Privacy Policy

Last updated: 3rd November 2025

SecondSIM ("us", "we", or "our") operates the SecondSIM website (the "Service"). This page informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data. We are committed to protecting your privacy in compliance with the UK General Data Protection Regulation (UK GDPR).

1. Information We Collect

We collect several different types of information for various purposes to provide and improve our Service to you.

Personal Data

While using our Service, we may ask you to provide us with certain personally identifiable information ("Personal Data"). This may include:

  • Email address: To create your account and send you your eSIM QR code and service notifications.
  • Payment Information: Our payment processor (e.g., Stripe) will collect and process your payment details. We do not store your full credit card information on our servers.
  • Name and Billing Information: Required to process payments and for invoicing.

Usage Data

We may collect information on how the Service is accessed and used ("Usage Data"). This may include information such as your computer's IP address, browser type, browser version, the pages of our Service you visit, and other diagnostic data. This is collected to monitor and secure our Service.

Cookies Data

We use essential cookies to operate our website. With your consent, we may also use analytical cookies (e.g., Google Analytics) to understand how our visitors use the website so we can improve it. You can control your cookie preferences at any time via our cookie banner.

2. How We Use Your Data

SecondSIM uses the collected data for various purposes:

  • To provide and maintain our Service, including provisioning your eSIM.
  • To manage your account and subscription.
  • To process your payments.
  • To notify you about changes to our Service.
  • To provide customer support.
  • To monitor the usage of our Service to prevent fraud and abuse.
  • To comply with legal and regulatory obligations.

3. Legal Basis for Processing (UK GDPR)

We process your Personal Data on the following legal bases:

  • Contract: To fulfill our contractual obligations to you (i.e., provide the eSIM service you purchased).
  • Legal Obligation: To comply with the law (e.g., for tax and anti-fraud purposes).
  • Legitimate Interests: To monitor and improve our Service and protect against fraud, unless your rights override these interests.
  • Consent: For non-essential cookies or marketing communications, which you can withdraw at any time.

4. Data Retention

We will retain your Personal Data only for as long as is necessary for the purposes set out in this Privacy Policy. We will retain and use your data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws, such as financial and tax records), resolve disputes, and enforce our legal agreements and policies.

5. Data Transfer

Your information, including Personal Data, may be transferred to—and maintained on—computers located outside of your state, county, country or other governmental jurisdiction where the data protection laws may differ from those from your jurisdiction. As a UK-based service, we primarily use service providers (e.g., payment processors, network providers) that are compliant with UK GDPR or have equivalent data protection safeguards in place.

6. Your Data Protection Rights (UK GDPR)

You have certain data protection rights, including:

  • The right to access: You can request copies of your personal data.
  • The right to rectification: You can request that we correct any information you believe is inaccurate.
  • The right to erasure: You can request that we erase your personal data, under certain conditions.
  • The right to restrict processing: You can request that we restrict the processing of your personal data, under certain conditions.
  • The right to object to processing: You can object to our processing of your personal data, under certain conditions.
  • The right to data portability: You can request that we transfer the data we have collected to another organisation, or directly to you, under certain conditions.

If you wish to exercise any of these rights, please contact us. You also have the right to complain to the Information Commissioner's Office (ICO), the UK's data protection regulator.

7. Security of Data

The security of your data is important to us. We use commercially acceptable means to protect your Personal Data, including encryption for data in transit (SSL) and at rest. However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

8. Service Providers

We may employ third-party companies and individuals to facilitate our Service ("Service Providers"), such as payment processors and telecommunications partners. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

9. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top. You are advised to review this Privacy Policy periodically for any changes.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at support@secondsim.co.uk (Please replace with your actual support email).