Back to Extension
Official DocumentBrowser Extension

Privacy Policy ZenXNet VPN (Extension)

Effective Date:August 13, 2025
Last updated:June 23, 2026
Summary: ZenXNet VPN is privacy-first. We do not track your browsing, read page content, or use any third-party analytics or ad networks. To run the service the extension sends only a pseudonymous device identifier (HWID) and your browser type to ZenXNet's own servers, solely to deliver your server list and enforce your subscription's device limit. All preferences are stored locally on your device.

1. What Data We Process

ZenXNet VPN is built privacy-first. We process the absolute minimum required to operate the service, and we never track your browsing.

  • Stored locally only (never sent to us): your subscription link, expiration date, selected server, manual proxy parameters, per-site bypass/whitelist rules, auto-connect and WebRTC flags, and your proxy credentials (kept in obfuscated form in the browser's storage).
  • Sent to ZenXNet servers to run the service: a pseudonymous device identifier (HWID) — a random value generated on your device that is not linked to your real identity — used to enforce the number of simultaneous devices allowed by your subscription; and your browser type and version, used to return a compatible configuration.
We do NOT collect or store your browsing history, the content of the pages you visit, your name, email or any personal profile. We do not sell or share your data with third parties, and we use no advertising or analytics SDKs.

2. Network Requests and Scope

  • Subscription & servers: requests to https://s.mist-layer.net/ and its backup domain https://on.zenxnet.com/ to fetch your server list and verify subscription validity. The check runs roughly every 2 hours; a local check of the cached expiration date happens every minute.
  • Configuration bridge: requests to ZenXNet-operated endpoints https://api.zenxnet.com/, https://v1.read-base.org/ and https://v2.edge-metrics.net/. The read-base.org and edge-metrics.net domains are backup mirrors that we own and operate so the service stays reachable when the primary domain is blocked by network censorship. These requests carry your HWID and browser type (see Section 1).
  • IP Check: optional requests to public services (e.g. api.ipify.org, icanhazip.com, api.my-ip.io) solely to display your current IP address in the interface.
  • Proxy Authentication: the extension handles onAuthRequired events (HTTP 407) and passes your credentials to the selected proxy server for authorization. The extension does not read, analyze, or save the content of the pages you visit.
  • WebRTC: an anti-leak policy is applied locally to prevent your real IP address from leaking through the browser.

3. Browser Permissions and Their Purposes

PermissionWhy It's Needed
proxyTo enable/disable the system proxy to route browser traffic through the selected server.
webRequest, webRequestAuthProviderTo handle Proxy Authentication (HTTP 407) on any sites. Page content is neither read nor saved.
privacyTo apply a WebRTC policy (anti-leak) that prevents your real IP address from being exposed.
declarativeNetRequestFor secure rules governing requests to the ZenXNet API (fetching subscription data, setting request headers). Not used for tracking visited sites.
storageFor local storage of your settings: subscription link, favorite server, and proxy parameters. Uses the browser's local and synced storage.
notificationsTo show local notifications about connection status and subscription expiry.
alarmsTo schedule periodic background checks of your subscription's validity.
Host access (<all_urls>)Required so the proxy can route any website you choose and so proxy authentication works on any site. The extension does not read or modify page content.
ZenXNet domainsAccess to on.zenxnet.com, api.zenxnet.com, s.mist-layer.net, v1.read-base.org, v2.edge-metrics.net and zenxnet.com to communicate with ZenXNet infrastructure for subscriptions, server lists and failover.

4. Data Transfer to Third Parties

We do not sell, rent or share your data with third parties, advertising networks or third-party analytics. All proxy servers and mirror domains listed above are owned and operated by ZenXNet. The only external requests are the optional public IP-echo services named in Section 2, which receive nothing more than a connection from your IP address in order to return it.

5. Children

The product is not intended for persons under 13 years of age and intentionally does not collect information about children.

6. Security

We design the extension according to the privacy by design principle: minimal permissions, local settings storage, and data minimization — only a pseudonymous device ID and your browser type ever leave your device, solely to run the service. We regularly release updates to fix bugs and improve the product's security.

7. Contacts

For privacy and support inquiries, please contact us by email: support@zenxnet.com.

© 2025–2026 ZENXNET GLOBAL LTD. Company No. 17127431. All rights reserved.