Privacy Policy

Last updated: March 2026

1. Introduction

Giraffos SpA ("we", "us", "our") operates GiraShare. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our proxy bandwidth reselling service. We are committed to protecting your privacy and handling your data in an open and transparent manner.

2. Data We Collect

We collect the following types of information:

Account Information

  • Full name
  • Email address
  • Password (stored as a cryptographic hash, never in plain text)
  • Country of residence

Payment Information

  • Payment details are processed and stored by Stripe. We do not store your full credit card number on our servers.
  • We retain Stripe customer IDs, transaction records, and billing history for accounting purposes.

Usage Data

  • Bandwidth consumption metrics (volume, timestamps)
  • Proxy type usage (residential, datacenter, mobile)
  • API request logs (endpoints accessed, response codes)
  • IP address used to access our dashboard
  • Browser type and device information

3. How We Use Your Data

  • Provide the service: authenticate your account, route proxy requests, track bandwidth usage.
  • Billing: process payments, generate invoices, handle refund requests.
  • Support: respond to your inquiries, troubleshoot issues, provide technical assistance.
  • Analytics: understand usage patterns to improve our service, optimize infrastructure, and develop new features.
  • Security: detect and prevent fraud, abuse, and violations of our Terms of Service.
  • Communication: send service-related notifications, billing alerts, and important updates.

4. Third-Party Services

We share data with the following third-party providers:

Stripe

Payment processing. Stripe processes your payment information in accordance with their privacy policy. We share your email and billing details to facilitate transactions.

DataImpulse

Proxy infrastructure provider. We share proxy authentication credentials (not your personal data) to route your proxy requests through their network.

Cloudflare

CDN and DDoS protection. Cloudflare processes request data (IP addresses, request headers) to deliver our website and protect against attacks.

5. Data Retention

  • Account data is retained for as long as your account is active.
  • Usage logs are retained for up to 12 months for analytics and security purposes.
  • Billing records are retained for 7 years to comply with tax and accounting regulations.
  • Upon account deletion request, personal data is deleted within 30 days, except where retention is required by law.

6. Your Rights

You have the right to:

  • Access: request a copy of the personal data we hold about you.
  • Correction: request correction of inaccurate or incomplete personal data.
  • Deletion: request deletion of your personal data, subject to legal retention requirements.
  • Portability: request a machine-readable export of your data.
  • Objection: object to the processing of your data for specific purposes.
  • Restriction: request that we limit how we use your data.

To exercise any of these rights, contact us at: [email protected]. We will respond within 30 days.

7. Cookies

We use minimal cookies, limited to what is strictly necessary for the service to function:

  • Authentication session cookie: keeps you logged in. Essential for service operation.
  • Locale preference: remembers your language selection.

We do not use advertising cookies, tracking cookies, or third-party analytics cookies.

8. Children's Privacy

GiraShare is not intended for use by individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including encryption in transit (TLS/SSL), encryption at rest for sensitive data, secure password hashing, and regular security assessments. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

10. GDPR Compliance

If you are a resident of the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • We process your data based on legitimate interest (providing the service you signed up for) and your consent.
  • You may withdraw consent at any time by contacting us.
  • You have the right to lodge a complaint with a supervisory authority in your country of residence.
  • Data transfers outside the EEA are protected by appropriate safeguards.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by sending an email to the address associated with your account at least 14 days before the changes take effect. We encourage you to review this page periodically.

12. Contact

If you have any questions about this Privacy Policy or our data practices, contact us at: [email protected]

Giraffos SpA
Data Protection Inquiries
Republic of Chile
[email protected]