Last updated: June 25, 2026
Privacy Policy
WangYuYun treats user privacy as its highest core value. We solemnly commit to and operate under a Strict No-Log Policy: we do not record, store, or share any of your network activity data. This policy details what we do and do not collect, how we use and share it, the rights you have, and how we describe our data practices on the App Store and Google Play.
1. Strict No-Log Policy
We understand that you use WangYuYun to protect your personal network security and privacy. Therefore, when you connect and use our core VPN service, we will absolutely never collect, record, store, or share any of your network activity data.
Once you connect to our servers, all your activity on the network is completely invisible and untraceable to us. Even if we are subject to external compulsory requests, we cannot provide data that does not exist.
This commitment applies to all VPN nodes, clients, and infrastructure provided by WangYuYun.
2. VPN and Network Activity
WangYuYun is a VPN app. It establishes an encrypted connection using Apple's Network Extension (packet tunnel) on iOS / macOS, the system VpnService on Android, and a local VPN engine on desktop.
We strictly do not log your browsing history, the websites you visit, your DNS queries, the contents of your traffic, or the destinations of individual connections. The VPN permission granted by the system is used only to establish the encrypted tunnel itself, not to read your online activity.
We never sell, rent, or share your VPN traffic contents or browsing activity with any third party, and we never use them for advertising or user profiling.
3. Data We DO NOT Collect
No traffic logs: We never log your browsing history, visited websites, downloaded files, or apps you use.
No IP address records: We never record your originating IP address, nor the IP address of the VPN server you connect to.
No DNS query records: We never log your DNS resolution requests.
No connection timestamps or bandwidth logs: We never record the exact time you connect, the time you disconnect, or the specific bytes of traffic consumed.
No communication content: We never inspect, cache, or read any payload you transmit through the VPN.
4. Data We DO Collect (Minimum Necessary)
To keep the app running, provide customer support, and handle subscription issues, we only collect the following minimum information that is completely unrelated to your network traffic:
Account information: only your registered email (or identifying fields returned by Apple / Google sign-in) and the encrypted hash of your password.
App diagnostics (fully anonymous): client version, OS version, and platform, used for compatibility and troubleshooting — with no link to your VPN activity.
Subscription state: only your current tier, expiry, and remaining traffic quota, used to decide whether connection quotas apply.
Device binding: a minimal device identifier and binding state, used to prevent abuse and enforce the concurrent-device limit.
App and connection diagnostics: client version, OS version, and platform, plus basic usage signals such as an app-open event, used for compatibility, update targeting, and first-party product metrics like daily active users.
Aggregate connection counters: the VPN extension measures only aggregate values — total upload bytes, total download bytes, the count of currently active connections, and the extension's own memory usage — for diagnostics and traffic-quota reconciliation (not for billing). These numbers do not contain, and cannot be used to reconstruct, the websites you visit, destinations, DNS, or any traffic content.
Push token: if you enable notifications, we store the push token used to deliver them (APNs on iOS, FCM on Android).
Server-side security logs: our server records the request IP address and User-Agent of your calls to our backend API, used only for security, abuse prevention, and rate-limiting, plus coarse region statistics via an offline IP database. This does not conflict with the "no IP records" statement in Section 3 — that refers to your VPN traffic, which we never log, whereas this is a standard security log of the control-plane API and is not linked to your browsing.
5. In-App Purchases
When you buy a subscription through the Apple App Store or Google Play, the payment is processed by Apple or Google. We never receive your card number, payment password, or any complete financial information.
To activate and maintain your subscription, we process purchase receipts returned by the store — such as the transaction ID / original transaction ID, Google Play purchase token, product ID, and purchase and expiry times — and we verify these with Apple / Google.
This purchase data is used only for entitlement, subscription sync, fraud prevention, and support, and never for advertising tracking.
6. Payment Data
For purchases on the website or in-site channels, actual payment is handled by third-party channels such as Alipay and WeChat Pay. We never collect, process, or store your credit-card number, payment password, or any financial data.
We retain only the order ID, plan tier, and payment time required for entitlement activation and invoicing compliance.
7. Data Sharing and Third Parties
Because we do not collect your individual network activity logs in the first place, we never sell user data. We have no traffic-monitoring data to share with advertisers, analytics companies, or any third party.
To operate basic services, we share minimum necessary information with: email delivery providers (registration codes), payment and in-app purchase channels (order and receipt sync, including Apple, Google, Alipay, WeChat Pay), app-store identity providers (Apple Sign-In, Google Sign-In), CDN, and cloud infrastructure. These providers may only handle that information as needed to serve us.
We do not share any of your information with ad networks or data brokers.
Where data is stored: the operational data above (account, device, subscription, diagnostics, and security logs) is stored entirely on infrastructure we own and control (a self-hosted PostgreSQL database and Redis). We do not use any third-party data warehouse or data-broker service.
We do not integrate any third-party tracking SDK for our own advertising or analytics; the functional third-party components we use (Apple / Google push, Apple / Google Sign-In, App Store / Play purchase verification, and GeeTest human verification) each process, under their own privacy policies, only the minimum data needed to perform that function (for example, Google Sign-In processes your name / email, and GeeTest processes device identifiers and interaction signals). We do not use them for advertising or cross-app tracking.
Where a law or judicial process compels us, we may disclose necessary information; but even then, we cannot provide traffic logs, IP records, or DNS queries that we do not hold.
8. App Store and Google Play Data Disclosure
To stay consistent with Apple's "App Privacy" questionnaire and Google Play's "Data safety" section, we disclose the data types the app collects: email address, user ID, purchase history, device ID, and diagnostics (crash / performance).
All of this is used only for "App Functionality," "Authentication," and "Analytics (de-identified)" purposes, is linked to your identity, but is never used for cross-app or cross-site "Tracking."
Data used to track you: None. We do not perform advertising tracking and do not serve targeted ads.
9. Cookies and Local Storage
We use only necessary cookies and browser local storage on the website to keep you signed in and to remember language, theme, and cookie-consent preferences.
These items are stored only on your own device — our servers do not read their content.
You can clear cookies and local storage at any time in your browser settings; the cookie banner will reappear next time you visit.
We do not use any third-party tracking cookies, and we do not serve targeted ads.
10. Data Retention and Deletion
Active account information is retained for as long as you use the service.
Expired codes, invalid sessions, and temporary tokens are cleared automatically (usually within 24 hours to 30 days).
Order, purchase-receipt, and invoice records are kept for 3–5 years to satisfy financial and compliance obligations.
You can start account deletion in the client at More → Account Profile; after closure, we delete or anonymize most account information within 30 business days, and residual data in backups may take up to 90 days to rotate out naturally.
11. Your Rights
Access — request the personal information we hold about you via a ticket.
Correction — update your email, display name, and avatar in the account center.
Deletion — request account closure; we follow the process above to delete your data.
Portability — request a copy of portable data including account, subscription, device, and ticket history.
Withdrawal of consent — withdraw consent to optional items such as push and email notifications; withdrawal does not affect prior processing.
Opt-out of sale — we never sell your personal information, so you are protected without any extra action.
Exercise these rights through the in-client ticket system or the email at the bottom of this page; support responds within 7 business days.
12. Regional Privacy Rights (GDPR / CCPA)
If you are in the European Economic Area (EEA), the UK, or Switzerland: our legal bases for processing include performance of the service contract, compliance with legal obligations, and our legitimate interests in account security and fraud prevention. You have GDPR rights to access, rectify, erase, restrict, port, and object to processing, and you may lodge a complaint with your local data-protection authority.
If you are a California resident: you have rights under the CCPA / CPRA to know, access, delete, correct, and opt out of the "sale / sharing" of personal information. We do not sell your personal information, and exercising your rights will not result in discriminatory treatment.
13. Data Security
We protect account and service data with access controls, least privilege, password hashing, session invalidation, log auditing, rate limits, and end-to-end encrypted transport.
Employees access the minimum necessary data on a need-to-know basis, and every access is audited.
If a security event might affect your rights, we will inform you within 72 hours through in-app messages or push, as required by law.
No internet service can be absolutely secure. We recommend using a strong password, not reusing it across services, and reviewing your authorized devices periodically.
14. Cross-Border Data Transfers
To provide low-latency global internet access, some of our infrastructure (nodes, CDN, monitoring) is located outside mainland China.
All cross-border transfers always use TLS 1.3 end-to-end encryption and follow the same level of security controls as our domestic systems.
We do not provide your account information to foreign governments or judicial bodies unless explicitly required under the applicable laws of China.
15. Protection of Minors
The service is intended for adults aged 18 and over and the app is not directed to children. We do not knowingly collect personal information from children under 14 (or below the corresponding age threshold in other jurisdictions).
If you discover a minor using the service without guardian consent, please notify us via the email below or through a ticket; we will suspend the account and delete the related data immediately.
16. Policy Updates
This policy may be updated due to service adjustments, legal changes, or community feedback. We will display prominent notice of material updates on the site, by email, or in the clients.
The "Last updated" date at the top reflects the current effective version. Continuing to use the service is taken as acceptance of the updated terms.
17. Contact Us
If you have any questions about our No-Log Policy or how we handle privacy, please contact us through the following channels:
Email: [email protected]
Website: https://wangyuyun.dev
In-app: open More → Tickets and select the "Privacy & Data" category. We respond to privacy requests within 7 business days.