Privacy Policy

1. Controller and Contact Information

The controller responsible for data processing within the meaning of the General Data Protection Regulation (GDPR) and other applicable data protection provisions is:

ProxyPanel.Pro
Niels van Veen
c/o Postflex #8764
Emsdettener Str. 10
48268 Greven
Germany
Email: support@proxypanel.pro

2. Scope and Purpose of Data Processing

2.1. ProxyPanel.Pro is a software-as-a-service (SaaS) platform that enables registered users (“Tenants”) to operate branded proxy storefronts. This Privacy Policy describes how we collect, process, store, and protect personal data in connection with the provision of our platform services.

2.2. We process personal data only to the extent necessary for the provision, administration, and improvement of our platform, as well as to fulfill our legal obligations. Personal data is not processed beyond what is required for these purposes.

3. Data We Collect

3.1. Account Registration Data

When you register for a ProxyPanel.Pro account, we collect the following personal data:

• First and last name
• Email address
• Password (stored in encrypted form only; the plaintext password is never retained)
• Business name and company name (where provided)
• Postal address (street, ZIP code, city, country)
• Account role and associated shop identifier
• Acceptance of Terms of Service and Privacy Policy, including timestamp and IP address of acceptance, retained for the duration of the contractual relationship as proof of consent

Legal basis: Art. 6(1)(b) GDPR — performance of a contract; Art. 6(1)(c) GDPR — compliance with legal obligations (retention of consent records).

3.2. Technical Access Data

When you access the platform, the following technical data is collected and processed automatically:

• IP address of the accessing device
• Date and time of the request
• Browser type and version
• Operating system
• Referrer URL

This data is processed for the purpose of ensuring the technical operation, security, and stability of the platform. It is not used to identify individual users and is deleted after a period of fourteen (14) days unless longer retention is required for security purposes.

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in ensuring platform security and stability.

3.3. Payment and Billing Data

If you subscribe to a paid plan or add balance to your account, we process the following data:

• Transaction identifier and order reference
• Payment method identifier (e.g., Stripe customer ID or cryptocurrency wallet reference)
• Payment amount, currency, and status
• Date and time of the transaction

Sensitive payment details (such as full credit card numbers) are not stored by ProxyPanel.Pro. Payment processing is handled exclusively by our payment service providers (see Section 5).

Legal basis: Art. 6(1)(b) GDPR — performance of a contract.

3.4. Communication Data

When you contact us via email or through the platform, we store the content of your message, your email address, and any metadata associated with the communication for the purpose of handling your inquiry and maintaining correspondence records.

Legal basis: Art. 6(1)(b) GDPR — performance of a contract; Art. 6(1)(f) GDPR — legitimate interest in responding to inquiries.

3.5. Proxy Configuration Data

In connection with the operation of your storefront, the platform processes technical proxy configuration data, including server credentials, port assignments, proxy status, IP rotation settings, and related metadata. This data is processed exclusively for the purpose of platform functionality and is not used for any other purpose.

Legal basis: Art. 6(1)(b) GDPR — performance of a contract.

4. Cookies and Local Storage

4.1. ProxyPanel.Pro uses strictly necessary session cookies and local storage tokens for the purpose of user authentication and session management. These are essential for the functioning of the platform and cannot be disabled.

4.2. We do not use advertising or tracking cookies. We do not use third-party analytics tools that track individual user behavior.

Legal basis: Art. 6(1)(f) GDPR — legitimate interest in providing essential platform functionality.

5. Third-Party Service Providers (Data Processors)

We engage the following third-party service providers for the purposes described below. Where these providers process personal data on our behalf, we have entered into appropriate data processing agreements in accordance with Art. 28 GDPR.

5.1. Supabase Inc. (Backend Infrastructure & Authentication)

Supabase provides database hosting, user authentication, and backend infrastructure services. User account data, session data, and platform data is stored on Supabase-hosted servers. Data processing location: EU (Frankfurt) / US, subject to EU Standard Contractual Clauses.

Supabase Privacy Policy

5.2. Vercel Inc. (Hosting & Deployment)

Vercel provides hosting and content delivery services for the ProxyPanel.Pro web application. Access data (IP address, request metadata) may be processed by Vercel as part of the hosting service. Data processing location: Global CDN with EU edge nodes.

Vercel Privacy Policy

5.3. Stripe Inc. (Payment Processing)

Stripe processes payment transactions for ProxyPanel.Pro platform subscription fees as well as end-customer payments on Tenant storefronts. Stripe receives and processes payment method details (e.g., credit card data) directly. ProxyPanel.Pro does not store full credit card numbers. Data processing location: EU/US, subject to EU Standard Contractual Clauses.

Stripe Privacy Policy

5.4. NOWPayments (Tenant Storefront Payment Processing)

NOWPayments is integrated into the platform as a cryptocurrency payment option available to Tenant storefronts for end-customer transactions. When an end customer pays via cryptocurrency on a Tenant storefront, transaction data including wallet addresses and payment amounts is processed by NOWPayments. ProxyPanel.Pro does not store private wallet keys. Data processing location: EU/International.

NOWPayments Privacy Policy

5.5. Cryptomus (Tenant Storefront Payment Processing)

Cryptomus is integrated into the platform as an alternative cryptocurrency payment option available to Tenant storefronts for end-customer transactions. Transaction data including wallet addresses and payment amounts is processed by Cryptomus. Data processing location: International.

Cryptomus Privacy Policy

5.6. Resend Inc. (Transactional Email)

Resend delivers transactional emails on behalf of ProxyPanel.Pro, including account verification, password reset, and service notifications. Email address and message content are processed for this purpose. Data processing location: US, subject to EU Standard Contractual Clauses.

Resend Privacy Policy

6. Data Transfers to Third Countries

6.1. Certain service providers engaged by ProxyPanel.Pro may process personal data outside the European Economic Area (EEA), in particular in the United States. In such cases, we ensure that appropriate safeguards are in place in accordance with Chapter V of the GDPR, such as EU Standard Contractual Clauses (Art. 46(2)(c) GDPR), adequacy decisions of the European Commission, or the EU-US Data Privacy Framework, where applicable.

6.2. You may request information about the specific safeguards in place for any international data transfer by contacting us at support@proxypanel.pro.

7. Data Retention

7.1. Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable statutory retention obligations.

7.2. Account data is retained for the duration of the contractual relationship and deleted within thirty (30) days following account termination, unless longer retention is required by law (e.g., tax and commercial record-keeping obligations under German law require retention of six (6) to ten (10) years for certain records).

7.3. Technical access logs are deleted after fourteen (14) days.

7.4. Payment records are retained for the duration of the applicable statutory retention period under German commercial and tax law.

8. Your Rights as a Data Subject

Under the GDPR, you have the following rights with respect to your personal data:

• Right of access (Art. 15 GDPR) — You may request confirmation as to whether personal data concerning you is being processed and, if so, access to such data and further information about the processing.
• Right to rectification (Art. 16 GDPR) — You may request the correction of inaccurate personal data or the completion of incomplete data.
• Right to erasure (Art. 17 GDPR) — You may request the deletion of your personal data, subject to applicable legal retention obligations.
• Right to restriction of processing (Art. 18 GDPR) — You may request restriction of processing under certain circumstances.
• Right to data portability (Art. 20 GDPR) — You may request to receive your personal data in a structured, commonly used, and machine-readable format.
• Right to object (Art. 21 GDPR) — You may object to the processing of your personal data based on legitimate interests, including profiling based on such interests. We will cease processing unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms.
• Right to withdraw consent (Art. 7(3) GDPR) — Where processing is based on consent, you may withdraw your consent at any time, without affecting the lawfulness of processing carried out prior to withdrawal.

To exercise any of these rights, please contact us at support@proxypanel.pro. We will respond to your request within the timeframe prescribed by applicable law.

9. Right to Lodge a Complaint

Without prejudice to any other administrative or judicial remedy, you have the right to lodge a complaint with a data protection supervisory authority, in particular in the Member State of your habitual residence, your place of work, or the place of the alleged infringement.

The competent supervisory authority for ProxyPanel.Pro is:

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen
Postfach 20 04 44
40102 Düsseldorf
Germany
www.ldi.nrw.de

10. Data Security

10.1. ProxyPanel.Pro implements appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, alteration, or disclosure, in accordance with Art. 32 GDPR.

10.2. These measures include, but are not limited to, encryption of data in transit (TLS/HTTPS), access control mechanisms, secure authentication procedures, regular security reviews, and the use of reputable infrastructure providers with demonstrated security certifications.

10.3. Despite all reasonable measures, absolute data security cannot be guaranteed. Tenants are responsible for safeguarding their own login credentials and account access.

11. Tenant Responsibility for End-Customer Data

11.1. Tenants who operate storefronts through the platform act as independent data controllers with respect to the personal data of their end customers. ProxyPanel.Pro does not determine the purposes or means of processing end-customer data and is not responsible for the lawfulness of such processing.

11.2. Tenants are solely responsible for providing their end customers with adequate privacy information and for ensuring that all processing of end-customer data complies with applicable data protection laws.

12. Changes to This Privacy Policy

ProxyPanel.Pro reserves the right to update this Privacy Policy from time to time to reflect changes in our data processing practices, applicable laws, or regulatory requirements. The current version will always be available at proxypanel.pro/privacy. Tenants will be notified of material changes via email. Continued use of the platform following notification constitutes acceptance of the updated Privacy Policy.

13. Contact

If you have any questions about data protection or wish to exercise your rights as a data subject, please contact us at:

Email: support@proxypanel.pro