Privacy Policy

noRoam – Privacy & Cookie Policy (UK/EEA)

Last updated: 8 April 2026

Privacy Policy – Introduction

This Privacy Policy explains how noRoam ("noRoam", "we", "us") collects and uses personal data when you use our app, website and services (the "Services"). We are the data controller for your personal data under UK law. Please also read our Terms & Conditions.

Our Services are not directed at children under 16 (or local minimum age). We do not knowingly collect data from them.

Information We Collect

Information you provide

Account details: email address, phone number and password; optional profile info.
Purchases: plan selection, price and transaction identifiers. We do not store full card numbers; payments are handled by our payment providers.
Support: messages and details you share with us when you contact support.
Vouchers/affiliates: codes you redeem; referral/affiliate identifiers for attribution.

Information we collect automatically

Device and app information: device model, OS, app version, language/region.
Service usage: app interactions, connection events, approximate location derived from IP to show relevant plans.
Network diagnostics: error/crash logs, basic connectivity and performance metrics.

Information from third parties

Sign‑in or app store platforms (e.g., Apple/Google), where you choose to link.
Payment processors (confirmation of payment, no full card data).
Telecom and connectivity partners (technical identifiers to provision service).
Analytics, support and ad partners used to provide our Services.

How We Use Personal Data & Legal Bases

How we use personal data

Provide and operate the Services (eSIM provisioning, plans, account, support).
Improve our product through analytics, diagnostics and feedback.
Prevent fraud/abuse and keep accounts secure.
Comply with legal and tax obligations.
Send limited product updates and offers; you can opt out anytime.

Legal bases (UK/EEA)

Contract: to provide Services you request.
Legitimate interests: product improvement, fraud prevention, limited direct marketing to existing users.
Consent: non-essential cookies/SDKs, , new-user marketing where required.
Legal obligation: tax, accounting, and compliance reporting.

How We Share Personal Data

How we share personal data

Network/telecom partners: to set up and deliver connectivity.
Payment processors: to process your payments securely.
Service providers: hosting, analytics, support, email delivery, Affiliates/partners: to attribute referrals, run promotions, and enable reseller/corporate solutions.
Business transfers: if we undergo a reorganisation, merger or sale.
Legal: to comply with law, enforce our Terms, and protect rights or safety.

We may share information with law enforcement or regulators where legally required.

We do not sell your personal data.

International Transfers

International transfers

Your data may be processed outside the UK/EEA. Where required, we use appropriate safeguards such as Standard Contractual Clauses and/or the UK International Data Transfer Agreement. You can contact us for a copy of relevant safeguards.

If you use the Services outside the UK/EEA, your data may be processed according to local laws in addition to this Policy.

Retention

Account data: for as long as your account is active.
Transaction records: typically 6 years for tax/audit.
Usage and diagnostic logs: usually 12–24 months, then deleted or anonymised.
Support records: up to ~2 years after resolution.

We may retain limited information longer if needed for legal claims or security.

Your Rights

Your rights

Subject to law, you can request: access, correction, deletion, restriction, portability, and you can object to processing (including an absolute right to object to direct marketing). Where we rely on consent, you can withdraw it at any time.

You can contact us to exercise these rights. You also have the right to complain to the UK Information Commissioner's Office (ICO). We would appreciate the chance to address your concerns first.

Security

We use technical and organisational measures to protect your data (encryption in transit, access controls, monitoring). No system is 100% secure. Please use a strong, unique password and keep your app updated. We will notify you and regulators of significant breaches as required by law.

Cookie Policy – Introduction

This Cookie Policy explains how noRoam ("noRoam", "we", "us") uses cookies and similar technologies in our app and on our website. It should be read together with our Privacy Policy.

Types of Cookies We Use

Types of cookies we use

Strictly necessary cookies: required for the Service to function (e.g., account login, secure checkout).
Functional cookies: remember your preferences and settings.
Analytics cookies: help us understand usage and improve the Service.

In the app, you can manage non-essential SDKs in the settings.

Your Choices

Your choices

When you first visit our website or install our app, you'll see a banner or settings prompt asking for your consent to non-essential cookies. You can:

Accept all cookies/SDKs.
Reject non‑essential cookies (strictly necessary cookies will still be used).
Manage preferences at any time in your browser or app settings.

Most browsers let you block or delete cookies. If you disable cookies, some features may not work as intended. In the app, SDK permissions may be managed in your device settings.

Retention

Cookies last for different periods. Some are deleted when you close your browser (session cookies). Others remain until they expire or you delete them (persistent cookies). We set retention periods appropriate to their purpose (e.g., analytics cookies usually last 12–24 months).

Contact

If you have questions about our Cookie Policy or privacy practices, email Data Protection Contact: contact {at] noroam [dott} app

Postal: Parafora Ltd, London Office, 167-169 Great Portland Street, 5th Floor, London, England, W1W 5PF