Privacy Policy

(UK GDPR & Data Protection Act 2018 compliant)

Last updated: [Insert date]

---

1. Who We Are

This Privacy Policy describes how Roampass LTD (“we”, “us”, “our”) collects, uses, and protects your personal data when you visit or make a purchase from our website operated via Shopify.

Roampass LTD is the data controller for the personal data described in this policy, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Contact email: support@roampass.uk

---

2. Personal Data We Collect

When you use our store, we may collect the following personal data:

• Identity information (name)

• Contact information (email address)

• Billing or address information (if provided)

• Order information (purchased products, order status)

• Marketing preferences (subscription status, if you opt in)

We do not knowingly collect personal data from children.

---

3. How We Use Your Personal Data

3.1 Order fulfilment

We use your personal data to:

• Process and deliver your eSIM purchase

• Send your eSIM details via email

3.2 Customer communication

We may contact you regarding:

• Your order

• Delivery of your eSIM

• Customer support enquiries

3.3 Marketing communications (opt-in only)

If you subscribe, we may send you promotional or informational emails.
You may unsubscribe at any time using the link included in our emails.

---

4. Legal Basis for Processing

Under UK GDPR, we process your personal data based on the following legal grounds:

• Performance of a contract – to fulfil your eSIM purchase

• Consent – for marketing communications (where you have opted in)

• Legal obligation – where processing is required by law

---

5. Email Delivery and Data Storage

Emails containing your purchased eSIM are processed and sent using Amazon Web Services (AWS) servers located in Stockholm, Sweden (European Union).

AWS acts as a data processor and processes personal data only in accordance with our instructions and applicable data protection laws.

Where personal data is processed within the European Union, such processing is carried out in accordance with applicable EU GDPR requirements.

---

6. Sharing of Personal Data

Roampass LTD does not sell, rent, or trade your personal data.

We only disclose personal data:

• Where required by law (e.g. court orders or regulatory obligations)

• To essential service providers strictly necessary for operating our services, under appropriate data processing agreements

---

7. Shopify Platform

Our store is hosted on Shopify, which provides the e-commerce platform.

Shopify may process certain personal data independently as a separate data controller. Roampass LTD does not control Shopify’s internal data processing activities.

For further information, please refer to Shopify’s own Privacy Policy.

---

8. Data Retention

We retain personal data only for as long as necessary to:

• Fulfil orders

• Comply with legal, tax, or accounting obligations

• Resolve disputes

Marketing-related data is retained until you unsubscribe.

---

9. Your Rights (UK GDPR)

You have the right to:

• Access your personal data

• Request correction of inaccurate data

• Request deletion of your personal data

• Object to or restrict processing

• Withdraw consent at any time

• Lodge a complaint with the UK Information Commissioner’s Office (ICO)

To exercise your rights, please contact: support@roampass.uk

---

10. Data Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, alteration, or misuse.

---

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time.
The latest version will always be published on this page.

---

12. Contact Information

Roampass LTD
Email: support@roampass.uk