Last updated: January 18, 2026
We don't want your data. We built tunn to be a simple tunnel service, not a data collection operation. This policy explains what we do and don't collect.
We do not log, inspect, or store your tunnel traffic content.
Our proxy code passes data through using Go's io.Copy() - the actual bytes flowing through your tunnel are never parsed, logged, or stored. There is no code path that records traffic content.
In L7 proxy mode (the default), we terminate TLS, which means we technically could see your traffic. We don't. If this concerns you, self-host tunn or use L4 passthrough mode (coming soon) which provides true end-to-end encryption.
If we receive a valid subpoena or court order, we will comply with the law. This means we would hand over the data we actually have: your email, IP addresses, connection times, and bandwidth usage. We cannot hand over traffic content because we don't have it.
Account info is kept while your account exists. Connection logs are retained for 30 days. Bandwidth counters reset monthly. You can request account deletion by emailing us.
We don't use analytics services, tracking pixels, or third-party cookies. The only cookie we set is for authentication.
tunn is open source. You can read the code to verify everything in this policy. You can also self-host if you want complete control.
We may update this policy. Changes will be posted here with an updated date.
Questions? Email privacy@tunn.to.