Privacy Policy

Effective date : 2025/01/01

• Introduction

eSIMno ('eSIMno,' 'we,' 'us,' or 'our') values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, retain, and protect your personal information when you use our website, applications, products, services, or interact with us in any other way (collectively, the 'Services').

By registering an account, accessing our website, or using our Services, you acknowledge and agree to the terms outlined in this Privacy Policy. Please read this document carefully to understand your rights and choices regarding your personal information.

• Applicability of this Privacy Policy

This Privacy Policy applies to users of eSIMno’s Services globally, including those who interact with our website, mobile applications, partner platforms, and other digital tools.

This Privacy Policy specifically applies to:

• End Users: Individuals who register an account on eSIMno and use our Services for personal purposes.
• Business Users: Entities that use eSIMno’s Services for their own business needs and may provide us with personal data related to their customers.
• End Customers: Individuals who receive eSIM services purchased by other eSIMno account holders, such as businesses or resellers.
• Job Applicants: Individuals who submit job applications to eSIMno.

This Privacy Policy applies unless a different privacy notice is provided for a specific service or interaction.

• How We Collect, Disclose, and Use Personal Information
eSIMno collects personal information in several ways, depending on how you interact with our Services:
• Directly from you: When you create an account, sign up for communications, place an order, make a purchase, or contact us through phone, email, or other means.
• Automatically: Through cookies, server logs, and other technologies when you use our Services or interact with our emails, in compliance with applicable laws and with your consent where required.
• From other sources: Including our business partners, service providers, social media platforms, publicly available sources, and other third parties. For example, if you apply for a job at eSIMno, we may conduct a background check.

eSIMno as a Data Controller:

eSIMno acts as a data controller when it determines the purposes and means of processing personal data. As a data controller, we are responsible for ensuring compliance with data protection laws. Key activities under this role include:
• Service Delivery: Using personal data to provide and manage eSIMno’s services.
• Fraud Prevention: Detecting and preventing fraudulent activities.
• Legal Compliance: Ensuring adherence to financial, legal, and regulatory obligations.
• Service Enhancement: Improving and developing products and services through data analysis.
• Job Application Processing: Handling job applicant data securely.

eSIMno as a Data Processor:

In some cases, eSIMno acts as a data processor when providing services on behalf of Business Users. This applies when:

• Business Users manage End Customers: eSIMno processes personal data for End Customers under the direction of Business Users.
• Service Execution for Business Users: Such as account creation and eSIM distribution on behalf of Business Users.

When acting as a data processor, eSIMno follows the instructions of the data controller (the Business User) and ensures compliance with data protection laws and contractual obligations. In such cases, users should refer to the privacy policy of the respective Business User for more details on data handling and protection.

• Information We Collect
eSIMno collects different types of personal information depending on your interaction with our Services. Below are examples of the types of data we collect and their intended use:
• Account Registration
  • Types of Data: Name, email, and contact information. We also collect details related to actions performed while logged in.
  • Purpose: To provide account functionalities such as easy checkout, saving preferences, and transaction history. We also process this information to fulfill our contract with you.
• Biometric Information
  • Types of Data: Biometric identifiers from photo IDs and selfies.
  • Purpose: To verify identity through the eKYC process where required by law, with your explicit consent.
• Business Users
  • Types of Data: Name, email, phone number, and address of employees from Business Users.
  • Purpose: To communicate with business clients regarding projects, services, and billing.
• Necessary Online Tracking Technologies
  • Types of Data: Cookies, clear GIFs, browser type, operating system, IP address, domain name, click-activity, referring website, and timestamp.
  • Purpose: To ensure the efficient operation of our website.
• Non-Essential Tracking Technologies
  • Types of Data: Cookies and pixels that track website interactions and facilitate behavior-based advertising.
  • Purpose: To collect analytics and serve targeted advertisements with your consent, where required by law.
• Demographic Information
  • Types of Data: Age, location, and similar demographic details.
  • Purpose: To better understand users and offer personalized services.
• Job Applicants
  • Types of Data: Contact information, education, and job history.
  • Purpose: To evaluate candidates for employment, comply with legal obligations, and maintain efficient workforce operations.
• Feedback/Support
  • Types of Data: Name, email, and any content shared when contacting support.
  • Purpose: To respond to user inquiries and feedback.
• Mobile Devices
  • Types of Data: Unique identifiers from your mobile device when accessing our website.
  • Purpose: To identify unique visitors and track website visits.
• Order Placement
  • Types of Data: Name, billing/shipping address, email, phone number, and payment details.
  • Purpose: To fulfill your orders and provide our Services.
• Partner Promotions
  • Types of Data: Information submitted as part of a co-branded promotion with a partner company.
  • Purpose: To manage and execute promotional campaigns.
• Data Retention

We retain your personal information only for as long as necessary to achieve the purposes outlined in this Privacy Policy, including fulfilling legal, regulatory, accounting, and operational obligations. Once your data is no longer needed, we take appropriate measures to securely delete, anonymize, or archive it in accordance with applicable laws and best practices.

The duration for which we store personal data depends on factors such as the type of information collected, its sensitivity, legal requirements, and our operational needs. In cases where retention is no longer justified, we ensure that personal data is either securely erased or maintained in a form that does not allow identification.

• How We Use Personal Information
In addition to the purposes outlined in this Privacy Policy, we use your personal information for the following purposes:
• To verify your identity when you access our website or services.
• To provide, manage, and improve our products and services, including processing transactions and handling refunds.
• To enhance user experience by optimizing our website, streamlining the checkout process, and personalizing content.
• To analyze user behavior, conduct research, and develop new features or services.
• To communicate with you regarding support requests, inquiries, or feedback.
• To send marketing and promotional messages about our services, special offers, or partner promotions (where permitted by law).
• To prevent, detect, and mitigate fraudulent, unauthorized, or illegal activities, as well as enforce our terms and policies.
• To diagnose and resolve technical issues affecting the functionality of our website and services.
• To fulfill our legal and regulatory obligations and to protect our rights and interests.
• For internal administrative purposes, including managing customer relationships and business operations.
• For any additional purposes to which you provide explicit consent.
In many cases, we process your data for multiple reasons. For instance, if you make a purchase, we process your information both to fulfill our contract and to retain transaction details for future inquiries or compliance purposes. Depending on the context, data processing may be based on your consent, legal requirements, contractual necessity, or our legitimate business interests.


• How We Share Personal Information
In addition to the specific situations discussed elsewhere in this Privacy Policy, we may disclose personal information in the following situations:

Business Transfers and Affiliates: If our company undergoes a merger, acquisition, restructuring, or sale of assets, your personal information may be transferred as part of that transaction. We may also share your data with our corporate affiliates, including subsidiaries, parent companies, and other entities under common control, to ensure seamless service and operational efficiency.

Legal and Regulatory Compliance: We may disclose information when required to do so by law, such as in response to court orders, subpoenas, or other legal processes. Additionally, we may share data to enforce our policies, protect our rights, prevent fraud, address security concerns, or comply with applicable regulations.

Third-Party Service Providers: To operate our business effectively, we may engage third-party service providers to assist with payment processing, fraud detection, customer support, technical infrastructure, analytics, marketing, and order fulfillment. These providers are contractually obligated to protect your data and use it solely for the purposes specified.

Promotional Collaborations: If you participate in promotions, sweepstakes, or joint marketing initiatives with third-party partners, your information may be shared with them as necessary for the promotion’s execution. Their use of your data will be governed by their respective privacy policies.

With Your Consent: In certain situations, we may share your personal information with third parties when you provide explicit consent for such disclosures, such as when requesting third-party services through our platform or authorizing data sharing for specific purposes.

• Your Rights
Depending on your location and applicable laws, you may have the following rights regarding your personal information:
• Access Your Data: You have the right to request details about the personal information we collect, use, or disclose about you. In some cases, you may also request access to your personal data in a portable, machine-readable format.
• Correction of Inaccuracies: You have the right to request corrections to any inaccurate or incomplete personal data we maintain. Our platform allows you to update or delete your account profile. If you cannot modify certain details through our website, you may contact us to request corrections. Please note that we may retain historical data in our backup files as permitted by law.
• Request Deletion: You can request that we delete personal data we have collected about you, subject to legal and operational requirements.
• Withdraw Consent: Where we rely on your consent to process personal data, you have the right to withdraw it at any time.
• Object to Processing: If we process your personal information based on a legal ground other than consent, you may have the right to object to such processing.
• Online Tracking: We currently do not recognize 'Do Not Track' signals from web browsers.
Please note that not all rights apply in every circumstance, and in some cases, we may limit or deny your request if permitted or required by law. Additionally, we may request verification of your identity before fulfilling your request.

If you wish to exercise any of these rights or appeal a decision related to your data, please contact us using the details provided below or via our Contact Us page.

Opting Out of Marketing Emails
You can opt out of marketing emails by adjusting your preferences in your account settings. Simply log in, go to Profile Settings, and toggle the option for promotional emails on or off. Your request will be processed as soon as possible.

For any further inquiries regarding privacy rights or marketing communications, feel free to reach out to us.

• Data Transfer & International Data Transfer
eSIMno's services are global, so your data may be processed in various countries. We're committed to protecting your personal information, regardless of where it's processed, and strive to maintain consistent data protection standards.
By using eSIMno's services, you consent to the potential transfer, storage, and processing of your data in countries outside your residence, where data protection laws may differ.
eSIMno takes reasonable steps to ensure your data is handled securely, including:
• Using contracts with strong data protection clauses with our third-party providers.
• Limiting data transfers to only what's necessary.
• Employing robust security measures to protect your data.
We value transparency. Contact us with any questions about our data transfer practices.
• Security
eSIMno prioritizes the security of your personal information and employs reasonable and appropriate technical and organizational measures to protect it against unauthorized access, use, alteration, or disclosure. These measures are designed to maintain the confidentiality, integrity, and availability of your data.

While we strive to implement industry-standard security practices, no method of transmission over the internet or electronic storage is 100% secure. Therefore, while we diligently work to protect your information, we cannot guarantee absolute security. We regularly review and update our security measures to adapt to evolving threats and best practices.

You play a vital role in maintaining the security of your account credentials. It's essential to keep your passwords confidential and avoid sharing them with anyone. If you suspect any unauthorized access to your eSIMno account or believe your credentials have been compromised, please notify us immediately at [email protected]. We will take prompt action to investigate and address the issue.

• Changes to this Privacy Policy
eSIMno may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. When we make significant changes, we will provide reasonable notice, such as by posting a prominent notice on our website or sending you an email to the address associated with your account. For minor changes, we may not provide specific notice, so we encourage you to review this Privacy Policy periodically.

The 'Effective Date' at the top of this policy indicates when the current version came into effect. The 'Last Updated' date shows when the policy was last substantively modified. By continuing to use eSIMno's services after the Effective Date, you agree to the updated Privacy Policy.