Legal

Privacy Policy

Last updated: May 31, 2026

1. Information We Collect

When you use MikRouter, we collect the following information:

  • Account information - your name, email address, and profile picture from your Google or Yahoo account when you sign in.
  • Payment information - transaction details processed through Xendit (GCash, Maya, ShopeePay, GrabPay, QR Ph). We do not store your payment credentials.
  • Usage data - session information, IP addresses, browser type, and device information for security and troubleshooting purposes.
  • VPN connection data - PPP usernames, assigned ports, and connection logs necessary to provide the remote access service.
  • Telegram account data (optional) - if you link a Telegram account to receive notifications, we store your Telegram user ID, username, display name, and (when you choose “Sign in with Telegram”) profile photo URL. We also store your notification preferences (which delivery service and which notification types you opted into).

2. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve the MikRouter remote access service.
  • Process payments and manage your subscription.
  • Authenticate your identity and secure your account.
  • Send service-related notifications and updates, including (when you opt in) notifications to your linked Telegram account for events such as expired remotes, auto-extend results, account sign-ins, and payment receipts.
  • Monitor and prevent abuse or unauthorized access.

3. Data Storage and Security

Your data is stored securely using MongoDB Atlas with encryption at rest and in transit. VPN credentials are generated automatically and stored securely. We implement industry-standard security measures to protect your information from unauthorized access, alteration, or destruction.

4. Third-Party Services

We use the following third-party services:

  • Google Sign-In / Yahoo Sign-In - for authentication.
  • Xendit - for payment processing.
  • Telegram - for delivering notifications via the MikRouter bot. Telegram receives the messages we send and the Telegram-side identifiers you choose to link.
  • Vercel - for hosting and deployment.
  • MongoDB Atlas - for data storage.

Each third-party service has its own privacy policy governing their use of your data.

5. Data Retention

We retain your account data for as long as your account is active. Session logs are retained for security purposes. Transaction records are kept for accounting and legal compliance. You may request deletion of your account data by contacting us.

6. Your Rights

You have the right to:

  • Access and review your personal data.
  • Request correction of inaccurate information.
  • Request deletion of your account and associated data.
  • Manage your active sessions from the dashboard.
  • Unlink your Telegram account or change your notification preferences at any time from the Notifications page.

7. Cookies

We use essential cookies for authentication and session management. We do not use tracking or advertising cookies.

8. Changes to This Policy

We may update this privacy policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the service after changes constitutes acceptance of the updated policy.

9. Contact

If you have questions about this privacy policy, contact us at support@mikrouter.com.

See also our Terms of Service.