to provide threat detection and traffic validation; however, it is disabled for organisations operating in legal, financial, or confidential sectors unless explicitly approved.
  • Alerting systems flag unusual activity or outbound node misuse, including rate anomalies or jurisdictional violations.
  • Node-level configurations are provisioned based on declared use case and sensitivity profile at setup.

6. DNS Security & Encryption

  • EcoVPN enforces encrypted DNS resolution to prevent metadata leakage via unprotected queries.
  • All DNS requests are routed through the secure VPN tunnel using private resolvers; public DNS traffic is blocked by default.
  • No DNS logs are retained. DNS visibility is limited to session metadata necessary for diagnostics or abuse prevention.
  • For organisations requiring custom DNS infrastructure, isolated resolvers can be provisioned with jurisdictional alignment.

7. Cookies & Website Analytics

  • Our site uses minimal, non-identifying cookies for session persistence.
  • No third-party analytics or tracking scripts are active.

8. Your Rights

  • Request access, deletion, or correction of your stored data.
  • Withdraw from services at any time.

9. Operational Entity & Jurisdictional Registration

EcoVPN operates as an independent infrastructure entity under the umbrella of The Webhosting Group constellation. While EcoVPN benefits from the green node stack deployed by GreenWebHosting.co.uk, it maintains separate operational logic, referral protocols, and encrypted access tiers. The Webhosting Group does not provide direct support or correspondence regarding EcoVPN infrastructure or accounts. All operational requests are managed exclusively through EcoVPN’s authenticated Admin Portal.