Scope
This policy applies to GetRemma website pages, account registration, authentication, support contact forms, and webmail access surfaces provided under getremma.com.
Data we collect
We collect only information required to provide and secure the service, including:
- Account data such as mailbox email, recovery email, password hash, and verification status.
- Technical security data such as IP address, user agent, timestamps, and request logs.
- Support data that you submit through contact or recovery forms.
VPN and device access
This section applies to GetRemma VPN, VPN subscriptions, device provisioning, connection links, Telegram bot actions related to VPN, and the dashboard or webmail surfaces used to manage VPN access.
When you use GetRemma VPN, we may process your mailbox login and workspace association, subscription and entitlement state, VPN device records, selected locations, configuration link events, activation timestamps, and limited operational or security logs required to keep the service available, prevent abuse, investigate incidents, and enforce service limits.
We do not log the content of your internet traffic. We do not log the websites you browse, the pages you visit, the messages you send, or the content of your communications while using GetRemma VPN. We do not use VPN traffic data for advertising, profiling, or analytics about your browsing activity.
We do not sell VPN-related personal data. We do not use VPN-related personal data for advertising, and we do not use it to build marketing profiles.
If you connect Telegram to your GetRemma account, we may process your Telegram user ID, Telegram username, chat ID, and one-time linking metadata. Telegram linking is performed only through a secure one-time connection flow initiated from your GetRemma account surfaces.
VPN-related data is processed in order to authenticate you, determine access rights, activate trials, subscriptions, promo codes, and paid add-ons, create and revoke VPN devices and connection links, maintain platform security, and improve service reliability.
VPN-related account and device records are retained for as long as needed to provide the service, comply with legal obligations, resolve disputes, and enforce our agreements. Technical and security logs are retained only for the period reasonably necessary for security, abuse prevention, troubleshooting, and operational integrity.
How we use data
Data is used for service delivery and security operations. Typical uses include:
- Account creation, login, verification, password reset, and mailbox provisioning.
- Abuse prevention, fraud detection, and rate-limiting enforcement.
- Responding to support requests and service communications.
- Improving reliability, troubleshooting incidents, and maintaining platform quality.
Data sharing
We do not sell personal data. We may share limited data with infrastructure and processing providers strictly as needed to run email, security, and support operations. We may disclose data when required by applicable law.
Retention
Account-related data is retained while your account is active and as required for security, legal obligations, dispute resolution, and fraud prevention. Support messages are retained only as long as needed to resolve your request and maintain service records.
Security
We use technical and organizational safeguards, including encrypted transport, authentication controls, session protections, and access restrictions designed to reduce unauthorized access and misuse.
Your rights and choices
Depending on your jurisdiction, you may request access, correction, or deletion of personal data, object to certain processing, or request data portability. We review and process requests in line with applicable legal requirements.
Contact
For privacy requests or questions, contact us at support@getremma.com.