Privacy Policy
DuckRay follows a no-logs approach. Here is exactly what we collect and do not collect.
Last updated: May 16, 2026
1. Introduction
DuckRay is an offshore VPN provider registered outside EU and US jurisdiction. We follow data minimization and never track user activity. By using DuckRay, you agree to this Privacy Policy.
2. No-logs principle
DuckRay does not collect, store, or process IP addresses, connection timestamps, browsing history, traffic content, or DNS queries. Our infrastructure is designed so user activity is technically unavailable.
3. Minimal account data
We process only an optional email address for account recovery and payment confirmation from third-party payment systems. We do not store full payment data.
4. Third-party payment systems
All payments are processed by independent payment providers. DuckRay is not responsible for their actions or data handling practices.
5. Data retention
Payment records are stored only to the extent required by the laws of our offshore jurisdiction. Support requests are kept for no more than 12 months. Everything else is deleted immediately or not collected at all.
6. Security measures
We use end-to-end encryption, physical and network protection, and least-privilege access to data. No system is perfectly secure — you use the service at your own risk.
7. International data transfer
DuckRay operates worldwide. Data may be processed in multiple jurisdictions. Where required, appropriate safeguards are applied.
8. Minors
DuckRay is not intended for people under 18. We do not knowingly collect data from minors.
9. Warrant Canary
DuckRay has never received government requests, subpoenas, or orders to provide user data. If this status changes, we will update this notice immediately.
10. Limitation of liability
DuckRay provides privacy protection tools without guaranteeing complete anonymity or compliance with the laws of your country. You are solely responsible for how you use the service.