Privacy Policy

Effective Date: 03.01.2026
Last Updated: 03.01.2026

Introduction

This Privacy Policy explains how Senocom Ltd, a company incorporated in the Republic of Cyprus (“Senocom”, “we”, “us”, “our”), processes personal data and other information when you use our website, applications, and VPN services (the “Service”). Senocom Ltd acts as the data controller for personal data processed under this Privacy Policy. Our registered office is Cyprus, Limassol, Kapsalion 4, 4044, Cyprus, and our registration number is HE468429.

We built BLUR VPN with privacy as a core principle and applied privacy-by-design and data minimization principles to limit personal data processing. This Privacy Policy describes what information we process, why we process it, how long we retain it, and what rights you have under applicable law. This Privacy Policy should be read together with our Terms of Use. In the event of any conflict relating to data processing, this Privacy Policy prevails.

Scope of This Policy

This Privacy Policy applies only to personal data and information processed by Senocom in connection with the Service and our official website and applications. It does not apply to third-party websites, services, applications, or content that you may access through the internet, including through the VPN, or via links from our website or apps. Those third parties process personal data under their own policies and practices, and you should review their privacy policies before interacting with them.

App stores, operating system providers, device manufacturers, hosting providers, and other platform operators may independently collect or process information under their own privacy policies when you download, install, or use the Service. We are not responsible for the privacy practices of such third parties.

By using the Service, you acknowledge that you have read and understood this Privacy Policy. If you do not agree, you should not use the Service.

Our Approach to Privacy

The Service is designed to enhance user privacy and to minimize personal data processing. We do not inspect or monitor the contents of your communications transmitted through the VPN tunnel. We do not build behavioral profiles based on your VPN browsing activity. We do not sell personal data.

As a matter of service design and policy, we do not maintain logs of VPN browsing history, traffic destinations, DNS queries, or the content of communications for the purpose of tracking users, profiling them, or associating their identity with specific online activity conducted through the VPN.

Technical Operation of the VPN

To establish and maintain a VPN connection, certain technical information must be processed during an active session. This includes network routing information and connection metadata necessary for the Service to function. During the establishment of a VPN session, source IP addresses and related network identifiers are necessarily processed transiently to enable connectivity and route traffic.

In the normal technical operation of a VPN, limited connection-related data may exist transiently in volatile memory. In certain circumstances, short-lived operational records may exist for purposes such as maintaining system stability, preventing abuse, detecting security incidents, mitigating attacks, and troubleshooting performance issues. Such processing is limited to what is technically necessary for service operation, integrity, and security. We do not use this technical data to identify you as an individual or to profile your VPN browsing behavior.

We do not maintain persistent connection logs designed to track individual users’ VPN sessions or to associate a user with specific browsing activity. Some infrastructure providers, hosting partners, security services, or anti-abuse systems may process limited network or security logs as part of providing their services. Where this occurs, we require appropriate safeguards and do not use such logs to track users’ browsing activity.

Information You Provide

If you contact us, including by email, we process the information you provide, such as your email address and the content of your message, in order to respond to your inquiry, provide support, and maintain appropriate records of the interaction where necessary. You should avoid sending sensitive personal data unless it is strictly necessary for your request.

Premium Services and Payments

If you purchase a Premium subscription, payments are processed by the platform or payment provider you use, such as Apple App Store or Google Play. We do not receive or store your full payment card details.

We may receive limited subscription-related information necessary to activate and manage your Premium access, such as confirmation of subscription status, subscription type, and transaction identifiers. This information is used solely for service delivery, fraud prevention, chargeback handling where applicable, customer support, and compliance purposes. We do not link payment information with VPN browsing activity, traffic destinations, DNS queries, or content.

Website, Device, Application Data, and Optional Analytics

Our website and applications may process limited technical and device-related information necessary to operate, secure, and improve the Service. Depending on platform and configuration, this may include device type, operating system version, application version, language settings, approximate region or country, timestamps related to app events, and reliability events such as crash reports, connection attempts, and successful connections.

Where optional analytics, advertising technologies, or similar tracking technologies are used, they are implemented in accordance with applicable law and, where required, based on your consent. Where required, consent is obtained through mechanisms such as cookie banners, in-app consent prompts, or platform-level permission controls. Depending on the platform and configuration, device identifiers (including advertising identifiers) may be processed for analytics or advertising purposes and may constitute personal data under applicable law.

If a Free Version is offered, it may include advertising or advertising-related technologies. Any such technologies are used in accordance with applicable law and, where required, based on your consent.

Cookies and Similar Technologies

Our website or application may use essential technologies required to operate the Service, ensure security, prevent fraud and abuse, and remember basic preferences. Where optional analytics or advertising technologies are used, they are deployed only where permitted by law and, where required, based on your consent. You may control certain technologies through your browser settings, device settings, or consent controls presented within the Service, although disabling certain technologies may affect functionality.

Purposes of Processing and Legal Bases

Where applicable under the EU General Data Protection Regulation (GDPR), we process personal data on the basis of contractual necessity (to provide the Service), compliance with legal obligations, our legitimate interests (such as maintaining security, preventing abuse, fraud prevention, debugging, performance monitoring, and defending legal claims), or your consent where required by law (for example, for optional analytics or advertising technologies).

Automated Decision-Making

We do not engage in automated decision-making within the meaning of GDPR Article 22 that produces legal effects concerning you or similarly significantly affects you. We may use automated systems for security, fraud prevention, or abuse detection purposes, but such processing does not produce legal or similarly significant effects within the meaning of Article 22.

Sharing of Information

We do not sell your personal data. We may share limited information with trusted service providers that assist us in operating, securing, and supporting the Service, provided they act on our instructions and under appropriate confidentiality and data protection obligations.

We may disclose information where required by applicable law, binding legal process, or order of a competent authority, or where necessary to protect the rights, safety, or security of Senocom, our users, or the public, including to investigate, prevent, or take action regarding fraud, abuse, security incidents, or violations of our Terms of Use. We disclose only the information we possess and only to the extent required or reasonably necessary for the applicable purpose.

In the event of a corporate transaction such as a merger, acquisition, restructuring, or sale of assets, personal data may be transferred as part of that transaction subject to appropriate safeguards and any notices required by law.

International Transfers

We are established in Cyprus. Where personal data is transferred outside the European Economic Area, we implement appropriate safeguards in accordance with GDPR, such as adequacy decisions or Standard Contractual Clauses, and limit transfers to what is necessary for the purposes described in this Privacy Policy.

Data Retention

We retain personal data only for as long as reasonably necessary to provide the Service, fulfill the purposes described in this Privacy Policy, and comply with legal, accounting, and security obligations. Support communications are retained only as long as required to resolve issues and maintain appropriate records. Subscription-related data is retained as required for service delivery, fraud prevention, accounting, chargeback handling, and legal compliance. Any short-lived operational or security-related records, where used, are limited in scope, protected by access controls, and retained only as long as reasonably necessary.

Security

We implement reasonable technical and organizational measures designed to protect personal data against unauthorized access, alteration, disclosure, or destruction. Access to personal data is restricted to authorized personnel, contractors, and service providers who have a legitimate operational need. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

A VPN enhances privacy and security but does not guarantee complete anonymity and does not prevent all forms of tracking. Your privacy may also be affected by factors outside our control, including device configuration, browser settings, third-party cookies, malware, or the practices of websites and services you choose to access.

Children

The Service is not intended for individuals under the age of 18, and we do not knowingly collect personal data from children. If you believe a child has provided personal data to us, please contact us so appropriate steps can be taken.

Your Rights

If you are located in the EU/EEA, you have rights under GDPR, subject to legal limitations and exceptions. These may include the right to request access, rectification, erasure, restriction of processing, objection, and data portability. Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal. You may also lodge a complaint with your local data protection authority.

Requests can be submitted by contacting us at [email protected]. We may request reasonable information to verify your identity before responding. We may refuse or limit requests where permitted by law, including where requests are manifestly unfounded or excessive, where fulfilling a request would adversely affect the rights and freedoms of others, or where compliance would conflict with legal obligations.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements, technical operations, or the Service. Updates become effective when posted with a revised “Last Updated” date. Where required by law, we will provide additional notice of material changes.

Contact

For privacy questions or requests, contact: [email protected].