Privacy Policy

1. What we do NOT collect

We do not track, store, or sell your browsing activity. We do not log the websites you visit, the content of your traffic, or your DNS queries as a matter of policy.

2. What we collect

To operate your subscription we keep: your email address (your billing identity and sign-in), order records (plan, amount, payment status), your generated VPN account identifiers, and — if you use our Telegram bot — your Telegram user ID so we can link your subscription.

Authentication cookies keep you signed in to your account page; a preference cookie remembers your light/dark theme choice. We do not use third-party advertising trackers.

3. Who processes data for us

Supabase hosts our customer database and sign-in (including Google sign-in if you choose it). CardLink processes payments — your card details go directly to them and never touch our servers. VPN infrastructure is operated with our upstream network partner under your generated account identifiers, not your personal identity. Telegram handles bot messages if you use that delivery channel.

4. Crypto payments

If you pay with cryptocurrency, no name or card is required — your email is the only identity we need to deliver the service.

5. Your rights

You can request a copy or deletion of your account data at any time by contacting info@oscarvpn.com from your registered email. Deleting your data ends any active subscription.

6. Changes

If this policy changes materially, we'll update this page and the 'last updated' date above.