Privacy Policy

1. Overview

Connect eSIM ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our eSIM services, including our website, mobile applications, and telecommunications services.

By using our services, you consent to the collection, use, and disclosure of your personal information as described in this Privacy Policy. This policy complies with applicable data protection laws, including GDPR, CCPA, and other regional privacy regulations.

2. Information We Collect

2.1 Personal Information

• • Account Information: Email address, full name, phone number, billing address
• • Identity Verification: Government-issued ID, date of birth (as required by telecommunications regulations)
• • Payment Information: Credit card details, PayPal information, cryptocurrency wallet addresses
• • Communication Records: Customer service interactions, support tickets, emails

2.2 Telecommunications Data

• • Call Detail Records (CDRs): Numbers called/received, call duration, timestamps, location data
• • SMS/MMS Records: Message metadata (sender, recipient, timestamp), message content when required by law
• • Data Usage: Websites visited, data consumption, IP addresses, network performance data
• • Location Information: Cell tower connections, GPS data (when location services are enabled)

2.3 Technical Information

• • Device Information: IMEI, device model, operating system, device identifiers
• • eSIM Data: ICCID, activation codes, profile installation data
• • Network Data: IP addresses, MAC addresses, network settings, signal strength
• • Usage Analytics: App performance, feature usage, crash reports

2.4 Automatically Collected Information

• • Web Analytics: Browser type, referrer URLs, page views, session duration
• • Cookies: Session cookies, preference cookies, analytics cookies
• • Log Files: Access logs, error logs, security event logs

3. How We Use Your Information

3.1 Service Provision

• • Activate and manage your eSIM profile and US phone number
• • Process voice calls, SMS messages, and data connections
• • Maintain network quality and optimize service performance
• • Provide customer support and technical assistance
• • Manage your account balance and billing

3.2 Business Operations

• • Process payments and manage financial transactions
• • Detect and prevent fraud, abuse, and unauthorized access
• • Comply with legal obligations and regulatory requirements
• • Conduct internal analytics and service improvement
• • Develop new features and services

3.3 Communications

• • Send service notifications and account updates
• • Provide customer support responses
• • Send marketing communications (with consent)
• • Deliver security alerts and important service information

4. Legal Basis for Processing (GDPR)

• • Contract Performance: Processing necessary to provide telecommunications services
• • Legal Compliance: Meeting telecommunications regulations and law enforcement requests
• • Legitimate Interest: Fraud prevention, service improvement, network security
• • Consent: Marketing communications, optional features, cookies
• • Vital Interests: Emergency services, public safety communications

5. Information Sharing and Disclosure

5.1 Service Providers

We share information with trusted third-party service providers who assist us in operating our business:

• • Payment processors (PayPal, Stripe, NOWPayments)
• • Cloud infrastructure providers (AWS, Google Cloud)
• • Telecommunications carriers and network operators
• • Customer support platforms
• • Analytics and monitoring services

5.2 Legal Requirements

We may disclose your information when required by law:

• • Law enforcement requests with proper legal authority
• • Court orders, subpoenas, and legal process
• • Emergency situations involving public safety
• • Regulatory compliance and audits
• • National security requests (with appropriate legal safeguards)

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the new entity, subject to the same privacy protections.

6. Data Security

We implement industry-standard security measures to protect your personal information:

• • Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
• • Access Controls: Role-based access, multi-factor authentication
• • Network Security: Firewalls, intrusion detection, DDoS protection
• • Regular Audits: Security assessments, vulnerability testing
• • Employee Training: Privacy and security awareness programs
• • Data Minimization: Collecting only necessary information

Despite our security measures, no system is 100% secure. We cannot guarantee absolute security but commit to promptly addressing any security incidents and notifying affected users as required by law.

7. Data Retention

We retain your personal information for different periods depending on the type of data:

• • Account Information: Until account closure plus 7 years for financial records
• • Call Detail Records: 2 years (as required by telecommunications regulations)
• • Payment Records: 7 years for tax and accounting purposes
• • Marketing Data: Until consent is withdrawn or 3 years of inactivity
• • Support Communications: 3 years for quality assurance
• • Technical Logs: 1 year for troubleshooting and security

We may retain information longer if required by law or legitimate business purposes, such as ongoing legal proceedings or regulatory investigations.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

8.1 General Rights

• • Access: Request copies of your personal information
• • Correction: Request correction of inaccurate information
• • Deletion: Request deletion of your personal information
• • Portability: Receive your data in a portable format
• • Restriction: Limit how we process your information
• • Objection: Object to processing based on legitimate interest

8.2 Marketing Communications

• • Opt out of marketing emails by clicking unsubscribe links
• • Contact us to opt out of SMS marketing messages
• • Manage cookie preferences through browser settings

8.3 Exercising Your Rights

To exercise your privacy rights, contact us at privacy@connect-esim.com with:

• • Your full name and account email address
• • Specific right you wish to exercise
• • Identity verification (for security purposes)
• • Detailed description of your request

9. International Data Transfers

We operate globally and may transfer your personal information to countries with different privacy laws. We ensure adequate protection through:

• • European Commission adequacy decisions
• • Standard Contractual Clauses (SCCs)
• • Binding Corporate Rules
• • Other approved transfer mechanisms

Primary data processing occurs in the United States with service providers in the EU, Canada, and other jurisdictions with adequate privacy protections.

10. Children's Privacy

Our services are not intended for children under 18 years of age. We do not knowingly collect personal information from children under 18. If we discover we have collected information from a child under 18, we will:

• • Delete the information immediately
• • Terminate the account
• • Notify the parent or guardian (where possible)
• • Implement additional safeguards to prevent recurrence

11. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience:

11.1 Types of Cookies

• • Essential Cookies: Required for basic website functionality
• • Analytics Cookies: Help us understand website usage
• • Preference Cookies: Remember your settings and preferences
• • Marketing Cookies: Personalize advertisements (with consent)

11.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies may affect website functionality. We respect Do Not Track signals where technically feasible.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

• • We will post the updated policy on our website
• • We will update the "Last Updated" date
• • For material changes, we will provide 30 days' notice via email
• • We may require re-consent for significant changes

Continued use of our services after changes become effective constitutes acceptance of the updated Privacy Policy.

13. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us: