Privacy policy

Last updated 22 June 2026

This policy explains what personal data SimFuse collects when you buy and use a travel eSIM through our website and mobile app, how we use and share it, and the rights you have over it.

Who we are

SimFuse (“SimFuse”, “we”, “us”) provides prepaid travel eSIM data plans through the SimFuse website and mobile apps. For the purposes of the EU and UK General Data Protection Regulation, SimFuse is the data controller for the personal data described in this policy. If you have any question about how we handle your data, contact us at [email protected].

Information we collect

Account information

When you create an account or sign in we collect your email address. SimFuse uses passwordless, magic-link sign-in, so we do not ask for or store a password. We keep a record of your sign-ins and the tokens that keep you logged in so we can secure your account.

Order and payment information

When you buy an eSIM we collect your order details (the plan, country or region, price and currency) and a confirmation of your payment. Card payments are processed by our payment provider, Stripe. We never receive or store your full card number. Where you use a SimFuse balance (wallet) we record your balance and the transactions against it.

eSIM and usage information

To deliver and support your eSIM we hold the technical identifiers of the SIM we provision for you (such as the ICCID) and limited service status such as whether the eSIM has been installed, whether it has connected to a network, and how much of your data allowance has been used. This information comes from our connectivity suppliers and is used to provision plans, show your remaining data, and decide refund eligibility.

Device and technical information

When you use the website or app we automatically receive technical data such as your IP address, approximate country (used to pick your default currency and show relevant plans), device and browser type, and, in the app, a push-notification token if you enable notifications.

Communications

If you contact support we keep the messages you send and our replies so we can help you and improve our service.

How we use your data

We use personal data to:

  • create and secure your account and sign you in;
  • process payments and provision and deliver your eSIM;
  • send transactional messages such as order confirmations, receipts, QR codes, low-data and expiry reminders, and refund or cancellation notices;
  • send push notifications you have enabled, such as activation and expiry alerts;
  • provide customer support and handle cancellations and refunds;
  • detect, prevent and investigate fraud, abuse and security incidents;
  • measure and improve our website, app and plans (see Cookies and analytics below); and
  • comply with our legal and tax obligations.

We do not sell your personal data.

Legal bases

Where the GDPR applies, we rely on the following legal bases: performance of our contract with you (to sell, provision and support your eSIM); your consent (for optional analytics cookies and, in the app, push notifications, which you can withdraw at any time); our legitimate interests (to keep our service secure, prevent fraud and improve it); and compliance with a legal obligation (such as tax and accounting).

How we share your data

We share personal data only with the service providers we need to run SimFuse, and only as far as each one needs:

  • Connectivity suppliers (our eSIM providers) receive the information needed to provision, manage, top up or cancel your eSIM.
  • Stripe processes your card payments and refunds.
  • Apple and Google deliver push notifications to your device when you enable them.
  • Email and hosting providers (including Amazon Web Services) send our emails and host our infrastructure.
  • Analytics providers (such as Google) help us understand and improve our service, subject to your cookie consent.

We may also disclose data if required by law, to enforce our terms, or in connection with a corporate transaction such as a merger or sale, in which case we will protect your data consistent with this policy.

International transfers

Because we sell travel connectivity worldwide, your data may be processed outside your country, including outside the European Economic Area and the United Kingdom. Where we transfer data internationally we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

Cookies and analytics

We use a small number of essential cookies needed to run the site and keep you signed in. With your consent we also use analytics cookies to understand how the site is used. We apply consent-based loading, so non-essential cookies and tags are only set after you accept them in our cookie banner. You can change or withdraw your choice at any time through the banner.

Data retention

We keep your account and order data for as long as you have an account and as long as needed to provide the service, then for the period required to meet our legal, tax and accounting obligations. Diagnostic and analytics data is kept for a shorter period. When data is no longer needed we delete or anonymise it.

Your rights

Depending on where you live, you may have the right to access, correct, delete or receive a copy of your personal data, to object to or restrict certain processing, and to withdraw consent. To exercise any of these rights, email [email protected] and we will respond within the time required by law. You also have the right to complain to your local data protection authority.

Security

We protect your data with encryption in transit, encrypted storage of sensitive identifiers, access controls, and tokenised payments handled by Stripe. No system is perfectly secure, but we work to protect your information and to respond quickly to any incident.

Children

SimFuse is not directed to children. We do not knowingly collect personal data from anyone under the age of 16. If you believe a child has provided us data, contact [email protected] and we will delete it.

Changes to this policy

We may update this policy from time to time. When we make material changes we will update the date above and, where appropriate, notify you. Your continued use of SimFuse after an update means you accept the revised policy.

Contact

For any privacy question or request, email [email protected]. See also our terms of service.

Privacy Policy | SimFuse