FonProxy logoFonProxy
Sign InSign Up

Privacy Policy

How we collect, use, and protect your personal data.

Last updated: March 10, 2026

Effective date: March 10, 2026 Website: fonproxy.io Business name / trade name: FonProxy

1. Introduction

This Privacy Policy explains how we collect, use, store, disclose, and otherwise process personal data when you visit our website, create an account, place an order, contact us, use our proxy services, or interact with our payment providers and support channels.

We are a Ukraine-based service provider. Where applicable, we process personal data in accordance with the Law of Ukraine "On Personal Data Protection." When we offer services to individuals in the European Union, certain processing may also be subject to the General Data Protection Regulation (GDPR).

2. Who We Are

The data controller for the purposes of this Privacy Policy is FonProxy (fonproxy.io).

3. Data We Collect

We may collect and process the following categories of personal data:

3.1 Account and contact data

  • full name or username
  • email address
  • billing country
  • company name, if provided
  • phone number, if provided
  • support communication content

3.2 Transaction and payment data

  • order ID
  • product type
  • payment status
  • payment amount
  • currency
  • billing date
  • limited payment metadata provided by payment processors

We do not store full payment card details. Payments are processed by third-party payment providers such as monobank, WayForPay, Cryptomus, or their connected acquiring infrastructure, subject to their own terms and privacy practices.

3.3 Technical and service usage data

We may collect:

  • IP address used to connect to our systems
  • assigned outgoing IP or proxy endpoint
  • service package / tariff / plan
  • country of connection
  • destination domain or destination IP
  • timestamps
  • service status and authentication events

3.4 Logs

For abuse prevention, fraud detection, incident investigation, customer support, network stability, and compliance purposes, we keep certain connection and routing logs for 14 days. Those logs may include:

  • source IP
  • assigned outgoing IP
  • selected package
  • country from which the service is used
  • destination domain or destination IP

We do not claim that logs are never kept. They are retained for the limited period stated above and then deleted or anonymized where reasonably practicable.

4. Purposes of Processing

We process personal data to:

  • create and manage customer accounts
  • provide proxy services
  • verify orders and reduce fraud
  • process payments and refunds
  • communicate with customers
  • troubleshoot service issues
  • enforce our Terms and Acceptable Use Policy
  • detect spam, abusive traffic, unauthorized sharing, attacks, and other misuse
  • respond to legal requests, complaints, and disputes
  • protect our infrastructure, reputation, IP space, counterparties, and third parties

5. Legal Bases

Depending on the context, we rely on one or more of the following legal bases:

  • performance of a contract
  • compliance with legal obligations
  • legitimate interests, including network security, fraud prevention, abuse handling, service integrity, and recordkeeping
  • consent, where consent is specifically requested

If GDPR applies, legitimate interests and contract necessity may be relevant legal bases, while security of processing and controller/processor obligations remain important.

6. Sharing of Data

We may share personal data with:

  • payment providers and acquiring partners
  • hosting, infrastructure, security, analytics, and technical service providers
  • professional advisers
  • courts, regulators, law enforcement, government bodies, and authorized public authorities
  • complainants, injured third parties, or counterparties where reasonably necessary to investigate or address proven abuse, fraud, attacks, unlawful conduct, network misuse, or claims involving our IP resources or services

If we receive a complaint from a government authority or a sufficiently substantiated report from an affected website, service provider, network operator, abuse desk, or other proved side showing misuse of our services or IP space, we may disclose relevant customer and usage information to investigate the matter, mitigate harm, comply with legal obligations, defend rights, or resolve abuse complaints.

7. Abuse, Security, and Disclosure

We take reasonable technical and organizational measures to protect data and service security. We may monitor accounts, orders, sessions, and traffic metadata to detect:

  • DDoS or attack behavior
  • spam
  • phishing
  • malware activity
  • credential abuse
  • unauthorized reselling or credential sharing
  • sanctions or fraud risks
  • harmful or unlawful use of the services

Where misuse is confirmed or reasonably suspected, we may suspend service, preserve records, refuse refunds, and disclose relevant information to competent authorities or affected third parties.

8. International Transfers

Because we sell online and may serve international customers, personal data may be processed in countries outside the customer's home jurisdiction. Where GDPR applies, we will seek to use appropriate safeguards where required.

9. Retention

We keep personal data only as long as reasonably necessary for the purposes described in this Policy, including legal, accounting, dispute, fraud-prevention, and abuse-handling needs.

Unless a longer period is required or justified:

  • connection/service logs described above are retained for 14 days
  • support and billing records may be kept longer where needed for accounting, disputes, or legal compliance
  • blocked, suspicious, or abusive activity records may be retained longer where reasonably necessary to protect our legal interests or respond to complaints

10. Your Rights

Subject to applicable law, you may have rights to:

  • access your personal data
  • request correction
  • request deletion where legally appropriate
  • object to certain processing
  • request restriction of processing
  • withdraw consent where consent was used
  • lodge a complaint with a competent authority

If you are in the EU and GDPR applies, you may also have additional GDPR rights.

11. Cookies and Similar Technologies

We may use cookies or similar technologies for:

  • session management
  • security
  • fraud prevention
  • website functionality
  • analytics

A separate Cookie Notice may be published if needed.

12. Children

Our services are intended for persons who are legally able to enter into binding contracts under applicable law. We do not knowingly market proxy services to children.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version becomes effective when posted on the website, unless otherwise stated.

14. Contact

For privacy questions, complaints, or requests, contact us at webmaster@fonproxy.io.

Service Provider / Data Controller / Merchant
Privacy Policy β€” FonProxy