Privacy Policy
Last updated on 01.01.20241. When You Visit Our Website
We do not use any 3rd party tracking or analytics services, so your activity on this website stays with us (and your ISP). We use open source Piwik web analytics platform to measure usage on our website, which is hosted on our servers. Piwik is used to analyze and aggregate information about our website visitors. When your web browser loads a page on our site, a small snippet of JavaScript code is executed within your browser which submits information such as your browser user-agent, language, screen resolution, referring website, and a subset of your IP address (first 3 octets).2. When You Sign Up
We store the email address associated with your account and the date of registration. When you pay for a premium account, we store the transaction ID of your payment so we can track it down for refund purpose or fraud mitigation.3. When You Use Our Service
When you use ControlD, we keep the following data associated with your account:
- Timestamp of your last activity in the dashboard or apps
- Your source IP address which is required to make ControlD work
3.1 Source IP Storage JustificationUnlike a VPN, ControlD operates at the DNS layer, which means there is no way for you to supply your authentication credentials along with the request. In order for the DNS server to know who you are, so it can apply the correct rules, the only anchor we have is the source IP the request came from. This requirement is mitigated if you're using DNS-over-HTTPS or DNS-over-TLS resolvers. However, your source IP is still needed when communicating with our transparent proxies as it must be known to our firewall so access can be granted.
3.2 Privacy ImplicationsEven though we store the IP address associated with each account, the threat to user privacy is very limited. Typically, 3rd parties will supply a timestamp + IP address when requesting user data. The IP address will be that of the proxy that was used at the time (if one was using a proxy). At any given moment, there are hundreds or thousands of people that could be sharing the same IP address. Since ControlD does not keep logs of which proxy server IPs were used by which user, nor do we even have access to this data, we have no way to trace any activity to any individual account.