TunnelBear Privacy Report

Encryption
In Transit | Yes |
At rest? | Yes |
All network communications and capabilities? | Yes |
Security Updates
Automatic, regular software/ firmware updates? | No |
Product available to use during updates? | No |
Passwords
Mandatory password? | Yes |
Two-Factor authentication? | Yes |
Multi-Factor authentication? | No |
Vulnerability Management
Point of contact for reporting vulnerabilities? | Fill out a support ticket |
Bug bounty program? | No |
Privacy Policy
Link | https://www.tunnelbear.com/privacy-policy |
Specific to device? | No |
Readable? | Yes |
What data they log | Payment info, email, browser version, total data used in a month |
What data they don’t log | IP addresses, DNS queries, information about the applications, services or websites users use while connected to the service. |
Can you delete your data? | Yes |
Third-party sharing policies | Shares with third parties that support for payment and email distribution |
Surveillance
Log camera device/ app footage | n/a |
Log microphone device/ app | n/a |
Location tracking device/ app | No |
Parental Controls
Are there parental controls? | No |
Company History
Any security breaches/ surveillance issues in past? | No |
Did they do anything to fix it? | n/a |
Additional Security Features
Anything like privacy shutters, privacy zones, etc.? | n/a |