Data Protection & Privacy Rights

1. Who We Are

2. What Data We Collect

When you use our website or place an order, we may collect the following information:

• Full name
• Email address
• Billing address
• Phone number
• IP address
• Order and transaction details
• Device/browser information (via analytics)

Important: We do not collect or store payment card details. All payment processing is securely handled by our provider (Stripe).

3. How We Collect Your Data

Your data is collected through the following means:

• When you place an order at checkout
• When you contact us via email
• When you interact with the website (via cookies or analytics tools)
• When you (in the future) sign up for newsletters or marketing

4. Why We Collect Your Data

We collect your personal data for the following purposes:

• To process and deliver your eSIM order
• To send you important service-related communications
• To provide customer support
• To improve our website and service through analytics
• To comply with legal and tax obligations
• With your consent, to send marketing communications (future use)

5. Legal Basis for Processing (GDPR)

We process your data based on the following legal grounds:

6. Who Has Access to Your Data

Your data is only accessed by authorized employees of konekkt GmbH and trusted third-party service providers, including:

• Stripe (payment processing)
• Cloudflare (security and DNS proxy)
• Hostinger (web hosting)
• Google Analytics (planned)
• Email marketing provider (planned)

We do not share, sell, or rent your personal data to third parties. Your data is not shared with our eSIM connectivity partners or telecom carriers.

7. International Transfers

Your data may be processed or stored outside Switzerland and the EU via services such as Cloudflare, Stripe, and Google. We ensure that all providers used comply with relevant international data protection safeguards, including Standard Contractual Clauses where applicable.

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, including:

• Fulfilling your purchase
• Complying with legal obligations (e.g. tax retention periods)
• Preventing fraud or misuse

Inactive customer data is typically deleted after 5 years, unless legal obligations require a longer period.

9. Your Rights

Under the GDPR and Swiss law, you have the right to:

To exercise any of these rights, please contact us at support@stevesim.com.

10. Cookies

We use cookies to:

• Maintain your cart and session
• Analyze website performance (planned via Google Analytics)
• Improve user experience

You can control and delete cookies through your browser settings. We may implement a cookie banner in accordance with applicable consent rules.

11. Security

We take security seriously. Our website uses SSL encryption, server-side security controls, and industry best practices to protect your data. Access to customer data is limited to authorized personnel only.

12. Children's Privacy

Our services are not intended for children under the age of 16. We do not knowingly collect personal data from minors. If we become aware of such data, we will delete it promptly.

13. Changes to This Policy

We may update this Privacy Policy at any time. All changes will be published on this page with an updated effective date.

14. Contact

For any privacy-related questions or data access requests, please contact: