Legal
Privacy Policy
Effective date: May 22, 2026
1. Who we are
Somon VPN ("Somon VPN", "we", "us") operates a virtual private network service for users in Central Asia and other regions with restricted internet access. This Privacy Policy explains what we collect, what we do not collect, and how we treat your data.
By using Somon VPN you agree to the practices described here. If you do not agree, please do not use the service.
2. Our no-logs principle
Somon VPN is a no-logs VPN service. We never record, store, or inspect the content of your internet activity.
We do not collect:
- Browsing history or URLs you visit
- DNS queries you make
- Destination IP addresses you connect to
- Traffic content of any kind
- Real names, email addresses, or phone numbers
- Precise or approximate geographic location
- Contacts, calendar, files, photos, videos, or messages
3. What we do collect
To keep the service working and to improve connection quality, we collect a small amount of anonymous operational data.
| Data | Purpose | Retention |
|---|---|---|
| Anonymous guest ID | Identifies a device without any personal information | For as long as the account is active |
| Connection success / failure | Helps us detect blocked servers and improve Smart Connect | Up to 90 days, aggregated thereafter |
| Protocol used (WireGuard, VLESS, etc.) | Helps us measure which protocols work in which networks | Up to 90 days, aggregated thereafter |
| Server region selected | Capacity planning and routing decisions | Up to 90 days, aggregated thereafter |
| Connect time | Performance monitoring | Up to 90 days, aggregated thereafter |
| Crash logs | App stability | Up to 90 days (Google Firebase retention) |
| Purchase / transaction token | Verifying a Google Play or Platega subscription is valid | For the lifetime of the subscription record |
| JWT token (in browser localStorage) | Website authentication for your account dashboard | Until you log out or token expires |
4. How we use this data
All collected data is used only to operate and improve the VPN service. We use it to:
- Authenticate your guest account and deliver server configurations
- Choose the best server and protocol for your network (Smart Connect)
- Detect and respond to network blocking events
- Diagnose crashes and connection problems
- Verify and maintain Google Play subscriptions
We do not use your data for advertising, profiling, or training any kind of recommendation engine for unrelated services.
5. How data is shared
We do not sell or rent your data. We do not share data with advertising networks or data brokers.
The only third parties that may process limited data are:
- Google Play Billing — handles subscription payments in the Android app. We receive only the purchase token needed to verify the subscription.
- Platega — handles website payments via SBP (bank transfer). We receive only the transaction ID and payment status. Platega does not receive your VPN usage data.
- Google Firebase Crashlytics — receives anonymous crash reports if enabled in your build.
- Our infrastructure providers — host the API and VPN servers. They see only the data needed to run the service.
We may disclose data if required by a valid legal request from a jurisdiction that applies to us. Because we do not store browsing history, DNS queries, or destination IPs, such a request cannot reveal what you did online through the VPN.
6. Where data is stored
Backend data (anonymous guest accounts, subscription records, connection metrics) is stored in PostgreSQL on servers we control. All API traffic is encrypted with TLS. VPN traffic is encrypted by WireGuard, VLESS Reality, or VLESS over WebSocket depending on the protocol your device selects.
7. Your rights
- You can stop using the service at any time. Uninstalling the app stops all client-side data collection.
- You can request deletion of your anonymous guest account and associated metrics by contacting us at the address below.
- You can manage or cancel your subscription in the Google Play subscription settings.
8. Children
Somon VPN is intended for users aged 13 and over. We do not knowingly collect data from children below that age. If you believe a child has used the service, contact us and we will remove any associated records.
9. Security
We use industry-standard encryption in transit (TLS for API, modern VPN protocols for the tunnel). No system is perfectly secure, and we cannot guarantee absolute security, but we work to minimize the impact of any incident by collecting as little data as possible.
10. Changes to this policy
We may update this Privacy Policy when the service changes. When we do, we will update the effective date at the top of this page. Material changes will be announced in the app or on this website.
11. Contact
For privacy questions or deletion requests, contact us at:
- Email: support@somonvpn.tech
- Telegram: @somonhelp