Privacy Policy

Celestia VPN is designed around data minimization. We do not keep activity logs — no browsing history, DNS queries, source IP addresses, connection timestamps, or traffic contents. The data controller is BrainScale Solutions LLC.

1. Data we process

To operate the Service we store the minimum required for billing and access provisioning:

• Telegram identifier — if you sign in via Telegram.
• Email — if provided at checkout (for the subscription link and notifications).
• Subscription information: tier, start date, expiry.
• Payment records: transaction ID, amount, method, status. Required by financial reporting law.
• Aggregate bandwidth (monthly totals in/out) — for fair-use enforcement. Contains no destinations, sites, or session times.

2. What we do NOT store

• Browsing, DNS, or source-IP logs.
• User traffic contents.
• VPN session times or durations.
• Tracking or advertising cookies.

3. Purposes of processing

• Providing the Service and technical support.
• Processing payments and complying with financial and tax law.
• Preventing abuse and breaches of the Terms of Service.

4. Third parties

Payment data is shared with payment processors (Heleket, YooKassa, Stripe, Telegram) to the extent required to process transactions. We do not sell or share data for marketing purposes.

5. Retention

• Account information — until deleted upon your request.
• Payment records — 5 years from the transaction date (financial-law requirement).
• Aggregate bandwidth data — up to 13 months.

6. Your rights

You have the right to request a copy of your data, its correction or deletion, and to withdraw consent (access to the Service will then end). Send requests to support@celestiavpn.com.

7. Security

We use encryption at rest and in transit, restrict database access, and keep infrastructure components up to date.

8. Changes

Updates to this Policy are published on this page. The date at the top reflects the current revision.