Privacy Policy for Everlink

1. Introduction

Welcome to Everlink ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application designed to provide eSIM services for tourists traveling to the Maldives.

Contact Information:

Everlink
Snow White, Male', Maldives
Email: support@everlink.mv

2. Information We Collect

When you use our Everlink mobile application, we collect the following personal information:

• Contact Information: Email address, first name and last name, phone number
• Identity Documentation: Passport number, passport expiry date, and passport picture
• Payment Information: Payment details processed through Bank of Maldives Payment Gateway

We do not knowingly collect information from children under the age of 13. If we discover that a child under 13 has provided us with personal information, we will immediately delete such information from our systems.

3. How We Use Your Information

We use the personal information we collect to:

• Provide and maintain our eSIM services
• Process your transactions and manage your account
• Verify your identity as required for telecommunications services
• Send you service-related communications
• Comply with legal obligations and regulatory requirements
• Protect against fraudulent or illegal activity

4. Payment Processing

We use Bank of Maldives Payment Gateway to process payments. We do not store or directly handle your payment card details. For information about how Bank of Maldives handles your payment information, please refer to their privacy statement at: https://www.bankofmaldives.com.mv/privacy-statement

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

• Service Providers: With third-party vendors who assist us in operating our application and providing our services
• Legal Requirements: When required by law, court order, or governmental authorities
• Business Transfers: In connection with any merger, sale of company assets, or acquisition
• Protection of Rights: To protect our rights, property, or safety, and that of our users or others

We do not sell, rent, or trade your personal information to third parties for marketing purposes. We do not use your information for advertising purposes.

6. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the internet or electronic storage is 100% secure.

7. Data Retention

We retain your personal information only for as long as necessary to provide our services and fulfill the purposes described in this Privacy Policy, unless a longer retention period is required by law.

8. Your Rights Under GDPR (For European Union Residents)

If you are a resident of the European Union, you have the following rights under the General Data Protection Regulation (GDPR):

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate personal data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request restriction of processing your personal data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to our processing of your personal data
• Right to Withdraw Consent: Withdraw consent at any time where we rely on consent to process your data

To exercise these rights, please contact us at support@everlink.mv. We will respond to your request within 30 days.

Legal Basis for Processing:

We process your personal data based on:

• Contract performance (to provide our eSIM services)
• Legal obligations (regulatory requirements)
• Legitimate interests (fraud prevention, security)

9. Your Rights Under CCPA and CPRA (For California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

Rights You Can Exercise:

• Right to Know: You can request information about the personal information we collect, use, and disclose
• Right to Delete: You can request deletion of your personal information
• Right to Correct: You can request correction of inaccurate personal information
• Right to Opt-Out: You have the right to opt-out of the sale or sharing of personal information (Note: We do not sell or share your personal information)
• Right to Limit Use of Sensitive Personal Information: You can limit the use of sensitive personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

Categories of Personal Information We Collect:

• Identifiers (name, email, phone number)
• Government-issued identifiers (passport information)
• Commercial information (transaction history)

How to Exercise Your Rights: To exercise any of these rights, please contact us at support@everlink.mv. We will respond to your request within 45 days. You may designate an authorized agent to make requests on your behalf.

Verification Process: We may need to verify your identity before processing your request by asking you to provide information that matches our records.

10. Your Rights Under CalOPPA (California Online Privacy Protection Act)

In compliance with CalOPPA, we declare that:

• We do not track users across third-party websites
• We do not respond to Do Not Track (DNT) signals
• Third parties cannot collect personally identifiable information about users' online activities through our application

You can review and request changes to your personal information by contacting us at support@everlink.mv.

11. International Data Transfers

As we are based in the Maldives, your information may be transferred to and maintained on servers located outside of your state, province, country, or other governmental jurisdiction where data protection laws may differ. By using our application, you consent to such transfers.

For EU residents, we ensure appropriate safeguards are in place for international transfers in compliance with GDPR requirements.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by updating the "Last Updated" date at the top of this policy and, where appropriate, notifying you through the application or via email. Please review this Privacy Policy periodically for any changes.

13. Children's Privacy

Our services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at support@everlink.mv.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us at:

Everlink
Snow White, Male', Maldives
Email: support@everlink.mv

For GDPR-related inquiries, EU residents may also contact their local data protection authority.