Legal

Privacy Policy

Effective Date: May 4, 2026  ·  Last Updated: May 20, 2026

Section 1

Introduction

Norex VPN ("Norex," "we," "our," or "us") is a virtual private network service operated by Akaco Technical Solutions LLC, a limited liability company organized under the laws of the United States. This Privacy Policy describes how we collect, use, store, and protect information relating to users ("you") of our website at norexvpn.com and our VPN service (collectively, the "Service").

By accessing or using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with its terms, please discontinue use of the Service.

We are committed to data minimization. We collect only what is necessary to operate the Service, and we do not log, monitor, or store your online activity.

Section 2

Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Full name
  • Email address
  • Password (stored as a salted hash — never in plaintext)
  • IP address at the time of registration (used for fraud and abuse prevention)

2.2 Billing Information

Payments are processed by Stripe, Inc. We do not receive or store your full payment card number, CVV, or bank account details. We retain only non-sensitive billing metadata such as the last four digits of your card, card brand, and transaction identifiers necessary to manage your subscription.

Payment Method Verification. When you activate a free trial, we perform a temporary $1.00 authorization hold on your payment method to verify that it is valid and active. This is not a charge — no funds are collected. The hold is released immediately upon verification and will disappear from your statement within 2–7 business days depending on your bank or card issuer.

Payment Method Fingerprinting. To enforce our one-trial-per-person policy and prevent fraudulent use of the Service, we store a tokenized fingerprint of your payment method provided by Stripe. This fingerprint cannot be used to reconstruct your card number and is used solely to detect and prevent duplicate trial registrations. We do not store full card numbers or CVCs.

2.3 Service and Technical Data

To provision and maintain your dedicated VPN server, we store your subscription tier and status, server assignment and configuration data, and account creation and renewal timestamps.

We do not collect or retain:

  • VPN connection logs
  • Browsing history or DNS query logs
  • Source or destination IP addresses during VPN use
  • Traffic content, volume, or metadata
  • Session duration or timestamps of individual VPN connections

2.4 Communications

If you contact our support team, we retain the contents of that correspondence to resolve your inquiry and improve our service.

2.5 Website Data

Our website uses a single session cookie to keep you authenticated. We do not use advertising cookies, third-party analytics scripts, or tracking pixels.

Section 3

No-Logging Policy

Norex VPN operates under a strict no-logging policy with respect to VPN activity. We do not log, monitor, record, or retain:

  • The websites, services, or IP addresses you access while connected to Norex VPN
  • DNS queries made through your VPN connection
  • The contents of your internet traffic
  • Connection timestamps or session durations tied to your account
  • Your originating IP address during VPN use

The only data we retain is what is described in Section 2 — account, billing, and configuration data necessary to provide the Service. Your internet activity while connected to Norex VPN remains private.

Section 4

How We Use Your Information

We use the information we collect solely to:

  • Create and manage your account
  • Provision and operate your dedicated VPN server
  • Process subscription payments and handle billing inquiries
  • Send transactional emails (e.g., account confirmation, payment receipts, renewal notices)
  • Detect and prevent fraudulent activity, abuse of trial offers, and violations of our Terms of Service
  • Respond to customer support inquiries
  • Comply with applicable legal obligations

We do not use your data for advertising, behavioral profiling, or sale to third parties under any circumstances.

Section 5

Data Sharing and Third Parties

We do not sell, rent, or trade your personal data. We share limited data only with the following third-party service providers, solely to the extent necessary to operate the Service:

  • Stripe, Inc. — Payment processing. Stripe processes your payment information under their own privacy policy, available at stripe.com/privacy. Stripe is certified as a PCI DSS Level 1 Service Provider.
  • Akamai Technologies / Linode — Cloud infrastructure. Your dedicated VPN server is hosted on Linode infrastructure operated by Akamai Technologies.
  • ZeptoMail by Zoho — Transactional email delivery. Only your email address and the content of the transactional message are transmitted to this service.

No other third parties have access to your personal data. We do not integrate third-party advertising networks, data brokers, or analytics platforms that track user behavior.

Section 6

Legal Requests and Law Enforcement

Norex VPN is operated in the United States and is subject to United States law, including lawful legal process such as court orders, subpoenas, and national security requests.

In the event we receive a legally binding request for user data, we will produce only the account and billing information described in Section 2. We will not produce VPN activity data, because we do not possess it. We will notify affected users of such requests where we are legally permitted to do so, and we will evaluate all requests for legal validity before complying.

Because we do not log VPN traffic, DNS queries, or connection activity, we are technically unable to produce such records even if compelled to do so.

Section 7

Data Retention

We retain your personal data for the following periods:

  • Account data (name, email, configuration) — retained for the duration of your active account, and deleted within 30 days of account closure upon request
  • Billing records — retained for up to 7 years as required by applicable tax and financial regulations
  • Support correspondence — retained for up to 2 years after the resolution of your inquiry
  • Fraud prevention data — retained for up to 12 months following account closure

You may request deletion of your account at any time. Upon verified request, we will delete all personal data not subject to legal retention requirements within 30 days.

Section 8

Security

We take reasonable and appropriate technical and organizational measures to protect your personal data, including:

  • Passwords hashed using PBKDF2-SHA256 with 600,000 iterations
  • All data transmitted over HTTPS using TLS 1.2 or higher
  • Session tokens cryptographically signed and validated server-side
  • Access to production systems restricted to authorized personnel only
  • Regular review of security practices and third-party integrations

In the event of a data breach that affects your personal data, we will notify you and applicable regulatory authorities as required by law.

Section 9

Your Rights

You may have the following rights with respect to your personal data:

  • Access — Request a copy of the personal data we hold about you
  • Correction — Request correction of inaccurate or incomplete data
  • Deletion — Request deletion of your account and associated personal data
  • Portability — Request an export of your personal data in a machine-readable format
  • Objection — Object to certain processing activities
  • Withdrawal of consent — Where processing is based on consent, withdraw that consent at any time

To exercise any of these rights, log in and visit Account Settings, or contact us at the email address in Section 11. We will respond to verified requests within 30 days.

Section 10

Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal data from minors. If you believe we have inadvertently collected data from a minor, please contact us immediately and we will delete it promptly.

Section 11

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the effective date at the top of this page and notify you by email where appropriate. Your continued use of the Service after the effective date constitutes acceptance of the revised policy.

Section 12

Contact

For privacy-related inquiries, data requests, or concerns, contact us at support@norexvpn.com. We aim to respond to all privacy inquiries within 5 business days.

Akaco Technical Solutions LLC
norexvpn.com

Terms of Service → ← Back to Norex VPN