1. Data Protection – GDPR

esimcards.co.uk is committed to protecting your personal data and ensuring your privacy in line with the General Data Protection Regulation (GDPR). GDPR represents the most comprehensive data protection legislation in the world, aimed at giving individuals more control over their personal information and imposing strict guidelines on organizations about how they collect, process, and store data.

What Is Personal Data?

Personal data refers to any information that can directly or indirectly identify a person. This includes obvious data like your name, address, and email, but also more specific information such as your IP address, browsing habits, and device identifiers. At esimcards.co.uk, we collect and process a limited amount of personal data strictly necessary for providing our services, including:

Basic Identification Information: Name, email address, and contact details used when you register or make a purchase on our website.

Transaction Data: Payment details such as billing address and transaction history.

Technical Data: Information related to your interaction with our website, such as your IP address, browser type, and access times.

Preferences: Data related to your preferences and behaviors on our website, including cookies that track your visits.

Why We Collect Your Data

We only collect data that serves a legitimate purpose for the operation of esimcards.co.uk and the improvement of your experience. Some of the reasons we collect your data include:

Order Processing: To fulfill your order, including issuing invoices, processing payments, and delivering digital eSIMs.

Customer Support: To help resolve issues you may have with our services or products, allowing us to provide assistance quickly and efficiently.

Account Management: To keep your account information up-to-date, allowing you to manage orders, review purchase history, and maintain preferences.

Security: To ensure the security of our website and your account, including identifying any potential breaches and taking preventive measures.

Marketing and Personalization: To send you relevant offers, newsletters, or updates about products you may be interested in (if you’ve opted-in).

How We Use and Share Your Data

Your data is only used for the purposes you have agreed to. At esimcards.co.uk, we do not sell or rent your personal information to any third party. We may share your data with trusted partners such as:

Payment Processors: To securely process transactions.

Analytics Providers: For website performance monitoring and improvement.

Marketing Tools: For sending emails, promotions, and communications (if opted-in).

Third-Party Service Providers: When required to perform services on our behalf, such as delivery platforms or customer service providers.

Each of these providers is carefully vetted to ensure they comply with GDPR and handle your data securely and responsibly.

Your Rights Under GDPR

Under GDPR, you have several rights concerning your personal data, designed to give you control over how your information is used. These rights include:

Right to Access: You can request a copy of the personal data we hold about you at any time.

Right to Rectification: If you believe that the data we hold about you is inaccurate or incomplete, you can request that it be updated or corrected.

Right to Erasure (Right to Be Forgotten): You can ask for your personal data to be deleted under certain circumstances, such as when it is no longer needed for the purpose for which it was collected.

Right to Restrict Processing: You can request that we limit the processing of your data, such as when you’re disputing its accuracy.

Right to Data Portability: You can request that your data be transferred to another organization in a structured, commonly used, and machine-readable format.

Right to Object: You have the right to object to the processing of your data for purposes like marketing or profiling.

You can exercise these rights by contacting our Data Protection Officer at mailto:support@airhubsystems.co.uk. We will respond to all requests within the legally mandated timeframe and provide assistance where necessary.

How We Protect Your Data

We take security seriously at esimcards.co.uk and employ multiple layers of security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include:

Encryption: We use encryption for sensitive data, including payment information, both in transit and at rest.

Access Control: Only authorized personnel have access to personal data, and they are required to follow strict confidentiality agreements.

Regular Audits: We conduct regular security audits and risk assessments to ensure our systems are secure and compliant with GDPR.

In the unlikely event of a data breach, we have a protocol in place to promptly notify affected individuals and regulatory authorities as required under GDPR.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Once the data is no longer needed, we securely delete or anonymize it.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to track and enhance your user experience. These small data files are stored on your browser and help us understand how visitors interact with our website. By using esimcards.co.uk, you agree to our cookie policy, which provides detailed information on the types of cookies we use:

Essential Cookies: Necessary for the basic functionality of our site.

Performance Cookies: Track visitor behavior to improve website performance.

Targeting Cookies: Collect information to display personalized advertisements.

You have the option to manage or block cookies in your browser settings. For more information, please visit our Cookie Policy.

Legal Basis for Processing

We process your personal data based on one of the following legal grounds:

Consent: Where you’ve provided consent for specific data usage, such as marketing communications.

Contractual Obligations: When processing is necessary to fulfill our contract with you, such as processing payments and delivering eSIMs.

Legitimate Interests: Where processing is essential for our legitimate business interests, such as website functionality or fraud prevention, while still ensuring your data protection rights are upheld.

Data Transfers Outside the EEA

As part of our operations, some of your data may be transferred to or stored outside the European Economic Area (EEA). We ensure that these transfers are made in compliance with GDPR, using safeguards such as:

Standard Contractual Clauses approved by the European Commission.

Data Processing Agreements with third parties that guarantee equivalent data protection measures.

Data Protection Officer (DPO)

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance and address any concerns you may have. If you have questions about how your data is handled, or if you would like to exercise your rights, please contact our DPO at mailto:support@airhubsystems.co.uk.

Conclusion

Protecting your privacy and ensuring the security of your data is our top priority at esimcards.co.uk. Our GDPR compliance guarantees that your personal data is handled responsibly, securely, and in accordance with your rights. We are committed to transparency and accountability in all aspects of our data processing activities.

For more details on our data protection practices, or to exercise any of your rights under GDPR, please visit our Privacy Policy page or reach out to our support team.