Last Updated of Stremzi Privacy Policy: January 2026
1. Introduction to Stremzi Privacy Policy
The Stremzi Privacy Policy explains how Stremzi (“we,” “us,” or “our”) collects, processes, stores, and protects your personal data when you use our IPTV streaming services. This policy applies to all users of stremzi.com, our mobile applications, and the Stremzi platform across 160+ countries.
We are committed to transparency, GDPR compliance, CCPA compliance, and protecting your privacy. By using Stremzi services, you agree to the data practices described in Stremzi Privacy Policy. If you do not agree with this policy, please do not use our services.
This document is written in plain language to help you understand your rights and our responsibilities. For technical or legal questions, contact our Data Protection Officer at dpo@stremzi.com.
2. Information We Collect
We collect different types of information to provide and improve our IPTV streaming service. The categories below describe what data we collect and why.
2.1 Personal Information
When you create an account or subscribe to Stremzi, we collect:
- Email address (for account access and service communication)
- Username and password (encrypted using bcrypt hashing)
- Billing information (name, billing address, country)
- Payment data (processed exclusively through PCI-DSS compliant third parties — we never store raw credit card numbers)
- IP address (for fraud prevention and regional content licensing)
- Device information (device type, operating system, app version)
2.2 Usage Data
To deliver and improve our streaming service, we automatically collect:
- Streaming history and viewing preferences
- Device type, operating system, browser type
- Connection timestamps, session duration, and bandwidth usage
- Channel and content selection patterns
- Technical diagnostic data (buffering events, error logs)
- Approximate geographic location (country/region level only)
2.3 Communication Data
When you contact our support team, we may collect:
- Support tickets and chat conversations
- Email correspondence with our team
- Voice or text messages via WhatsApp, Telegram, or live chat
- Survey responses and feedback
2.4 Cookies and Tracking Data
We use cookies and similar technologies. See Section 11 (Cookies and Tracking) for full details.
3. How We Use Your Information
Stremzi uses your personal data only for legitimate business purposes:
- Service delivery: to provide IPTV streaming, manage your account, and process subscriptions
- Payment processing: to handle transactions through Stripe, PayPal, and cryptocurrency processors
- Customer support: to respond to inquiries via email, WhatsApp, Telegram, and live chat
- Service improvement: to analyze usage patterns and develop new features
- Security: to detect and prevent fraud, account abuse, and unauthorized access
- Legal compliance: to comply with tax, financial, and regulatory obligations
- Communication: to send service updates, security alerts, and (with consent) marketing
- Personalization: to recommend content based on your viewing preferences
We do not use your data for:
- Selling to third-party advertisers
- Profiling for purposes unrelated to our service
- Sharing with data brokers
- Any purpose not disclosed in this policy
4. Legal Basis for Processing (GDPR Article 6)
If you are in the European Union, the United Kingdom, or another GDPR-equivalent jurisdiction, Stremzi processes your personal data based on the following legal grounds:
- Contract performance: to deliver the IPTV services you subscribed to
- Legitimate interest: to improve our service, prevent fraud, and ensure security (balanced against your privacy rights)
- Legal obligation: to comply with tax, financial, anti-money-laundering, and regulatory laws
- Consent: for marketing communications, optional cookies, and personalization features (you can withdraw consent anytime)
For each processing activity, we rely on the most appropriate legal basis under applicable data protection laws. You can request details about the legal basis for any specific processing activity by contacting privacy@stremzi.com.
5. Data Security
Stremzi implements industry-standard security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:
- Encryption in transit: TLS 1.3 (HTTPS) for all data transmission
- Encryption at rest: AES-256 encryption for stored data
- Password security: bcrypt hashing with per-user salts (we never store plaintext passwords)
- Network security: Cloudflare DDoS protection and Web Application Firewall
- Access control: strict role-based access (RBAC) for employees, with multi-factor authentication required
- Security audits: quarterly penetration testing and annual third-party security reviews
- Incident response: documented procedures for data breach detection, containment, and notification
In the unlikely event of a data breach affecting your personal information, we will notify affected users within 72 hours as required by GDPR Article 33, and we will report incidents to relevant supervisory authorities.
6. Data Sharing and Disclosure
Stremzi does not sell your personal data. We share data only in the following limited circumstances:
- Payment processors: Stripe, PayPal, and cryptocurrency processors (BitPay) to handle transactions securely
- Service providers: hosting providers, email delivery (SendGrid), customer support tools, and analytics providers — all bound by data processing agreements
- Legal compliance: when required by valid legal process such as court orders, subpoenas, or government requests
- Business transfers: if Stremzi is acquired or merged, your data may transfer to the new entity (you will be notified before any change takes effect)
- Fraud prevention: to protect Stremzi and our users from fraud, abuse, or security threats
- With your consent: any other sharing requires your explicit prior consent
All third parties are contractually obligated to protect your data with security measures equivalent to ours.
7. Third-Party Services
Stremzi integrates with the following third-party services that may process your personal data:
| Service | Purpose | Data Processed |
|---|---|---|
| Stripe | Payment processing | Billing details, transaction data |
| PayPal | Payment processing | Email, transaction data |
| BitPay | Cryptocurrency payments | Wallet address, transaction ID |
| SendGrid | Transactional email | Email address |
| Google Analytics 4 | Usage analytics | Anonymized IP, page views |
| Cloudflare | CDN and security | IP address, request data |
| Trustpilot | Reviews platform | Email (with consent) |
Each third-party service has its own privacy policy. We encourage you to review them. Stremzi only shares the minimum data required for each service to function.
8. Your Rights Under GDPR (EU and UK Users)
If you are located in the European Union, the United Kingdom, or another GDPR-equivalent jurisdiction, you have the following rights:
- Right to be informed about how your data is collected and used
- Right of access to obtain copies of your personal data
- Right to rectification of inaccurate or incomplete data
- Right to erasure (“right to be forgotten”) under specific conditions
- Right to restrict processing in certain circumstances
- Right to data portability in a structured, machine-readable format (JSON or CSV)
- Right to object to processing for direct marketing or based on legitimate interest
- Right not to be subject to automated decision-making that produces legal effects
- Right to withdraw consent at any time without affecting prior lawful processing
- Right to lodge a complaint with your national supervisory authority
To exercise any of these rights, email privacy@stremzi.com with a clear description of your request. We respond to all GDPR requests within 30 days as required by law. You may need to verify your identity before we process your request.
9. Your Rights Under CCPA (California Residents)
California residents have specific rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
- Right to know what personal information is collected, used, shared, and sold
- Right to delete personal information held by Stremzi (with some exceptions)
- Right to correct inaccurate personal information
- Right to opt-out of sale (Stremzi does not sell personal data)
- Right to limit use of sensitive personal information
- Right to non-discrimination for exercising your CCPA rights
California residents can submit verifiable consumer requests via privacy@stremzi.com. We respond within 45 days as required by law, with one possible 45-day extension. Authorized agents may submit requests on your behalf with proper documentation.
10. Data Retention
Stremzi retains your personal data only as long as necessary to provide our services and comply with legal obligations:
- Active account data: retained for the duration of your subscription
- After account closure: retained for 90 days to allow account recovery
- Billing and tax records: retained for 7 years to comply with financial regulations
- Support communications: retained for 2 years for service improvement
- Anonymized usage data: retained indefinitely for statistical analysis (cannot be linked back to you)
- Marketing consent records: retained for 3 years after withdrawal
After applicable retention periods, your data is permanently deleted from our active systems and from all backups within 30 days of the next backup rotation cycle.
11. Cookies and Tracking
Stremzi uses cookies and similar technologies (pixels, local storage, session tokens) to:
- Keep you logged in across sessions (essential cookies)
- Remember your preferences (functional cookies)
- Analyze site traffic and performance (analytics cookies)
- Detect and prevent fraud (security cookies)
You can control cookie preferences through our cookie consent banner or your browser settings. Essential cookies cannot be disabled because they are required for the service to function. For complete details, see our Cookie Policy.
12. International Data Transfers
Stremzi operates servers and edge nodes globally, including in the European Union, United States, and Asia-Pacific regions. Your personal data may be transferred to and processed in countries outside your country of residence.
When transferring data internationally, we ensure appropriate safeguards:
- EU Standard Contractual Clauses (SCCs) for transfers outside the European Economic Area
- UK International Data Transfer Agreement for transfers outside the United Kingdom
- Adequacy decisions where the European Commission has determined a country provides adequate protection
- Encryption in transit and at rest regardless of the data’s location
You can request a copy of the safeguards in place by contacting privacy@stremzi.com.
13. Children’s Privacy
Stremzi services are intended for users aged 18 and older. We do not knowingly collect personal data from children under 18. If you are a parent or guardian and believe your child has provided us with personal data, please contact privacy@stremzi.com immediately. We will delete such information within 7 days of verification.
We do not knowingly market our services to minors, and our payment systems require valid adult-issued payment methods.
14. Compliance Certifications
Stremzi maintains compliance with major international data protection and security standards:
- GDPR — EU General Data Protection Regulation (Regulation 2016/679)
- CCPA / CPRA — California Consumer Privacy Act and Privacy Rights Act
- UK Data Protection Act 2018 and UK GDPR
- PCI-DSS Level 1 — for all payment card data handling
- TLS 1.3 — for all data transmission encryption
- ISO 27001 principles — for information security management
For compliance inquiries or to request our compliance documentation, contact our Data Protection Officer at dpo@stremzi.com.
15. Changes to Stremzi Privacy Policy
Stremzi may update Stremzi Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes:
- We will update the “Last Updated” date at the top of this page
- We will notify registered users via email at least 30 days before changes take effect
- We will display a prominent notice on stremzi.com
- For significant changes affecting your rights, we may request renewed consent
Continued use of Stremzi services after the effective date of an updated Stremzi Privacy Policy constitutes acceptance of the changes. If you do not agree with the updated terms, you should stop using our services and may request account deletion.
We encourage you to review Stremzi Privacy Policy periodically.
16. Contact Us
If you have questions, concerns, or requests regarding Stremzi Privacy Policy or your personal data, please contact us through the following channels:
- Privacy inquiries: privacy@stremzi.com
- Data Protection Officer (DPO): dpo@stremzi.com
- General support: support@stremzi.com
- EU representative: Available upon request
- UK representative: Available upon request
- Postal address: Available upon written request to privacy@stremzi.com
We aim to respond to all privacy inquiries within 7 business days. Formal GDPR or CCPA requests are handled within the legally required timeframes (30 and 45 days respectively).
Related Policies
For more information about how Stremzi handles your data and operates our service, see:
Stremzi Privacy Policy was last reviewed and updated on January 15, 2026, by the Stremzi Legal and Compliance Team. © 2026 Stremzi IPTV. All rights reserved.