Travel eSIM

Privacy Policy

All personal information communicated electronically on the Site is subject to this Privacy Policy. SUOP MOBILE S.L. (hereinafter, SUOP) is committed to complying with the General Data Protection Regulation (GDPR) and guarantees full adherence to its provisions, as well as the implementation of security measures established in REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND THE COUNCIL, dated April 27, 2016, concerning the protection of individuals regarding the processing of personal data and the free movement of such data.

Your Consent

When registering on this Site, you must accept the terms of our Privacy Policy. Once registered and upon accepting the Privacy Policy, any time you submit data through this Site—whether personal or not—you are expressly, freely, and unequivocally consenting to the collection, processing, and communication of such data in accordance with this Privacy Policy.

Information You Provide

To access the catalog of international connectivity services via eSIM technology displayed on the Site, a registration process is required. Some of the information you provide during registration may be personal identification data (i.e., data that can uniquely identify you, such as your full name, address, email, phone number, etc.). You will be informed about which data is mandatory and which is optional.

Additionally, this Site may collect information about visitors through specific questions and by allowing users to communicate directly with us via email, forms, or any other means available at the time.

Passive Information Collection

While browsing this Site, anonymous information is collected passively (i.e., without you voluntarily providing it) through various technologies (cookies, Internet tags, web beacons) and browsing data collection systems (e.g., log files, server access records, and click tracking). You can review our cookie policy for more details.

Data Security

This Site has adopted all necessary technical and organizational measures to protect the personal information transmitted and prevent its loss, misuse, alteration, destruction, or unauthorized access. However, no Internet transmission is completely secure or error-free. Specifically, emails sent to or from this Site may not be secure, so you should exercise caution when deciding what information to provide via email.

Additionally, if you use passwords, identification numbers, or other special access credentials on the Site, it is your responsibility to safeguard them.

Links to Other Websites

This Site may contain links to or references to other websites to which this Privacy Policy does not apply. We recommend that you read the privacy policy of each website you visit.

Additional Conditions

Use of this website is subject to our General Terms and Conditions.

Data Controller

SUOP MOBILE S.L.
CIF: B86701729
Address: C/ Zurbarán, 7 – Bajo, 4, 28010 Madrid
Data Protection Officer Email: rgpd@suop.es

Legal Basis for Data Collection

Registration on the Site and the collection of data mentioned in this Privacy Policy are necessary to browse the Site and access the catalog of services offered by SUOP.

This registration process allows the creation of a username and password, which are required to access the Site.

The data collected on this Site will be used exclusively for:

• Allowing Users to access eSIM connectivity services provided by third-party suppliers.
• Improving the Site’s content and personalizing it according to User preferences.
• Sending information (when explicit consent is given).
• Conducting marketing operations, studies, and commercial activities.

By registering on this Site, you expressly, freely, and unequivocally consent to the collection and incorporation of your data into SUOP MOBILE S.L.’s database for the purposes outlined in this Privacy Policy.

Data Sharing

With your explicit authorization, granted during registration on the website, you authorize SUOP to combine the information collected with other actively gathered data, unless otherwise specified at the time of collection.

You also authorize SUOP to share your personal data with third parties (not subsidiaries or affiliated companies) only in the following cases:

1. To final service providers to ensure the proper setup and operation of the eSIM service. These providers are required to process the data in compliance with this Privacy Policy and for the same purposes.
2. To contractors supporting SUOP’s operations (e.g., logistics, technical support, advertising, delivery services, and financial institutions). These contractors must process the data in compliance with this Privacy Policy and for the same purposes.
3. If the Site is sold, transferred, or otherwise transferred, including the contained information. In such cases, we will require the buyer or transferee to process the data according to this Privacy Policy and for the same purposes.
4. If requested by law enforcement authorities, court orders, or government regulations.

International Data Transfers

As the service operates both within and outside Europe, the collection, processing, and communication of data outlined in this Privacy Policy may involve transferring data outside of Spain.

In such cases, we and our service providers will ensure that the data recipient complies with the EU-U.S. Privacy Shield Agreement. For more information, visit:
Privacy Shield

Data Origin

Users must register on SUOP and create an account to access eSIM services. As part of this process, Users will be asked to provide specific information, including (but not limited to):

• Full name
• Complete address
• Phone number
• Email address

Additionally, we may collect information related to the IP address from which you connect.

No special category (sensitive) data is processed on travel.suop.es.

Data Processing Purposes

The processing of your data serves the following purposes:

1. Access to eSIM connectivity services

• We share data with eSIM service providers for proper delivery, activation, and use of eSIMs.

2. Marketing and promotional communications

• Sending advertisements about new rates, services, promotions, and updates related to SUOP’s eSIM catalog.
• Personalized marketing based on user preferences and profile analysis.
• Communications may be sent via text messages, emails, calls, postal mail, etc.
• Users can opt out at any time via:
  • Postal mail (to the address above)
  • Email (rgpd@suop.es)
  • SUOP Support Service

3. Statistical analysis

• Data retention for statistical analysis to improve commercial strategies.

4. Fraud prevention

• Verification of user data and anti-fraud measures (e.g., CSV codes or bank confirmation requests).

Data Communication

The personal data processed by SUOP for the purposes outlined above may be shared with specific recipients based on legal grounds.

RECEIVER	TYPE OF DATA SHARED	LEGAL BASIS
eSIM Service Providers	Identifying data	Development, maintenance, and network connection for eSIM service provision.
Emergency Services (e.g., 112)	Identifying and location data	Legal Regulation.
Authorized Agents under Law 20/2007 on Data Retention	As detailed in Article 3 of Law 25/2007	Legal Regulation.
Logistics Operators	Identifying data	Shipping of products and equipment.

User Rights

The data subject may exercise the following rights:

• Right to request access to their personal data.
• Right to request rectification or deletion of their data.
• Right to request restriction of data processing.
• Right to object to data processing.
• Right to data portability.
• Right to withdraw previously given consent.

Everyone has the right to obtain confirmation as to whether we are processing their personal data. Data subjects have the right to access their personal data, as well as to request correction of inaccurate data or, if applicable, request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected.

In certain circumstances, data subjects may request restriction of data processing, in which case we will only retain the data for the exercise or defense of legal claims. Likewise, in certain situations and for reasons related to their particular circumstances, individuals may object to the processing of their data. In this case, the entity will stop processing the data unless there are compelling legitimate grounds or if necessary for the exercise or defense of potential claims.

If you have given consent for a specific purpose, you have the right to withdraw your consent at any time, without affecting the legality of processing based on the consent provided before its withdrawal.

If you believe that your data protection rights have been violated, particularly if you have not obtained satisfaction in the exercise of your rights, you may file a complaint with the relevant Data Protection Authority through their website: www.agpd.es.

Data Retention

Personal data will be retained as long as the relationship with the entity continues and no request for deletion has been made by the data subject. Once this relationship ends, the User may request the deletion of their profile information by contacting us through the previously mentioned channels.

Your Responsibility Regarding Third Parties

SUOP warns that, except in cases of legally established and accredited representation, no User may use another person’s identity or communicate their personal data. Therefore, if you use email, you may only include personal data that belongs to you, ensuring that it is appropriate, relevant, current, accurate, and truthful.

You will be solely responsible for any damage, whether direct or indirect, caused to third parties or SUOP for using another person’s personal data without their consent or for providing false, inaccurate, outdated, inappropriate, or irrelevant data.

Modifications to This Privacy Policy

Any changes to our Privacy Policy will be posted here. Please review this section periodically, especially before providing personal data.

The last revision was conducted on February 20, 2025.