Privacy policy

Last updated 18 June 2026.

This policy explains what personal data TunnelScore processes and your rights over it. The data controller is [OPERATOR LEGAL NAME — set by operator] ([contact@ — set by operator]). We have designed this site to collect as little personal data as possible.

What we collect

• Aggregate analytics. We use privacy-friendly, cookieless analytics (Cloudflare Web Analytics) that measure page views and performance in aggregate. No cookies, no fingerprinting, no profile of you.
• Server logs. Our host (Cloudflare) processes standard request data such as IP address for security, abuse prevention and delivery, as our processor under appropriate safeguards (e.g. Standard Contractual Clauses for any transfers).
• Affiliate referrals. When you click an affiliate link, the destination provider and its affiliate network may set their own cookies to attribute a referral. That processing is governed by their privacy policies, not ours.

Why, and on what legal basis

We process aggregate analytics and security logs on the basis of our legitimate interest (Article 6(1)(f) GDPR) in running and securing a functioning website. We do not sell your personal data, and we run no advertising or marketing cookies. We do not make automated decisions with legal effects about you (Article 22 GDPR).

Your rights

If you are in the EU/EEA or UK, you have the right to access, rectify, erase, restrict and object to processing of your personal data, and to data portability, under the GDPR/UK GDPR. You may lodge a complaint with your supervisory authority (e.g. your national data protection authority or the UK ICO).

If you are a California resident, the CCPA/CPRA gives you the right to know, delete and correct personal information, and to opt out of "sale" or "sharing". We do not sell or share personal information as those terms are defined. To exercise any right, contact [contact@ — set by operator].

Retention & contact

Aggregate analytics are retained only as long as needed for the purposes above; security log retention follows our host's standard periods. For any privacy question or request, email [contact@ — set by operator].