1. Who we are
KY Join provides cross-platform VPN client software and related online services. This policy applies to the KY Join apps for Windows, macOS, Linux, and Android, and to our marketing website and download pages.
If you have questions about this policy or your data, contact us at [email protected].
2. What we do not collect
KY Join is designed to protect your privacy while you are connected:
- We do not log the contents of your VPN traffic, DNS queries resolved through the tunnel, or the specific websites and apps you use while connected.
- We do not sell your personal information to third parties.
- We do not use your VPN browsing activity for advertising profiling.
3. Account and authentication data
When you register or sign in, we process information needed to operate your account:
- Email address — used for account identification, verification codes, password reset, and service notices.
- Password — stored only in hashed form on our servers; we never store or transmit your plain-text password.
- Session token — issued after successful login so the app can call authenticated APIs. The token is stored locally on your device and sent in API requests until you log out or it expires.
- Optional invite code — if you provide one during registration, we store it to attribute referrals.
4. Device and environment data
When you log in or register, the app sends device metadata to our servers so we can secure accounts, troubleshoot issues, and understand platform usage. Collection is best-effort: if a field cannot be read, login still proceeds.
Typical fields include:
- Device type (Windows, Linux, macOS, Android, or iOS)
- Device identifier — a stable ID tied to your installation (for example Windows MachineGuid, macOS IOPlatformUUID, Linux machine-id, iOS identifierForVendor, or Android ANDROID_ID). On Android, if no system ID is available, a random ID may be generated and cached locally.
- App version and OS version
- Device manufacturer, brand, and model (when available from the operating system)
- Network type at login (Wi‑Fi, mobile, Ethernet, etc.)
- App language preference (zh, en, ja, ko, or es)
- Approximate location (country and city) derived from your public IP address at login
Location lookup happens before you connect to the VPN, using third-party IP geolocation services (such as ipapi.co, ip-api.com, and ipwho.is) as fallbacks. Only country and city names are sent to our servers — not your raw IP from those providers in the device payload. We use this information for fraud prevention, support, and aggregate service analytics, not to track your browsing.
The same device identifier may also be used locally to associate VPN sessions with your installation.
5. VPN connection metadata
To operate the service we maintain limited connection records that do not include traffic content:
- Connection session identifier and periodic heartbeats while a tunnel is active — used to keep sessions alive, enforce plan limits, and detect stale connections.
- Selected node or region and routing mode — stored locally on your device and sent when you start a connection so we can deliver the correct configuration.
- Custom routing rules you create — stored on our servers when you save them, linked to your account.
VPN configurations are generated server-side and applied locally by the sing-box core embedded in our apps. We do not inspect or retain the payload of packets passing through the tunnel.
6. Diagnostics and error reports
If the app encounters an unexpected error (for example a network failure or uncaught exception), it may send a diagnostic report to our servers on a best-effort basis. Reports are deduplicated client-side to avoid spam.
Error reports may include:
- Device type, device identifier, app version, and OS version
- Error message and optional stack trace (truncated)
- Action context (such as login, connect, or payment)
- Client timestamp
- Your account token, if you are logged in, so we can follow up on account-specific issues
Error reports do not include your browsing history and do not perform additional geolocation lookups. Failed reports are silently discarded and never block app functionality.
7. Payments and membership
If you purchase a membership, we process billing-related data required to fulfill your order (such as plan type, order number, payment status, and membership expiry). Cryptocurrency payment flows may use periodic status checks tied to your order number.
Payment processing may involve third-party payment providers. Those providers handle payment instruments under their own privacy policies; KY Join does not store full payment card numbers on our application servers.
8. Data stored on your device
The app stores some information locally so it can work offline and remember your preferences:
- Login session (token and account ID)
- Device identifier cache
- Language, routing mode, selected region, and custom-rule preferences
- Cached platform information (support contacts, website links, invite page URL)
- Optional “ignore this update version” flag for in-app updates
You can remove local data by logging out and uninstalling the app. On shared devices, log out when you are finished.
9. Website and downloads
When you visit kyjoin.com or download an installer, standard web server logs (such as IP address, user agent, and requested URL) may be recorded by our hosting infrastructure for security and capacity planning.
Download links may redirect through our backend to serve the correct installer for your platform. We do not require an account to download the client.
10. How we use information
We use the data described above to:
- Provide, maintain, and improve the VPN service and apps
- Authenticate users and protect accounts from abuse
- Deliver customer support
- Process payments and membership entitlements
- Diagnose crashes and service issues
- Comply with applicable law and enforce our terms
11. Sharing and processors
We share information only when necessary:
- Infrastructure providers that host our servers and website, under contractual confidentiality obligations
- IP geolocation services used briefly at login to resolve country/city (see Section 4)
- Law enforcement or regulators when required by valid legal process
- Successors in the event of a merger or acquisition, with notice where required by law
We do not share VPN traffic content because we do not collect it.
12. Retention and security
We retain account and device records for as long as your account is active and for a reasonable period afterward to meet legal, security, and backup requirements. Diagnostic logs are kept for a limited time suitable for troubleshooting and then deleted or aggregated.
We use encryption in transit (TLS) for API communication and industry-standard practices to protect stored credentials. No method of transmission or storage is 100% secure; please use a strong, unique password and keep your device updated.
13. Your choices and rights
Depending on your location, you may have rights to access, correct, delete, or export personal data we hold about you, or to object to certain processing.
You can:
- Access and update account information through the app where available
- Log out to invalidate the local session token
- Request account deletion or data access by emailing [email protected]
- Uninstall the app to remove locally stored data
We will respond to verified requests within a reasonable timeframe as required by applicable law.
14. Children
KY Join is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us data, contact [email protected] and we will take appropriate steps to delete it.
15. International transfers
Our servers and service providers may be located outside your country. By using KY Join, you understand that your information may be processed in jurisdictions that may have different data-protection laws than your own. We take steps to protect data regardless of where it is processed.
16. Changes to this policy
We may update this Privacy Policy from time to time. The “Last updated” date at the top will change when we do. Material changes will be posted on this page; continued use of the service after changes take effect constitutes acceptance of the updated policy.
17. Contact us
For privacy questions, data requests, or concerns:
Email: [email protected]
Website: https://kyjoin.com/en/privacy/