Privacy Policy

KurdeSIM™ by Kurdish Entrepreneurs

Effective Immediately

1. Introduction

This Privacy Policy explains how KurdeSIM™ by Kurdish Entrepreneurs collects, uses, discloses, stores, protects, and retains information when you visit our website, use our app, create an account, browse products, place an order, receive an eSIM, contact support, interact with our content, use our checkout, or otherwise access any part of KurdeSIM™.

By accessing or using KurdeSIM™, you agree to this Privacy Policy. If you do not agree, do not use the website, app, checkout, products, support channels, or services.

This Privacy Policy should be read together with our Terms of Use, Refund Policy, Accessibility Statement, product details, checkout notices, app rules, and any other applicable rules. Your use of KurdeSIM™ is governed by all applicable policies, not this Privacy Policy alone.

2. Scope

This Privacy Policy applies to information processed in connection with KurdeSIM™ customer-facing services. It applies whether you use KurdeSIM™ through a browser, app, checkout page, account page, QR code, support channel, social link, or other digital path.

This Privacy Policy does not control the independent privacy practices of third-party telecom providers, payment processors, fulfillment providers, app stores, hosting providers, analytics tools, security tools, customer support tools, or other third-party providers. Those providers may process information under their own policies and legal obligations.

3. Information you provide directly

We may collect information you provide directly, including your name, email address, account information, login information, order details, selected plans, payment-related information, support messages, screenshots, device model details, troubleshooting details, feedback, reviews, survey responses, and any other information you submit through the website, app, checkout, support channels, or contact forms.

If you purchase for another person or submit another person’s information, you confirm that you have authority to do so and that the person understands how their information may be processed under this Privacy Policy.

You should not submit unnecessary sensitive information. If you send unnecessary personal information through support messages, screenshots, attachments, or forms, we may process it as part of your request and retain it where reasonably necessary for support, security, recordkeeping, dispute resolution, or legal compliance.

4. Order and transaction information

When you place or attempt to place an order, we may collect and process order records, selected product details, destination or plan details, transaction amount, currency, checkout status, payment status, delivery status, eSIM assignment status, activation-related records, refund or dispute records, fraud-review records, and customer support records.

Payment information may be processed by payment processors and related financial service providers. We may receive limited payment-related data such as payment status, transaction identifiers, risk signals, dispute status, chargeback details, fraud indicators, and records needed to complete or defend a transaction. We do not need to publicly name payment processors in this Privacy Policy.

5. Technical and usage information

We may collect technical and usage information when you use KurdeSIM™, including IP address, device type, browser type, operating system, app version, language settings, pages viewed, links clicked, timestamps, referral sources, approximate location inferred from technical data, session activity, error logs, diagnostic information, cookie data, analytics events, security signals, and fraud-prevention signals.

This information helps us operate the website and app, deliver digital products, troubleshoot errors, prevent fraud, improve performance, protect the platform, understand usage, and enforce our policies.

6. eSIM and connectivity-related information

To deliver and support eSIM products, we may process eSIM-related records, plan information, fulfillment status, QR code delivery records, activation support details, device compatibility details you provide, installation issue details, connectivity troubleshooting information, and provider-related service records.

Third-party telecom providers and fulfillment providers may process information necessary to issue, provision, activate, route, support, suspend, or troubleshoot eSIM products. Network-level information may be controlled by third-party telecom providers and may not be fully visible to KurdeSIM™.

7. Support communications

If you contact support, we may collect and retain your messages, order information, screenshots, attachments, device details, issue descriptions, troubleshooting steps, staff replies, resolution status, and related records. We use this information to respond, troubleshoot, prevent fraud, improve support, train support processes, enforce policies, and maintain records.

Support communications may be handled through customer support tools, messaging tools, email systems, ticketing systems, or other third-party tools. We may process these records with third-party customer support tools where reasonably necessary.

8. Cookies and similar technologies

KurdeSIM™ may use cookies, pixels, local storage, tags, analytics scripts, app analytics, device identifiers, or similar technologies to operate the service, remember preferences, manage sessions, process checkout, detect fraud, measure performance, understand usage, secure the platform, and improve the website and app.

Some cookies and similar technologies may be essential to the service. Others may support analytics, performance, security, marketing measurement, or customer experience. You may be able to control some cookies through your browser, device settings, or available consent tools. Blocking certain technologies may affect website or app functionality.

9. How we use information

We may use information to:

  • operate, maintain, secure, and improve KurdeSIM™;
  • create and manage accounts;
  • process orders and payments;
  • deliver, assign, display, install, activate, or support eSIM products;
  • provide customer support and troubleshoot issues;
  • verify transactions and prevent fraud;
  • detect chargeback abuse, account abuse, coupon abuse, scraping, impersonation, security threats, and policy violations;
  • communicate about orders, support, security, product updates, policy changes, and service notices;
  • personalize or improve the user experience;
  • analyze performance, usage, errors, and demand;
  • enforce our Terms of Use, Refund Policy, Accessibility Statement, checkout rules, and other policies;
  • comply with legal, tax, accounting, security, payment, regulatory, dispute, and recordkeeping obligations;
  • protect KurdeSIM™, users, providers, payment systems, and the public;
  • support business operations, audits, restructuring, transfers, or service continuity where permitted by applicable law.

10. Legal bases and lawful reasons

Where privacy laws require a lawful basis, we may process information because it is necessary to perform a contract with you, necessary to take steps before entering a contract, necessary for legitimate interests, based on your consent, necessary to comply with legal obligations, necessary to protect rights or safety, or otherwise permitted by applicable law.

Our legitimate interests may include service operation, product delivery, fraud prevention, security, analytics, customer support, policy enforcement, business protection, brand protection, payment dispute defense, service improvement, and legal risk management.

Where processing relies on consent, you may withdraw consent where applicable. Withdrawal does not affect processing that occurred before withdrawal and does not prevent us from processing information where another lawful reason applies.

11. Sharing of information

We may share information where reasonably necessary with third-party telecom providers, payment processors, fulfillment providers, app stores, hosting providers, analytics tools, security tools, customer support tools, communication tools, fraud-prevention tools, professional advisors, compliance tools, and other service providers that support KurdeSIM™.

We may also share information where necessary to process transactions, deliver eSIMs, provide support, troubleshoot technical issues, prevent fraud, respond to chargebacks, enforce policies, comply with law, protect rights, respond to lawful requests, investigate abuse, secure the platform, or complete a business transfer.

We do not publicly name providers in this Privacy Policy, and provider relationships may change over time.

12. Payment processors and financial information

Payment processors may collect, process, store, and verify payment information directly. KurdeSIM™ may not receive full payment card numbers or full financial credentials. We may receive limited payment-related records needed to confirm payment, process orders, prevent fraud, handle disputes, reconcile transactions, comply with accounting obligations, and protect the service.

Payment processors may have their own privacy practices and security controls. You should review payment-related notices presented during checkout where applicable.

13. Telecom and fulfillment providers

To provide eSIM products, we may share information with third-party telecom providers and fulfillment providers. This may include order details, plan details, eSIM provisioning data, activation-related data, technical support information, and records needed to issue, deliver, activate, support, suspend, or troubleshoot a product.

Telecom and fulfillment providers may independently process certain information according to their own technical systems, legal obligations, network rules, and provider policies. KurdeSIM™ does not control every network-level processing activity.

14. App stores, hosting, analytics, security, and support tools

If you use an app or website, information may be processed through app stores, hosting providers, analytics tools, security tools, content delivery systems, customer support tools, email tools, notification tools, and related infrastructure. These tools help us operate the service, detect issues, improve performance, secure the platform, and communicate with users.

We use reasonable efforts to work with providers appropriate for the services they perform, but no digital service can guarantee that all processing will be risk-free.

15. Fraud prevention and security review

We may process information to prevent fraud, payment abuse, account abuse, fake accounts, stolen payment methods, chargeback abuse, unauthorized resale, scraping, impersonation, spam, cyberattacks, policy violations, and brand misuse.

Security review may involve automated or manual analysis of order data, payment status, IP address, device data, account history, transaction patterns, support history, coupon use, and other risk signals. Decisions may result in order review, delay, refusal, cancellation, account restriction, dispute defense, or other protective action.

We are not required to disclose internal fraud rules, risk scoring methods, security architecture, provider details, or abuse-detection procedures.

16. No sale of personal information as a business model

KurdeSIM™ does not sell personal information as a business model. We do not collect personal information for the purpose of selling customer identities to unrelated advertisers.

We may share information with third-party providers as described in this Privacy Policy to operate the service, process payments, deliver products, prevent fraud, support users, secure the platform, measure performance, or comply with law. This service-related sharing is not the same as selling personal information as a business model.

17. International processing

KurdeSIM™ is a digital service. Information may be processed, stored, accessed, or transferred through systems, providers, tools, and infrastructure located in different jurisdictions. By using KurdeSIM™, you understand that information may be processed outside the place where you live or where you use the service.

Where required by applicable law, we may use reasonable safeguards for transfers of personal information. Laws and protections may vary by jurisdiction.

18. Retention

We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, including service delivery, account management, customer support, security, fraud prevention, chargeback defense, accounting, tax, legal compliance, recordkeeping, dispute resolution, policy enforcement, platform protection, and business operations.

Retention periods may vary depending on the type of information, the nature of the transaction, legal requirements, fraud risk, dispute status, account status, support needs, and operational needs.

We may retain certain records even after an account is closed or a deletion request is made where retention is permitted or required by applicable law, including for fraud prevention, payment disputes, legal claims, accounting records, tax records, security records, and enforcement records.

19. Security

We use reasonable administrative, technical, and organizational measures designed to protect information against unauthorized access, misuse, loss, alteration, and disclosure. These measures may include access controls, security tools, provider safeguards, monitoring, encryption where appropriate, internal procedures, and fraud-prevention systems.

No website, app, payment system, telecommunications system, storage system, transmission method, support tool, or security measure is completely secure. By using KurdeSIM™, you accept the security risks inherent in digital services.

You are responsible for protecting your account, password, device, email account, payment method, QR codes, activation codes, and order information.

20. Your privacy rights

Depending on applicable law, you may have rights to request access, correction, deletion, restriction, objection, portability, withdrawal of consent, or information about certain processing activities. These rights are not absolute and may be limited by applicable law, fraud prevention, security needs, legal obligations, accounting obligations, dispute needs, provider requirements, or our legitimate business interests.

We may require verification before responding to a privacy request. We may decline requests that are fraudulent, abusive, repetitive, unverifiable, harmful to others, impossible to fulfill, or not required by applicable law.

We may retain information where necessary for legal compliance, fraud prevention, security, payment dispute defense, accounting, tax, records, support history, policy enforcement, or protection of KurdeSIM™.

21. Children and minors

KurdeSIM™ is intended for users who are at least 18 years old or the legal age required to form a binding agreement, whichever is higher. We do not knowingly provide services to children.

If we learn that information was provided by a person who does not meet the age requirement, we may delete, restrict, or disable relevant information or accounts where appropriate and permitted by applicable law.

22. Marketing and communications

We may send service-related communications, order communications, security notices, support messages, policy updates, payment notices, and other necessary communications. These are part of operating the service.

We may send marketing communications where permitted by applicable law or with consent where required. You may opt out of certain marketing communications through available unsubscribe or preference tools, but you may still receive service-related or legal communications.

23. Automated tools

We may use automated tools to help operate the service, prevent fraud, detect abuse, analyze usage, manage risk, secure accounts, route support requests, measure performance, and improve user experience. Automated tools may support decisions such as order review, account restriction, fraud detection, or security alerts.

Where applicable law gives you rights regarding automated decisions, you may use the contact channels listed at the end to make a request.

24. Business transfers

If KurdeSIM™ is involved in a business transfer, restructuring, financing, merger, acquisition, sale, assignment, transfer of assets, service transfer, or similar transaction, information may be disclosed, transferred, reviewed, or processed as part of that transaction, subject to appropriate confidentiality, security, and applicable law.

Any receiving party may use information consistently with this Privacy Policy or a replacement policy provided where required by applicable law.

25. Legal disclosures

We may disclose information if we believe disclosure is required or permitted by applicable law, legal process, regulatory request, court order, payment dispute process, provider requirement, security investigation, fraud investigation, rights enforcement, or protection of users, KurdeSIM™, providers, payment systems, or the public.

We may preserve information when we believe it is necessary for legal claims, investigations, enforcement, fraud prevention, security, or dispute defense.

26. Third-party websites and services

KurdeSIM™ may link to or integrate with third-party websites, apps, payment pages, app stores, support tools, analytics tools, or other services. This Privacy Policy does not control those third parties’ independent privacy practices.

You should review the privacy notices and terms of third-party services before using them. We are not responsible for independent third-party privacy practices beyond our reasonable control.

27. Do not track and preference signals

Some browsers or devices may send preference signals. Because standards and legal requirements may vary, our response to such signals may depend on the technology used, applicable law, and our technical capabilities.

You may use available cookie controls, browser settings, device settings, or contact channels listed at the end to manage certain privacy preferences where available.

28. Accuracy of information

You are responsible for providing accurate and current information. If your email address, account details, order details, device details, or support information is incorrect, we may be unable to deliver products, provide support, verify your identity, process requests, or communicate important notices.

We are not responsible for harm caused by inaccurate information you provide.

29. Updates to this Privacy Policy

We may update this Privacy Policy at any time. The updated version becomes effective when posted, unless it states a later effective date or applicable law requires another method.

Your continued use of KurdeSIM™ after the updated Privacy Policy is posted means you accept the updated Privacy Policy. If you do not agree, stop using KurdeSIM™.

30. Final agreement to all policies

By accessing, browsing, ordering from, installing, activating, or using KurdeSIM™, you agree to this Privacy Policy and also agree to be bound by the KurdeSIM™ Terms of Use, Refund Policy, Accessibility Statement, product details, checkout notices, account rules, app rules, support instructions, and any other applicable rules posted or communicated by KurdeSIM™.

If you do not fully agree to all applicable policies, do not use KurdeSIM™, do not create an account, do not place an order, do not install an eSIM, and do not access the service.

31. Contact

For general support, contact support@kurdesim.net. For privacy requests, contact privacy@kurdesim.net. For legal notices, contact legal@kurdesim.net. For feedback, accessibility issues, or website improvement reports, contact feedback@kurdesim.net.

Copyright © KurdeSIM™. All rights reserved.