Beach Bum eSIM Privacy Policy

Last updated: June 4, 2025

Beach Bum eSIM (“we,” “us,” or “our”) is a service provided by Beach Bum Vacations. We respect your privacy and are committed to protecting any personal information you share with us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you:

    •    Visit our website (beachbumesim.com)

    •    Sign up for pre-launch notifications (email only)

    •    Download and use the Beach Bum eSIM mobile app

    •    Purchase an eSIM plan via Stripe

    •    Contact us for support or inquiries

By using our website or app, you agree to the terms outlined below.

⸻

1. Information We Collect

1.1 Email Address (Sign-Up)

When you sign up to be notified about our launch, we collect only:

• Email address

We do not ask for your name, phone number, or any other personal data at that stage. Your email address is used to send launch updates and your exclusive discount code.

1.2 Device & Usage Data (Mobile App)

When you download and use the Beach Bum eSIM app, we automatically collect:

• Device identifiers: Model, OS version, and a randomly generated app ID (no names or email addresses).
• Usage data: Which screens and features you use, session length, and any app crashes or errors. These logs help us fix bugs and improve performance.
• Anonymous analytics: We use Google Analytics to track general usage patterns (e.g., page views, session duration) without tying data back to you personally.
• Error monitoring: We use Sentry to capture crash reports and diagnostics. This data is anonymous and helps us identify and resolve technical issues.

We do not collect your precise location, contacts, or any photos. You remain anonymous as far as analytics and error tracking are concerned.

1.3 Payment & Billing Information (Stripe)

If you purchase an eSIM plan through our app, we collect:

• Billing address and payment details securely via Stripe. We only receive a tokenized reference from Stripe—your full credit card number or bank account is never stored on our servers.
• Transaction details: Plan purchased, date/time, amount, and any promotional code used.

All payment processing is handled by Stripe, which maintains its own stringent security and encryption standards (PCI Level 1). We do not store your full payment information.

1.4 Cookies & Tracking on Our Website

We use cookies and similar tracking technologies to gather:

• Session cookies: To remember your site preferences (e.g., language, theme).
• Analytics cookies: Google Analytics tracks how visitors browse our site (which pages are visited, how long visitors stay, referral sources). This data is aggregated and does not identify you personally.
• Marketing pixels (optional): If we run promotional campaigns, we may use a small pixel to measure ad performance. No personally identifying information is collected through these pixels.

Most browsers allow you to block or delete cookies via settings. Disabling cookies may limit certain site features (e.g., staying logged in to an account page).

⸻

2. How We Use Your Information

We use the information we collect for purposes that include:

• Delivering & Improving Our Service
• Activate, manage, and monitor your eSIM plans (using the token from Stripe).
• Provide customer support and troubleshoot technical issues.
• Analyze anonymous usage data (via Google Analytics and Sentry) to improve app stability and add features.
• Communications & Marketing
• Send you launch notifications and your 25 % discount code (email only).
• Occasionally share Beach Bum travel tips or new feature announcements (only if you remain subscribed).
• Respond to any support inquiries you send via email.
• Processing Payments
• Facilitate secure transactions through Stripe.
• Store transaction records (purchase date, plan details, amount) to comply with Canadian financial regulations.
• Compliance & Safety
• Detect, prevent, and address technical or security issues.
• Comply with Canadian privacy laws (PIPEDA) and any applicable regional regulations.
• Analytics & Research
• Aggregate and anonymize data to understand trends, measure user engagement, and improve our service.
• Evaluate overall app performance and fix bugs without linking data back to individual users.

⸻

3. Sharing & Disclosure of Information

We do not sell or rent your personal information. We may share data as follows:

• Service Providers & Contractors
• Stripe for payment processing. We only receive a token, not your full payment details.
• Google Analytics to understand how visitors use our site and app (anonymous, aggregated).
• Sentry for anonymous crash reporting and diagnostics.
• Email service provider (e.g., Mailchimp) to send launch notifications and occasional marketing emails. All partners are contractually obligated to keep your data secure and only use it for the services they provide.
• Beach Bum Vacations (Parent Company)
• We may share your email address and transaction details with Beach Bum Vacations to coordinate any bundled travel promotions or support inquiries—only if you opt in to receive travel-related communications.
• Legal Requirements & Protection
• To comply with any court order, law, or legal process.
• To protect our rights, property, or safety, and those of others.
• To investigate fraud, security, or technical issues.
• Business Transfers
• If Beach Bum Vacations merges with or is acquired by another company, your data may be transferred as part of that transaction. We will notify you before any such transfer occurs.

⸻

4. Data Security & Retention

4.1 Security Measures

• We use industry-standard encryption (SSL/TLS) to protect data in transit.
• Payment details are processed and stored only by Stripe—your full credit card number never touches our servers.
• Analytics and error logs (Google Analytics, Sentry) remain anonymous—they do not contain names, emails, or device identifiers that tie back to you personally.
• We maintain firewalls, regular security audits, and strict access controls to guard against unauthorized access.

4.2 Data Retention

• Email subscriptions: We retain your email address only as long as you remain subscribed.
• Transaction records: We store purchase data (date, plan details, amount) for 7 years to comply with Canadian tax and financial regulations.
• Anonymous analytics: Aggregated and de-identified usage data is kept indefinitely to analyze trends; raw identifiers from Sentry are purged once issues are resolved.

⸻

5. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

5.1 Canadian Residents (PIPEDA)

• Access & Correction: Request a copy of the personal data we hold about you and ask us to correct any inaccuracies.
• Withdrawal of Consent: You can withdraw consent for future communications (e.g., launch emails) by clicking “Unsubscribe” or emailing privacy@beachbumesim.com. Note that unsubscribing means you’ll no longer receive our launch updates or promotions.
• Complaint: You can contact the Office of the Privacy Commissioner of Canada if you believe we have violated your privacy rights under PIPEDA.

5.2 European Residents (GDPR)

If you reside in the European Economic Area, you have rights to:

• Access: Confirm whether we process your personal data and request a copy.
• Rectification: Request correction of inaccurate or incomplete data.
• Erasure: Request deletion of your data, subject to certain legal exceptions.
• Restriction of Processing: Ask us to limit processing under specific conditions.
• Data Portability: Receive your data in a structured, commonly used, machine-readable format.
• Object to Processing: Object to processing based on our legitimate interests.
• Withdraw Consent: Withdraw consent where we rely on it for processing.

To exercise these rights, contact us at privacy@beachbumesim.com.

5.3 California Residents (CCPA)

If you are a California resident, you have rights to:

• Know: Request details about personal data we have collected, used, shared, or sold (we do not sell personal data).
• Delete: Request deletion of personal data we’ve collected, subject to exceptions.
• Opt-Out: Instruct us not to sell your personal data (we do not sell data).
• Non-Discrimination: We will not discriminate against you for exercising your rights.

To make a request under CCPA, email privacy@beachbumesim.com with “California Privacy Request” in the subject line.

⸻

6. Children’s Privacy

Beach Bum eSIM is not intended for children under 13, and we do not knowingly collect personal information from anyone under 13. If we become aware we have inadvertently collected such data, we will delete it promptly. If you suspect we have information from a child under 13, please contact us at privacy@beachbumesim.com.

⸻

7. Third-Party Links & Services

Our website and app may contain links to third-party websites or services (e.g., travel booking pages, Stripe’s checkout). This Privacy Policy does not cover how those third parties collect, store, or use your data. We encourage you to review the privacy policies of any third-party sites you visit.

⸻

8. Changes to This Privacy Policy

We may update this policy occasionally (for example, when we add new features or comply with new regulations). We will post any changes here with a revised “Last updated” date. Significant changes—such as how we use or share personal information—will be communicated via email to our subscribers.

⸻

9. How to Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@beachbumesim.com

Mailing Address:

Beach Bum Vacations (Beach Bum eSIM)

89 Emery Rd.

Gore Bay, ON

Canada

Thank you for trusting Beach Bum eSIM with your data. We’re excited to keep you connected and to support your adventures—securely and transparently.