simBalkans Logo
simBalkansConnect. Travel. Explore.

Privacy Policy

Last updated: November 7, 2025

This Privacy Policy explains how simBalkans, a brand operated by StayLink Ltd ("we", "our", or "us"), collects, uses, and protects your personal information when you use our website and eSIM services.

1. Information We Collect

We collect information that you provide directly to us and automatically through your interactions with our services, including:

  • Personal information: Name, email address, and contact details.
  • Payment information: Billing details and transaction data processed securely via Stripe or other payment processors. We do not store your full payment card details; this information is handled directly by our payment providers.
  • Device and eSIM data: Device model, operating system, and unique eSIM identifiers necessary for activation and service delivery.
  • Usage data: Connectivity patterns, country of activation, and general analytics related to service usage.
  • Support communication: Messages and interactions with our support team.

2. How We Use Your Information

We process your data to:

  • Provide, activate, and maintain eSIM services.
  • Process payments and deliver confirmations.
  • Respond to support inquiries and provide customer assistance.
  • Send important service updates and technical notices.
  • Monitor service performance and improve reliability.
  • Detect and prevent unauthorized or fraudulent activity.
  • Comply with legal and regulatory obligations.

We process your information only where we have a legal basis to do so — typically your consent, contractual necessity, legitimate interest, or compliance with legal obligations.

3. Information Sharing

We do not sell or rent your personal information. We may share limited data only when necessary:

  • With telecom and connectivity partners to enable your eSIM service.
  • With Stripe or other payment providers to process secure transactions.
  • With authorized service providers performing functions on our behalf (e.g. analytics, hosting, security).
  • When required by law, regulation, or government request.
  • To protect the rights, property, or safety of simBalkans, its users, or the public.
  • With your explicit consent in specific cases.

Where required, our partners and subprocessors are bound by data protection agreements and are expected to comply with GDPR or equivalent data protection standards.

4. Data Security

We implement industry-standard technical and organizational measures to safeguard your data, including:

  • SSL/TLS encryption for all transmissions.
  • Secure handling and storage of sensitive data.
  • Regular infrastructure and security monitoring.
  • Limited employee access to personal data under confidentiality obligations.
  • Continuous review and improvement of our security practices.

5. Cookies and Tracking

We use cookies and similar technologies to enhance your experience, including to:

  • Remember your session and preferences.
  • Analyze website traffic and usage trends.
  • Support functionality such as authentication and checkout.
  • Measure the effectiveness of campaigns and improvements.

You may adjust your browser settings to refuse cookies, though this may affect some site functionality.

6. Your Rights (GDPR)

As an EU resident, you have the right to:

  • Access, correct, or delete your personal data.
  • Object to processing or request restriction.
  • Request data portability to another provider.
  • Withdraw consent at any time, where processing is based on consent.

You also have the right to lodge a complaint with your local data protection authority if you believe your rights have been infringed.

To exercise these rights, contact us at [email protected].

7. Data Retention

We retain personal information only as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce our agreements. When no longer required, your data is securely deleted or anonymized.

8. International Transfers

Some of our technology and service partners (e.g., connectivity providers, payment processors) may process data outside the European Union. Where such transfers occur, we aim to ensure they comply with GDPR requirements through Standard Contractual Clauses (SCCs) or other appropriate safeguards.

9. Children's Privacy

Our services are intended for users aged 18 and above. We do not knowingly collect personal data from minors. If we become aware that we have collected such information, we will take steps to delete it promptly.

10. Contact Us

For questions, requests, or concerns regarding your privacy, contact:

StayLink Ltd

Email: [email protected]

Registered: Bulgaria