SONET

Privacy Policy

Last updated: 9th December 2025

This Privacy Policy explains how Sonet ("we", "us", "our") collects, uses, shares and protects your personal data when you visit our website, purchase our eSIM products, or use our services. When we say “Sonet”, “Sonet Mobile”, “we”, “our” or “us” we mean Solvegio Ltd (Ireland, Company No. 760451) with registered office at Unit #9, G5, 3015 Lake Drive, Citywest, Dublin, Ireland, D24DKP4. We are committed to protecting your privacy and processing your information in accordance with the EU General Data Protection Regulation (GDPR) and applicable Irish and European data protection laws.

1. Personal Data We Collect

We process personal data necessary to provide our services. This includes:

A. Information you provide

  • Full name
  • Email address
  • Payment information (processed only by our payment providers)
  • Device compatibility information
  • Country of travel / purchase location
  • Support messages and attachments

B. Information collected automatically

  • IP address and approximate location
  • Device type and operating system
  • Browser type
  • Website usage (pages visited, clicks, session data)
  • Cookies and tracking technologies (see Section 11)

C. Information related to eSIM usage

  • eSIM activation status
  • eSIM profile ID (not the full ICCID/MSISDN unless required by an operator)
  • Data consumption for plan management
  • Error logs for technical troubleshooting

We do not read your personal SMS, photos, contacts, call history, or any information stored on your phone.

3. How We Use Your Personal Data

We process your data only when legally allowed. Purposes include:

  • Processing orders and delivering eSIM products
  • Providing customer support
  • Managing your Sonet account
  • Preventing fraud, abuse or misuse
  • Running analytics to improve our products
  • Sending transactional emails (order confirmations, activation info)
  • Sending marketing communications only when you consent
  • Meeting legal obligations (tax, accounting, telecom compliance)

4. Legal Basis for Processing (GDPR)

We rely on the following bases:

  • Contract - to provide you with eSIM/data services
  • Consent - for marketing emails, cookies, analytics
  • Legitimate interest - preventing fraud, improving service
  • Legal obligation - bookkeeping, regulatory telecom obligations

You can withdraw consent anytime by contacting us.

5. Payment Information

We do not store your full payment card data.

Payments are processed securely by trusted third-party providers (e.g. Stripe, Apple, Google), each operating as its own data controller.

6. How We Share Your Data

We share your data only when necessary and never sell it.

We may share data with:

  • Mobile network operators (MNOs) to activate and support your eSIM
  • Payment providers (e.g. Stripe)
  • Cloud hosting providers
  • Customer support tools
  • Analytics tools (only anonymized where possible)
  • Regulatory authorities when legally required

All partners are GDPR-compliant and follow strict data protection agreements.

7. International Data Transfers

Some partners operate outside the EU.

When personal data is transferred internationally, we use:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions
  • Additional security measures

We ensure your data remains protected at all times.

8. Data Retention

We keep personal data only as long as necessary:

  • Account/order data: 6 years (required by EU accounting laws)
  • Support conversations: up to 24 months
  • eSIM activation logs: 12-24 months, depending on telecom obligations
  • Marketing data: until you unsubscribe
  • Cookies: per cookie lifetime (see Section 11)

After the retention period, data is securely deleted or anonymized.

9. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Correct inaccurate information
  • Request deletion ("right to be forgotten")
  • Restrict processing
  • Object to certain uses
  • Withdraw consent at any time
  • Request a copy of your data ("data portability")
  • File a complaint with a data protection authority (DPC Ireland)

You can exercise your rights by contacting our support team using our Contact Page.

10. Security of Your Information

We use industry-standard security measures including:

  • Encryption (data in transit & at rest)
  • Secure servers and firewalls
  • Access controls and audit logs
  • Regular security reviews

While no system is 100% secure, we take all reasonable steps to protect your data.

11. Cookies & Tracking Technologies

Sonet uses cookies to:

  • Remember your language and settings
  • Improve website performance
  • Enable login sessions
  • Provide analytics (e.g. Google Analytics)
  • Personalize marketing (only with consent)

You can change your cookie preferences at any time via your browser or cookie banner.

12. Marketing Communications

You will receive marketing messages only if you have explicitly opted in.

You can unsubscribe at any time using:

  • The "unsubscribe" link in emails, or
  • by contacting our support team using our Contact Page

13. Children's Privacy

Sonet services are not intended for children under 16.

We do not knowingly collect data from minors.

14. Changes to This Privacy Policy

We may update this policy periodically.

When changes are significant, we will notify you via email or website notice.

The "Last updated" date will always reflect the latest revision.

15. Contact Us

For privacy questions or GDPR requests:

📩 Contact our support team by visiting our Contact Page.

We respond within 30 days as required by law.