Privacy Policy

Effective: May 4, 2026

1. Introduction

JetSpeed (飞人加速器, hereinafter "we" or "the Service") is a network speed optimization service that helps overseas Chinese users access Mainland China internet services with low latency and high stability. This policy explains what personal information we collect, how we use it, how long we retain it, with whom we share it, and the rights you have.

By using the Service, you confirm that you have read and agreed to this policy. If you disagree, please do not use the Service.

2. Information We Collect

We collect only what is necessary to provide the Service. The complete list:

• Account credentials — username and password hash (we do not store plaintext passwords); used for account registration, sign-in, and session identification. We currently do not collect your email address (a separate notice will be provided if a future "bind email" feature is introduced).
• Device identifier (anonymous vendor ID provided by iOS) — for fraud prevention and abnormal sign-in detection.
• Connection IP address — for service quality diagnostics, troubleshooting, and regional routing decisions. Retained for up to 30 days.
• Subscription status — synchronized with Apple via App Store In-App Purchase and Server-to-Server Notifications V2; records subscription start/end times, plan type, and renewal status.
• Traffic statistics — aggregated bytes per minute by direction, retained 90 days for quota management and billing reconciliation only. Destination domains and IPs are not recorded.

3. Information We Do NOT Collect

To maximize your privacy, the following information is never collected, never recorded, and not accessible to us:

• Browsing history — we do not record the specific websites, domains, or URLs you visit. Routing decisions are based on offline geo-classification databases; we do not read your destinations.
• Encrypted content — your data is end-to-end encrypted in transit. We cannot decrypt your application data (web pages, messages, video streams, etc.).
• System resources — we do not read your battery, CPU, memory, device model (beyond essential iOS-provided identifiers), or list of installed applications.

4. Third-Party Services

The Service shares the minimum necessary information with the following third parties only, all bound by strict data processing agreements:

• Apple Inc. — App Store In-App Purchase, subscription status synchronization, push notifications, and App Attest device authentication service (to prevent account abuse). App Attest verifies the legitimacy of your device and app via Apple, does not collect any identifying information about you, and only generates one-time device attestation tokens. Subject to Apple's Privacy Policy.
• Cloudflare, Inc. — website hosting (Cloudflare Pages), TLS termination, and ingress acceleration via Cloudflare's edge network. Cloudflare may log connection metadata (IP, timestamps) for abuse prevention.
• Alibaba Cloud — hosting of acceleration nodes within Mainland China for last-mile access to mainland services, without passing your identity information; only the necessary network traffic is forwarded.

5. Data Retention

• Account credentials (username, password hash) and subscription status: until you delete your account.
• Connection IP address: automatically deleted after 30 days.
• Traffic statistics (aggregated): automatically deleted after 90 days.
• Sign-in and security audit logs: automatically deleted after 180 days.

6. Deleting Your Account

You may delete your account and all associated data at any time. Two paths are available:

• In-app deletion (recommended): open the JetSpeed app and go to "Settings → Account → Delete Account"; confirm twice and the account is removed immediately.
• Email request: send an email to [email protected] with the subject "Delete Account" and your registered username. We will complete deletion and reply to confirm within 30 days.

After deletion, all your personal information is permanently removed and cannot be restored. A small amount of audit records required by applicable law (such as anti-fraud records, where applicable) may be retained in anonymized form until the legal retention period expires.

7. Your Rights

Regardless of your location, you have the following rights:

• Right of access — review the information we hold about you.
• Right to rectification — correct inaccurate or incomplete information.
• Right to erasure — request deletion of your information (see Section 6).
• Right to data portability — export your data in a structured, machine-readable format.

If you reside in the European Union, the United Kingdom (under GDPR), or California (under CCPA), you also have the additional rights granted by local law, including objection to processing, restriction of processing, and the right not to be subject to automated decision-making. Send all rights requests to [email protected]; we will respond within 30 days.

8. Data Security

We employ industry-standard security measures: TLS 1.3 for data in transit, mutual TLS (mTLS) certificate authentication between the server and acceleration nodes, and bcrypt / AES-256 encryption for sensitive fields (such as password hashes) at rest. We do not store your password in plain text.

9. Cross-Border Data Transfer

The Service's servers are distributed across the United States, Singapore, Japan, Hong Kong, and other regions. Within Mainland China, only acceleration nodes are deployed (these carry traffic only and do not store user identity). By using the Service, you understand and consent to the transfer of your data to the regions above for processing.

10. Children's Privacy

The Service is not directed to children under 13 years old (16 in the European Union). If we discover that a minor has registered without guardian consent, we will promptly delete the account and associated data. Guardians who notice such a situation should contact [email protected].

11. Changes to This Policy

We may update this policy from time to time. Material changes will be announced via in-app notification at least 30 days in advance. Continued use of the Service after the effective date of changes constitutes acceptance of the updated policy.

12. Contact Us

For any questions about this policy or your data, please contact:
Email: [email protected]
We will respond within 30 days.