1. About This App

Marshall VPN is a VPN application for iOS developed by Marshall Relay Limited (Hong Kong). The App operates its own VPN server infrastructure and also functions as a universal VPN client, allowing users to import third-party server configurations.

Marshall VPN allows users to generate VPN access keys, connect to Marshall-operated servers, import subscription links from third-party providers, view and manage server lists, check server availability, and establish encrypted network connections using the iOS NetworkExtension framework.

2. Core Principle

3. Marshall VPN Servers

Marshall VPN operates its own VPN server infrastructure. When you use Marshall servers:

• Your VPN access key is generated based on a unique device identifier and stored locally on your device.
• The Developer does not log your browsing activity, DNS queries, traffic content, connection timestamps, or bandwidth usage on its servers.
• Server-side infrastructure is designed to minimize data retention. Only the minimum data necessary for service operation (such as connection state) is processed transiently and not stored persistently.

3.1 Telegram bot subscription

If you obtain or renew access through the Marshall VPN Telegram bot, we process your Telegram user ID, subscription status, and subscription period to issue keys and manage access. This processing is separate from data stored locally in the App. It is not used for advertising or unrelated profiling.

4. Data Stored on Your Device

The following data is stored locally on your device only and is never transmitted to the Developer for tracking or analytics:

4.1 Encrypted Storage (iOS Keychain)

• VPN access key / Subscription URL — your VPN credentials or the HTTPS subscription link. Protected by iOS Keychain with kSecAttrAccessibleAfterFirstUnlock.
• Server configuration cache — server names, addresses, ports, protocol parameters (VLESS, VMess, Trojan, Shadowsocks), and connection settings.

4.2 Local Preferences (UserDefaults)

• Selected server ID — which server you last selected.
• Language preference — your chosen interface language.
• Auto-select setting — whether automatic best-server selection is enabled.

This data is sandboxed within the App and is automatically deleted when you uninstall Marshall VPN.

5. Network Activity

5.1 Key Generation

When you generate a VPN key within the App, a request is sent to the Marshall API containing only a unique device identifier. This identifier is used solely to create your VPN access credentials. No personal information (name, email, phone number, Apple ID) is collected or transmitted during this process.

5.2 Subscription Fetch

When using third-party servers, the App downloads server configuration data directly from the subscription URL you provided. The request goes from your device to the subscription provider.

5.3 Server Latency Checks

The App performs TCP connection tests to servers to measure round-trip latency. These are direct connections from your device. No results are sent anywhere.

5.4 Service Availability Checks

The App can optionally check whether popular internet services are reachable by sending lightweight HTTP HEAD requests directly from your device. No results are collected or transmitted.

5.5 Network Tunnel

When you connect, Marshall VPN uses the iOS NetworkExtension framework and the open-source sing-box engine to create an encrypted tunnel. All network traffic flows directly between your device and the selected server.

6. In-App Purchases

Marshall VPN offers subscription plans and one-time purchases through Apple's App Store (StoreKit 2). All payment processing is handled entirely by Apple. The Developer does not collect, process, or store any payment information, credit card details, or Apple ID credentials.

7. Optional Feedback

Marshall VPN includes an optional, in-app feedback form. If you choose to submit feedback:

• Only the text you type is sent.
• The submission is fully anonymous — no device identifiers, IP address, account information, or server configuration is attached.
• You are never required to use this feature.

8. Data We Do NOT Collect

The Developer does not collect, store, process, or have access to:

• Personal identification information (name, email, phone number, Apple ID)
• Device identifiers (IDFA, IDFV, serial number)
• IP addresses or geographic location data
• Browsing history, DNS queries, or network traffic content
• Connection logs, session timestamps, durations, or bandwidth usage
• App usage patterns or behavioral analytics
• Crash reports or diagnostic data
• Payment information or financial data

9. Third-Party Code and SDKs

Marshall VPN does not include advertising frameworks, analytics services, crash reporting SDKs, social media SDKs, or attribution tracking SDKs.

The only third-party component is the open-source sing-box library (Libbox), which runs entirely on your device.

10. Third-Party Servers

When using third-party server configurations (imported via subscription links), the servers you connect to are operated by your subscription provider, not by the Developer. The Developer does not control, operate, or monitor these third-party servers and bears no responsibility for their data handling practices.

11. Data Security

• Sensitive data is stored in the iOS Keychain, Apple's hardware-backed encrypted storage.
• Network tunnel configurations use modern encryption protocols (VLESS + Reality, TLS 1.3).
• The App enforces HTTPS for subscription links.

12. Children's Privacy

Marshall VPN is not directed at children under the age of 13. The Developer does not knowingly collect personal information from children.

13. Your Rights and Data Control

• Delete all data — uninstall the App. All locally stored data is automatically removed.
• Reset subscription — use the "Change subscription" button within the App.
• Remove VPN configuration — go to iOS Settings → General → VPN & Device Management.
• Manage subscriptions — go to iOS Settings → Apple ID → Subscriptions.

14. Changes to This Policy

This Privacy Policy may be updated to reflect changes in the App's functionality or applicable regulations. The "Last updated" date at the top indicates the most recent revision.

15. Transparency and security assessments

Marshall may commission independent security reviews of the app, API, or infrastructure as the service matures and publish summaries when practical. VPN client software has no universal mandatory certification; such reviews are voluntary transparency measures, distinct from optional industry certifications (for example ISO 27001) that organizations sometimes pursue separately.

16. Contact

If you have questions about this Privacy Policy:

Email: support@appmarshall.com

Registered address: Unit 2A, 17/F, Glenealy Tower, No.1 Glenealy Central, Hong Kong S.A.R