Privacy Policy

How we collect, use, and protect your personal data when you use e1sim.com.

Last updated: July 9, 2026

1. Who We Are

This Privacy Policy explains how Sanders Soft Limited, a technology company based in Paphos, Cyprus ("e1sim", "we", "us", "our"), processes personal data of visitors and customers of the website e1sim.com (the "Website"). e1sim is an independent reseller of eSIM products and mobile data services provided by Yesim (yesim.app) and its network partners (the "Provider"). We act as the data controller for the personal data described in this Policy. For questions about your data, contact us at support@e1sim.com.

2. Data We Collect

We collect: (a) account data — email address, name (if provided), password hash, and language/currency preferences; (b) order data — purchased plans, destination country, order history, account balance, and top-up transactions; (c) payment data — payments are processed by our payment providers (including Stripe); we receive only transaction identifiers, amounts, and payment status, and we never store your full card number; (d) technical data — IP address, device and browser information, pages visited, and interaction events collected through cookies and similar technologies; (e) support data — the contents of your messages when you contact us by email, contact form, or messengers, including optional phone number and preferred contact method.

3. How and Why We Use Your Data

We process personal data to: deliver and provision the eSIMs you purchase (performance of a contract); create and manage your account; process payments and top-ups; provide customer support; prevent fraud and abuse and secure the Website (legitimate interest); comply with tax, accounting, and other legal obligations; and, with your consent where required, send service updates and marketing communications, which you can opt out of at any time in your account settings or via the unsubscribe link.

4. Sharing Data with Third Parties

We share personal data only where necessary: (a) with the Provider (Yesim and its network partners) — order details required to provision your eSIM profile and deliver mobile connectivity; the Provider processes this data under its own privacy policy available at yesim.app; (b) with payment processors (including Stripe) to process payments securely; (c) with analytics and tag-management services (Google Analytics, Google Tag Manager, Yandex Metrica) as described in Section 7; (d) with hosting and IT infrastructure providers that store our data under contract; and (e) with public authorities where disclosure is required by law. We never sell your personal data.

5. International Transfers

Your data may be processed in countries outside the European Economic Area, including by the Provider and by analytics and payment services. Where data is transferred outside the EEA, we rely on appropriate safeguards such as European Commission adequacy decisions or Standard Contractual Clauses, and we require recipients to protect the data to a comparable standard.

6. Data Retention

We keep account data for as long as your account is active and for a reasonable period afterwards. Order, payment, and invoicing records are retained for the periods required by Cyprus tax and accounting legislation (generally up to 6 years). Technical logs and analytics data are kept for shorter periods appropriate to their purpose. When data is no longer needed, it is deleted or irreversibly anonymised.

7. Cookies and Analytics

The Website uses cookies and similar technologies for essential functionality (login sessions, cart, language and currency preferences) and for analytics. We use Google Tag Manager, Google Analytics 4, and Yandex Metrica to understand how visitors use the Website (pages viewed, purchase funnel events such as add-to-cart, checkout, and purchase) so we can improve our Services. These tools may set their own cookies and process pseudonymised identifiers and IP-derived location. You can control cookies through your browser settings; disabling essential cookies may affect Website functionality.

8. Your Rights

Under the EU General Data Protection Regulation (GDPR) you have the right to: access the personal data we hold about you; request rectification of inaccurate data; request erasure ("right to be forgotten"); restrict or object to processing based on legitimate interest; receive your data in a portable format; and withdraw consent at any time without affecting prior processing. To exercise any of these rights, email support@e1sim.com — we respond within one month. You also have the right to lodge a complaint with your local supervisory authority; in Cyprus this is the Office of the Commissioner for Personal Data Protection.

9. Security

We apply technical and organisational measures appropriate to the risk, including TLS encryption of all traffic, password hashing, access controls, network isolation of internal services, and least-privilege access for staff and contractors. No method of transmission or storage is completely secure, but we continuously review and improve our safeguards. If a personal data breach is likely to result in a risk to your rights, we will notify you and the competent authority as required by law.

10. Children

The Services are intended for adults and are not directed at children under 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our Services or legal requirements. The current version, with its effective date, is always published on this page. Material changes will be announced on the Website or by email where appropriate.

12. Contact

Data controller: Sanders Soft Limited (e1sim), Paphos, Cyprus. For privacy-related requests or questions, contact us at support@e1sim.com or via the contact form on the Website.