Privacy Policy · Legal Document

How we treat
your data

This policy explains what information VpsMesh collects, why, how it is used, and what control rights you have over that data. Using this service constitutes your agreement to all content below.

lock
Data used to operate the service
Information collected is primarily used to deliver instances, process billing, and maintain platform security. It is not shared with third parties without reason.
visibility
You have the right to access and correct
You may request to view the personal information we hold and ask for corrections of clear errors. Specific limitations are described in Section 7.
security
Bare-metal instances are monitored
When renting a physical Mac instance, we continuously collect resource metrics and network metadata for billing and compliance. See Section 9 for details.
gavel
Disputes governed by Singapore law
This policy is governed by Singapore law. Disputes are subject to mandatory SIAC arbitration. Class actions are not supported.
calendar_today Version v4.0 · Effective: March 30, 2026 View Terms of Service arrow_forward
travel_explore
01

General Provisions & Scope of Application

This Privacy Policy is established by VpsMesh Global and all its affiliated entities (collectively "VpsMesh" or "we"). It applies to all individuals and organizations accessing or using VpsMesh services through any channel — the official website, console, API, or third-party integrations.

This policy takes effect to the maximum extent permitted by applicable law. If it conflicts with mandatory laws in your jurisdiction, VpsMesh will make adjustments only to the minimum extent strictly required by law, and the remainder of the policy continues to be effective.

bookmark Key Terms
person
Personal Information
Information directly or indirectly associated with you, including name, contact details, account credentials, usage behavior, and device identifiers.
database
Service Data
All data generated during use of the platform: connection logs, operation records, resource consumption, system events, etc. Such data is owned by VpsMesh from the moment it is generated and may be stored, analyzed, and commercialized.
auto_awesome
Derived Data
Derived information generated from Service Data through statistical analysis or machine learning. It is fully and permanently owned by VpsMesh and is not subject to any user rights provision.
manage_search
Anonymized Data
Data that has been de-identified and can no longer be linked to a specific natural person. VpsMesh may use, share, and commercialize such data permanently and without restriction.
Deemed consent: continued use of any service on this platform — including merely visiting the website or checking pricing — constitutes your complete acceptance of this policy in full, and is legally binding without requiring a written signature.
sensors
02

Data Collection & Sources

To deliver the service, maintain platform security, and continuously improve the experience, we collect information through the following three types of channels:

edit_noteInformation you provide directly
Data CategorySpecific ContentWhen Collected
Account informationEmail, username, password hash, registration timestampAccount creation
Identity & contactFull name, phone, address, company name, ID documents (for KYC)Identity verification / invoicing
Payment informationPayment method type, last four digits of card, billing address, transaction recordsPurchase or renewal
Technical configurationSSH public key, IP allowlist, VNC configuration, custom scriptsInstance configuration
Support recordsTicket content, email correspondence, survey responsesContacting support
analyticsAutomatically collected information
  • Network identifiers: IP address, ASN, geolocation (city-level precision), ISP information.
  • Device & environment: operating system, browser fingerprint, device model, time zone, system language.
  • Access logs: page URL, time-on-page, click path, referrer link, search keywords.
  • Connection metadata: SSH / VNC / API connect and disconnect timestamps, source IP, authentication result, session duration.
  • Instance runtime metrics: CPU, memory, disk I/O, network traffic, process list — used for billing calculation and compliance review.
groupInformation from third parties
  • Payment processors: transaction status, risk scores, chargeback records.
  • Anti-fraud vendors: device risk scores, IP reputation ratings, account linkage analysis.
  • Compliance databases: sanctions list checks, PEP screening, AML data.
info

Using this platform is deemed to constitute your express authorization for the collection of all categories of data listed above. We do not collect data beyond what is necessary for the service, but we also cannot stop collecting data that is necessary to keep the service running normally.

workspaces
03

Purposes of Data Use

We enumerate the core use cases explicitly. This is not exhaustive — VpsMesh reserves the right to use data for purposes reasonably associated with the operation of this platform.

check_circle

We use data to: deliver and maintain your instances, process billing and tickets, detect abuse on the platform, improve product features, and comply with regulatory requests when required by law.

buildService Delivery & Operations
  • Account creation, identity verification, instance configuration, and delivery.
  • Billing, invoicing, payment collection, and billing dispute handling.
  • Service status monitoring, fault recovery, and SLA assurance.
  • Technical support responses and service quality improvement.
securitySecurity, Fraud Prevention & Compliance
  • Real-time detection and blocking of attacks and anomalous access targeting the infrastructure.
  • Identifying and handling accounts that violate the Terms (e.g. mining, attacks, spam).
  • Retaining all instance access logs to support security incident forensics.
  • Cooperating with investigation requests from law enforcement agencies with lawful jurisdiction.
trending_upProduct Development & Optimization
  • Statistical analysis of usage data to guide product roadmap planning.
  • A/B testing and personalized content recommendations.
  • Using anonymized aggregate data for commercial insight reports and external data partnerships.
campaignMarketing Communications

VpsMesh may send product updates and promotional information via email, SMS, and push notifications. Registration is deemed explicit consent to these communications. Unsubscribing only affects marketing emails. Service notifications are not affected.

share
04

Data Sharing & External Disclosure

Your use of this service constitutes general authorization for the sharing scenarios described below, without requiring your separate prior consent.

handshakeBusiness Operations Vendors
  • Cloud infrastructure: AWS, Alibaba Cloud, and others — hosting portions of the platform backend.
  • Email & communications: SendGrid and others — for system notifications and marketing delivery.
  • Security & CDN: Cloudflare and others — for attack protection and acceleration.
  • Analytics & advertising: Google Analytics, Meta Pixel, and others — for behavioral analysis and ad measurement.
balanceLegal Compulsion & Regulatory Requirements
  • Responding to lawful data requests including court orders, government subpoenas, and law enforcement cooperation letters.
  • VpsMesh may comply and disclose directly without notifying you.
  • To prevent, investigate, or prosecute any illegal conduct.
mergeBusiness Restructuring & Asset Disposition

In the event of a merger, acquisition, spin-off, or asset sale, all your data may be transferred to the recipient as a commercial asset without requiring your separate consent.

warning

VpsMesh does not directly sell your identifiable personal information to advertisers. Data shared with third parties is technically de-linked from you and takes the form of anonymized aggregate insights.

cookie
05

Cookies & Tracking Technologies

VpsMesh uses cookies, pixel tracking, device fingerprinting, and local storage. Accessing this platform is deemed your consent to the use of these technologies.

CategoryPurposeOpt-out available?
Strictly NecessaryMaintaining login sessions, CSRF tokens, load-balancing routing. Disabling will make the service completely unavailable.blockCannot be disabled
Security AuditDevice fingerprint hash, risk scoring, anomalous login detection. Core security infrastructure for the platform.blockCannot be disabled
FunctionalLanguage preferences, theme settings, console layout memory.checkCan be disabled
Performance AnalyticsPage visit statistics, user behavior paths, conversion funnel tracking.checkCan be disabled
Marketing & RetargetingAd source attribution, cross-platform audience building, personalized ad serving.checkCan be disabled
Third-Party IntegrationsCookies set by third-party services such as payment gateways and support systems are subject to their own privacy policies.blockCannot be disabled
warning

Disabling optional cookies may degrade certain feature experiences. Continued use of this platform constitutes acceptance of all cookie categories listed above.

verified_user
07

Your Rights

Within the scope defined by applicable data protection law, you hold the following rights. All rights are subject to material limitations under this policy and applicable law and are not absolute.

visibility
Right to Know & Access
You may request a summary of the personal information held by VpsMesh. We will respond within a reasonable time after identity verification is completed.
edit
Right to Rectification
If information contains obvious errors, you may request corrections. We reserve the right to decline corrections to data fields related to normal platform operations.
delete
Right to Erasure Limited
Applies only when the purpose has been fulfilled and there is no retention basis. Service Data, Derived Data, and data required to be retained by law are not within the scope eligible for deletion.
download
Right to Data Portability Limited
Applies only to data you actively provided that meets specific legal conditions. Excludes Service Data and Derived Data.
block
Right to Object Limited
You may object to processing activities based on legitimate interests. However, VpsMesh has the right to demonstrate the existence of overriding legitimate interests and continue processing.
sendHow to Submit a Request

Send a request from your registered email address to [email protected] and complete the identity verification procedure required by VpsMesh. For abusive, repetitive, or manifestly unfounded requests, we may charge a processing fee or refuse directly.

Note: exercising the above rights does not suspend normal service and does not constitute a waiver of any contractual obligation. Approved deletion requests are executed subject to technical feasibility. Immediate deletion is not guaranteed.
public
08

Cross-Border Data Transfers

VpsMesh processes data at multiple data centers and cloud providers worldwide. Your personal information may be transferred, processed, and stored in jurisdictions outside your region. Using this service is deemed your explicit consent to cross-border data transfers, regardless of the data regulatory framework in the destination region.

VpsMesh independently selects data storage locations and reserves the right to change them at any time without further notice to you. We make no commitments regarding data localization.

monitor_heart
09

Device Monitoring & Auditing

error

Users renting physical Mac instances should read this section carefully. Use of the rental service constitutes your explicit consent to all provisions of this section.

bar_chartOngoing Standard Monitoring
  • Continuous resource monitoring: real-time metrics for CPU, memory, disk I/O, and network bandwidth are continuously collected for billing calculation. Data is retained permanently.
  • Network traffic metadata analysis: monitoring of source/destination IP, ports, and protocols to detect prohibited traffic including port scans, DDoS origination, and dark web connections.
  • Process list collection: process names, PIDs, and launch parameters are collected periodically (at minimum 1-minute intervals) to detect mining software and attack tools.
  • SSH / VNC connection logs: complete connection metadata is recorded and retained for no less than 365 days.
policyEvents That Trigger Enhanced Auditing

Upon detection of any of the following, VpsMesh may initiate an enhanced security audit (including session content recording) without prior notice:

  • Initiating external port scans, DDoS attacks, or other cyberattack activities.
  • Sending bulk spam or phishing emails.
  • Running any cryptocurrency mining program without written authorization.
  • Receipt of a DMCA copyright complaint or a law enforcement cooperation order.
  • Any other circumstance where the VpsMesh security team judges that an abnormal risk exists based on professional assessment.
gavel

Unilateral termination right: upon discovery of signs of violations, VpsMesh may immediately suspend or permanently terminate the relevant instance and account, retain remaining prepaid fees, and submit relevant data to law enforcement. VpsMesh bears no liability for any resulting user data loss or business interruption.

child_care
10

Minors

VpsMesh services are available to adults 18 years of age or older with full civil legal capacity only. If you are a minor, please immediately stop using this service.

warning

If VpsMesh discovers that data from a minor has been collected, it will take immediate action — including terminating the relevant account and retaining all fees paid. Please contact [email protected] for related matters.

gavel
11

Limitation of Liability

error

Key Legal Notice: this section contains significant limitations on the liability of VpsMesh and will have an important impact on your rights in any legal dispute. Please read carefully.

remove_circleExpressly Excluded Liability Scenarios
  • Credential leaks caused by poor password management, device compromise, clicking phishing links, or sharing accounts.
  • Force majeure events beyond the reasonable control of VpsMesh (natural disasters, war, government orders, large-scale cyberattacks, etc.).
  • Data incidents caused by vulnerabilities in third-party service providers (payment processors, cloud providers, security vendors).
  • Unauthorized access caused by your failure to enable two-factor authentication (2FA) or use of weak passwords.
  • Losses arising from any monitoring, auditing, suspension, or termination action VpsMesh has the right to take under this policy.

To the maximum extent permitted by applicable law, VpsMesh bears no liability for any claims under this policy, including direct losses, indirect losses, data loss, and business interruption losses. The service is provided "AS IS" without any express or implied warranties.

update
12

Policy Updates

VpsMesh reserves the absolute right to modify, supplement, or replace any content of this policy at any time, without prior notice. The revised policy takes effect immediately upon publication on the platform.

warning

Deemed acceptance: continued use of any feature on this platform after a revision is published — regardless of whether you have actually read the revised content — constitutes your complete and unconditional acceptance of all provisions in the revised policy. You are responsible for periodically reviewing this policy on your own initiative.

balance
13

Governing Law & Dispute Resolution

flagGoverning Law

The formation, validity, interpretation, and dispute resolution of this policy are exclusively governed by the laws of Singapore, excluding any conflict-of-laws rules.

handshakeMandatory Arbitration

Using this service is deemed your waiver of the right to resolve disputes related to this policy through litigation. Disputes should first be negotiated in writing (negotiation period: 15 business days). If unresolved, they shall be mandatorily submitted to the Singapore International Arbitration Centre (SIAC) for arbitration in English. The award is final and cannot be appealed.

group_offClass Action Waiver

You expressly and irrevocably waive the right to hold VpsMesh accountable through class action or representative proceedings. All disputes must be brought in an individual capacity.

Limitation period: you must bring any claim within 6 months of the event giving rise to the dispute. Claims brought after this deadline are permanently forfeited.
contact_support
14

Contact Us

If you have questions about this policy or need to submit a data rights request, please contact us through the channels below. Submitting a request does not constitute an acknowledgment of any rights claim. VpsMesh will evaluate and handle it independently under this policy.

Privacy Inquiries Email
[email protected]
Include "Privacy Policy Request" in the email subject line to ensure proper routing
Response Time
Within a reasonable time
Response timelines are determined by request complexity
Platform Ticket
Console → Help → Submit Ticket
Log in to submit and track progress in real time
Compliance & Legal
[email protected]
GDPR, PDPA, and other data protection regulation matters
Version v4.0 · March 30, 2026 · VpsMesh Global
View Terms of Service arrow_forward