"Paradox VPN" (the "App", "we", "us") is the publisher of the Paradox Android application available on Google Play. Our website is paradoxceo.pro. Contact details are in section 13.
We collect no personal data on our own servers. We do not maintain user accounts. We do not run analytics, crash reporting, or telemetry.
The App handles two pieces of information locally on your device, neither of which is transmitted to us:
All items below are stored in Android's SharedPreferences for our
app package only and never leave your device:
| Item | Purpose | When cleared |
|---|---|---|
| Subscription token (encrypted ID) | Re-fetch the current server list on launch or refresh | You tap Sign out, or uninstall the App |
| Last server-list snapshot (cached subscription body, plan info, expiry, usage) | So the App is usable offline and opens signed-in | You tap Sign out, or uninstall the App |
| Consent flag ("first-launch agreed") | Don't show the intro pages on every launch | You uninstall the App |
| Ping check URL | The URL used by the in-app reachability probe | You change it |
| Selected mirror node index | Remember which subscription mirror you chose | You tap Sign out, or uninstall the App |
| Last tunnel-start timestamp (epoch ms) | Show an accurate HH:MM:SS timer after the App process was killed while the VPN was running | You disconnect, or uninstall the App |
The App makes the following outbound connections:
| Destination | What is sent | Why |
|---|---|---|
| Subscription server (the host encoded inside your token, HTTPS over TLS 1.2/1.3) | Your token in the URL path; a static User-Agent string (HiddifyNext/4.0.0(android) …) | To download your current server list, plan expiry and usage counters. This is the only request the App makes on its own behalf. |
| The exit node you select (or one selected automatically), proxied via VLESS + TLS or WebSocket | All your device's network traffic, end-to-end encrypted between your device and the exit node | This is the VPN function: routing your traffic through a server in another country to bypass DPI and local censorship. |
127.0.0.1:16756 (loopback only, on your device) | HTTP requests with a local Clash API token | To read live throughput and pick exit nodes from inside the App. Traffic never leaves your device. |
https://www.gstatic.com/generate_204 by default, or the URL you set in Settings | An empty HTTP GET, every few seconds while you watch the Connect screen | To verify the tunnel is reachable. You can change this URL. |
We do not operate the subscription servers or the exit nodes ourselves. They are operated by your VPN operator (the person or organisation that sold you the subscription token). Their privacy practices are governed by their own policies and the law of the country where their servers reside. The App acts only as a client — we are not a "party" to your traffic.
Paradox embeds no third-party SDKs. Specifically, the App does NOT include any of the following:
The only network library code inside the APK is the open-source sing-box tunnel core (used to operate the VPN itself) and the Android standard library.
| Permission | Why we request it |
|---|---|
BIND_VPN_SERVICE | Required by Android to operate a VPN tunnel via VpnService. |
INTERNET, ACCESS_NETWORK_STATE | Open and monitor the tunnel; detect Wi-Fi ↔ cellular handoffs so the tunnel can rebind. |
CHANGE_NETWORK_STATE | sing-box's network manager uses ConnectivityManager.requestNetwork() to follow the underlying transport. |
ACCESS_WIFI_STATE, CHANGE_WIFI_STATE | sing-box queries Wi-Fi state when picking the underlying network; without this it aborts. |
FOREGROUND_SERVICE, FOREGROUND_SERVICE_SPECIAL_USE | Required by Android 14+ to keep the VPN service alive in the background. We declare the specialUse / vpn subtype. |
POST_NOTIFICATIONS | Required on Android 13+ to show the persistent tunnel notification. |
The App does not request access to: contacts, photos, media, files, location, camera, microphone, SMS, call logs, calendar, the list of installed apps, Bluetooth, or background location.
127.0.0.1 only; it is unreachable from other devices on your network.We retain no personal data about you on our infrastructure, so there is nothing on our side to delete. All data the App handles is on your device.
To erase every piece of data the App stores on your device:
If your operator stores anything about your subscription on their server, deletion of that data is governed by their privacy policy. Ask them directly.
Because we do not collect, store or process personal data on our servers, the rights granted by privacy laws such as the GDPR (access, rectification, erasure, restriction, portability, objection) have no data to apply to on our side. You can exercise the equivalent rights on the data stored on your device by using the Sign Out / Uninstall flow above.
If you nonetheless wish to contact us about a privacy question, see section 13.
Paradox VPN is not directed at children under 13 and is not designed for their use. We do not knowingly handle data of children under 13. If you are a parent or guardian and believe a child has used the App, uninstall the App to remove any local data.
If we materially change what data the App handles or transmits, we will update the Last updated date at the top of this page and announce the new version inside the App. Continued use of the App after a change indicates acceptance of the updated policy.
For questions about this policy, you can reach us:
[CONTACT EMAIL TO BE PROVIDED]See also our Terms of Service.