Introduction
As a VPN service provider, Norton values your privacy and protects your personal data. Our VPN products help keep your online activity private and encrypt your internet connection, preventing third parties from monitoring what you do online.
This Privacy Notice covers VPN features in Norton VPN and Norton 360 product plans. It does not apply to other Norton products or features.
Our no-log policy: Data we don’t collect
Our VPN no-logs policy has been repeatedly independently verified by Versprite. It is designed to ensure that we do not know what you do online, and your online activities are never tracked, logged, or stored. We publish a quarterly transparency report on all data requests we receive from authorities.
Specifically, our VPN doesn’t collect:
- Your browsing history.
- Traffic destination.
- IP addresses of your devices.
- Session duration.
- DNS queries. Should anyone try to compel Norton VPN to release user information based on the above, we cannot supply this information because the data does not exist.
How we limit data processing and apply our General Privacy Notice
Here's how our VPN product Privacy Notice and data processing practices differ from our General Privacy Notice:
- Identity data: We only collect payment information and an email address for the license subscription. You can request to delete your account and associated data at any time.
- Product data: We only collect the product data shown below. Our VPN doesn't collect the other data types mentioned in the General Privacy Notice (e.g., website data).
- Sharing with business partners: This concerns subscriptions purchased from resellers. In this instance we need to reconcile billing transactions with our resale partners for subscriptions purchased through them.
What data does our VPN collect and why?
Data from our VPN applications
We collect minimal data to ensure our VPN works well. This data doesn't reveal which sites you visit or what services you use. Below is what we collect, why we collect it, and how long we keep it.
Service data |
Why we collect it |
Retention period |
---|
Connection events
Such as successful /unsuccessful connections and disconnections from our VPN server
|
To monitor VPN performance, fix issues, and ensure reliability of the VPN service.
To improve VPN performance we only record the day when a connection is made (not the exact time) and which VPN location is used. This minimal data helps us reduce congestion and mitigate correlation risks.
|
12 months for general connection events;
|
Application events
Such as install, uninstall, updates and interaction, OS version, language, error states, and device name and type
|
To understand app usage, enhance features, improve user experience, and ensure compatibility with various device types and operating systems.
Example: Which operating systems are most used by our customers?
|
18 months for general application events.
|
User-generated crash reports |
For diagnosing and fixing specific app crashes you report.
Our VPN applications don't send automatic reports with personal data. If you choose to share a crash report, we link it to your service records, which can be connected to your license.
|
90 days. |