Privacy Policy

Last updated: December 2024

1. Introduction

Codalyx ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our proxy infrastructure services.

Privacy is fundamental to our service architecture. We operate on a zero-knowledge model where your data never touches our servers in an unencrypted state. This policy outlines our comprehensive privacy practices, your rights regarding your personal information, and how we maintain the highest standards of data protection in compliance with GDPR, CCPA, and other applicable privacy regulations.

2. Information We Collect

We collect only the minimum information necessary to provide and maintain our services.

2.1 Information You Provide

  • Account Information: Full name, business email address, company name, job title
  • Billing Information: Payment method details, billing address, tax identification numbers
  • Verification: Email address verification
  • Communication Records: Support requests, emails, secure messaging logs

2.2 Information We Do NOT Collect

  • Destination URLs or IP addresses you access through our proxies
  • Content of your requests or responses
  • Browsing history or session data
  • Data transmitted through our proxy infrastructure

3. Zero-Knowledge Architecture

Our proxy infrastructure operates on a zero-knowledge architecture, meaning we have no access to your actual traffic data. All traffic passing through Codalyx proxies is encrypted end-to-end using AES-256 encryption with perfect forward secrecy.

4. How We Use Your Information

  • Create and manage your Codalyx account and service access
  • Process subscription and usage-based payments
  • Respond to your support requests and technical inquiries
  • Comply with applicable laws, regulations, and legal processes

5. Data Security

We implement comprehensive, multi-layered security measures to protect your information. All data in transit is encrypted using AES-256 encryption. Our infrastructure is ISO 27001 certified and SOC 2 Type II compliant.

6. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. Active account information is retained for the duration of your service membership. After termination, we retain billing records for 7 years to comply with legal requirements.

7. Your Rights

You have comprehensive rights regarding your personal information:

  • Right to Access: Request access to your personal information
  • Right to Rectification: Request correction of inaccurate information
  • Right to Erasure: Request deletion of your personal information
  • Right to Data Portability: Request a copy of your data in a machine-readable format

8. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us through your dedicated account manager or through the secure communication channels established after account approval.