StreamGate User Agreement and Data Processing Notice

This document describes the terms for using StreamGate and the categories of personal data and service data processed when you register, subscribe, connect Client Server nodes or use support and update features. It is intended to support transparency requirements under GDPR and notice obligations under CCPA / CPRA. Review and customize it for your deployment if your hosting, subprocessors or business practices differ.

1. Controller and contact

• Service: StreamGate
• Support contact: support@stream-gate.online
• Public service URL: https://stream-gate.online

2. Service scope

StreamGate provides downloadable clients, hosted relay and dashboard functionality, account recovery, subscription handling, software delivery and support surfaces that help you route network traffic between authorized nodes.

3. Categories of data we process

• Account and contact data, including mailbox addresses and messages you send through support flows.
• Access and security data, including access key identifiers, issuance state, revocation or block status, app identifiers, node identifiers, node names and authentication metadata.
• Subscription and billing data, including subscription type, expiry, promo eligibility, payment metadata and billing history that is necessary to operate the service.
• Service configuration data, including route names, local endpoints, transport mode, target proxy settings and related notes you store in the client or dashboard.
• Operational metadata, including session identifiers, timestamps, traffic counters, runtime events, version information, crash reports and diagnostics.
• Relay traffic and payload data that must be transported through the service in order to deliver the routing function. Such traffic is intended to be handled transiently in service memory for transport and security operations unless a feature explicitly stores more.
• Update and package delivery data, including current version, served package version, update history and client restart/update events.

4. Purposes of processing

We process the data above to:

• register users and deliver access keys;
• authenticate clients and authorize application instances;
• operate relay, portal, dashboard, update and support functions;
• protect the service, investigate abuse and maintain security;
• manage subscriptions, recover access and answer support requests;
• communicate operational or legal changes, including agreement revisions.

5. Legal bases

Where GDPR applies, the primary legal bases are:

• performance of a contract or steps requested before entering into a contract;
• legitimate interests in securing, operating and improving the service and preventing abuse;
• compliance with legal obligations where retention, accounting or enforcement records are required;
• consent where a deployment-specific flow explicitly asks for it.

6. Recipients and disclosures

Data may be disclosed to:

• service operators and administrators acting on behalf of StreamGate;
• infrastructure, hosting, mail delivery and security providers required to run the service;
• payment or billing providers used for subscription handling;
• advisors, auditors, regulators or authorities where disclosure is legally required or necessary to protect rights and security.

7. International transfers

Depending on the hosting and delivery providers used by the deployment, data may be processed in countries other than your own. Where required, appropriate safeguards should be used for such transfers.

8. Retention

• Account, subscription and access-control records are retained while the account is active and afterwards as needed for support, fraud prevention, security, accounting and legal compliance.
• Route, runtime and diagnostic metadata are retained for operational continuity, troubleshooting and abuse prevention.
• Relay traffic is intended to be processed for transport and runtime handling and not retained longer than necessary for that function unless a feature or incident workflow requires temporary retention.
• Agreement confirmations are retained to demonstrate which revision was accepted and when.

9. Your GDPR rights

Where GDPR applies, you may have rights to request access, rectification, erasure, restriction, portability, objection and to lodge a complaint with a supervisory authority, subject to applicable limitations.

10. Your California privacy rights

Where CCPA / CPRA applies, you may have rights to know, access, correct and delete certain personal information, and rights related to sensitive personal information and non-discrimination, subject to applicable exceptions. Unless a deployment-specific notice states otherwise, StreamGate is not intended to sell personal information or share it for cross-context behavioral advertising.

11. Security

We use administrative, technical and organizational measures intended to protect service data, access credentials and runtime operations. No transmission or storage system can be guaranteed to be perfectly secure, so you must also protect your mailbox, endpoints and internal services.

12. Customer responsibility

You are responsible for the internal services you expose, the legality of your routes and the content or systems you send through StreamGate. You must not use the service to violate law, third-party rights, network policy or data protection obligations owed to others.

13. Changes to this agreement

We may publish revised agreement versions to reflect legal, operational or product changes. The dashboard stores revision history, and the service may require explicit confirmation of a newer revision before continued connection.

14. Contact

For questions about privacy, access, support or this agreement, contact support@stream-gate.online.