Last updated: May 2026
We collect the absolute minimum data necessary to operate the service. We don't want your data. The less we have, the less can be compromised, subpoenaed, or leaked.
| Data | Purpose | Retention |
|---|---|---|
| Account number (random) | Authentication | Until account closes |
| Password hash (bcrypt) | Authentication | Until account closes |
| Active plan + expiry | Billing | Until account closes |
| VM ID, WireGuard keys | Provisioning | Deleted when popped |
| VM IP address (internal) | Networking | Deleted when popped |
System logging on the hypervisor is configured to use volatile storage only (RAM). Logs are never written to disk and are wiped on every reboot. There is no persistent audit trail of system activity.
All customer VM disks are stored on a LUKS-encrypted partition. The encryption key is entered manually at boot and exists only in RAM while the server is running. If the server is powered off or seized, the encrypted partition is unreadable.
When you pop a bubble:
There is no undo. There is no retention period. There is no backup. The data is gone.
We do not share any customer data with third parties except when required by valid legal process (subpoena, court order) or for CSAM reports to NCMEC as required by federal law. We do not use analytics services, advertising networks, or data brokers. There are no third-party scripts on this website.
If we receive a valid legal request for customer data, we can only provide what we have — which is very little. We cannot provide browsing history, connection logs, or IP addresses because we don't collect them.
We may update this policy. Changes will be posted on this page with an updated date.
For privacy concerns: admin@bubbl.cx