Terms of Use:
By using bytewave™ services, you agree to these terms. Our services are provided "as is" for personal and business use. You are responsible for maintaining the security of your account credentials. We reserve the right to modify or discontinue services with notice. Prohibited activities include unauthorized access, malicious use, or violation of applicable laws. We are not liable for indirect damages. These terms are governed by applicable law.
Privacy Policy:
We collect minimal personal data necessary for service operation: email addresses for authentication, connection requests to VPN service, basic usage analytics to the minimal extent it is required for service operation. We do not sell, share, or monetize your personal information. Data is encrypted in transit and at rest. We retain data only as long as necessary for service provision or legal compliance. You have rights to access, correct, or delete your data. We may share data only when legally required. Our services are designed with privacy by default.
Cookies:
We use minimal cookies for essential functionality only. Session cookies authenticate users and maintain secure connections. We do not use advertising, tracking, or analytics cookies. No third-party cookies are used for marketing or data collection. Essential cookies include user authentication tokens and platform access sessions. You can disable cookies in your browser, though this may affect functionality. We do not profile users or track behavior across sites. All cookies expire when you close your browser or sign out.
Third-Party Services:
For payment processing, we integrate with Stripe, which may use cookies to detect and prevent fraud. For transactional email delivery, we use Mailgun. These third-party services are essential for service operation and are governed by their own privacy policies. We do not share customer data with any other third parties. We do not operate affiliate programs or participate in sponsorship ads on social media platforms.
Security Disclosures:
We welcome responsible security research and follow coordinated disclosure practices. To report vulnerabilities,
contact us
with steps to reproduce. We respond within 3 business days and work cooperatively toward resolution. We commit to 90-day disclosure timelines and provide credit to researchers, unless they prefer anonymity. We will not pursue legal action against good-faith security research. Please avoid accessing personal data, damaging systems, or disrupting services. We reserve the right to immediate disclosure if vulnerabilities are actively exploited.
Transparency Report:
We rigorously review every request for user data to safeguard your privacy and security while maintaining full compliance with legal requirements. As a global service, we must adhere to the laws of all jurisdictions where we operate, including every location where our servers and data centers are housed, not just where we're legally headquartered.
As of August 1, 2025 we have received no requests for user data by any external entity.