Privacy Policy

This Privacy Policy explains what data MegaEsim collects through megaesim.us, why we collect it, and how we use and protect it.MegaEsim LLC is the data controller for the Service.

1. Data we collect

Partner / account data: email address, securely hashed password, optional company name and contact details submitted on partner access requests, wallet and order history, and basic activity logs (IP address, user agent, timestamps) used to operate the service securely.
Order data: the plan purchased, amount paid, currency, and a Stripe transaction reference.
End-customer delivery data (B2B partners): when a partner places an order for their client, we process the recipient email address (and any delivery details required to send the eSIM QR code and activation instructions). The partner is responsible for having a lawful basis to share that recipient data with us.
Technical data: server and security logs used to prevent fraud and keep the platform available.

2. Payment data

Card details are processed entirely by Stripe and are never sent to or stored on our servers. Stripe's privacy policy is available at stripe.com/privacy.

3. How we use your data

• To create and manage B2B partner accounts and authenticate users.
• To deliver and activate eSIM plans (including sending QR codes and setup details to the email address specified for delivery).
• To send transactional messages (order confirmations, access credentials, support replies).
• To operate the referral and partner access request workflow.
• To prevent fraud and to keep the service secure.
• To comply with legal and accounting obligations.

We do not sell personal data. We do not use your data for advertising profiling.

4. B2B partners & end-customer emails

If you are a partner reseller, you may submit end-customer email addresses so we can deliver eSIM profiles digitally. You must only provide recipient data where you have informed the recipient and have a valid legal basis (for example, contract performance or consent). We process recipient emails solely to fulfil the order and provide support related to that delivery. Partners must not use the platform to send unsolicited marketing to recipients whose data was provided only for eSIM delivery.

5. Data retention

Account, partner access requests, and order data are retained for the duration of the relationship plus the period required by tax, accounting, and applicable law. You can request deletion of your partner account at any time by emailing contact@megaesim.us; some records may be retained where legally required (for example, payment or tax records).

6. Your rights (GDPR / similar)

Where applicable, you have the right to access, correct, delete, or export personal data we hold about you, and to object to or restrict processing. End-customers whose email was used only for delivery may contact us to request deletion of delivery-related personal data where no legal retention obligation applies. To exercise these rights, email contact@megaesim.us.

7. International transfers

MegaEsim LLC is registered in the United States. Service providers we rely on (e.g. Stripe, hosting, email) may process data outside your country. We require appropriate safeguards where required by law.

8. Contact

Privacy questions: contact@megaesim.us. Business & partners: business@megaesim.us.