1. Information We Collect

We collect minimal information necessary to provide our enterprise VPN services:

• Account information (company name, contact details)
• Billing information for payment processing
• Connection timestamps (without storing IP addresses)
• Aggregate bandwidth usage statistics

2. Business Data Protection

BulletproofVPN employs strict no-logs policy for all business traffic:

• We do not monitor, record, or store your business traffic data
• We do not inspect packet contents or deep packet inspection
• We maintain no records of connection destinations or browsing activity
• We employ AES-256 encryption for all business communications

3. International Data Transfers

For multinational businesses, we ensure compliance with:

• GDPR requirements for EU operations
• CCPA for California businesses
• Regional data protection regulations across our global network
• Cross-border data transfer requirements

4. Security Measures

We implement enterprise-grade security measures:

• Regular third-party security audits
• Perfect forward secrecy for connection security
• RAM-only servers that cannot store persistent data
• Regular security patches and updates

5. Business Continuity

Our enterprise services maintain:

• 99.9% uptime SLA for business customers
• Distributed global server network for redundancy
• Automatic failover protection
• 24/7 technical support for business accounts

6. Legal Compliance

BulletproofVPN may disclose information:

• When required by valid legal process
• To protect our rights, privacy, safety or property
• In connection with a business transfer or acquisition

However, our no-logs policy means we have minimal data to provide even if legally compelled.

7. Changes to This Policy

We may update this policy to reflect changes in our practices or legal requirements. Business customers will be notified of significant changes via email.