Privacy Policy
Last updated: February 2026
Contents
- 1. Introduction
- 2. Data Controller Information
- 3. Personal Data We Collect
- 4. Sources of Your Personal Data
- 5. Legal Basis for Processing
- 6. Data Sharing and Recipients
- 7. International Data Transfers
- 8. Your Data Protection Rights
- 9. Data Retention
- 10. Children's Personal Data
- 11. Cookies and Tracking Technologies
- 12. Contact Details
- 13. Referral Program Privacy
1. Introduction
This privacy notice ("Notice") sets out how Future Syncs Limited, UK, trading as HelloRoam ("HelloRoam", "we", "us", "our"), handles your personal data. It applies when you use our app, visit our website, or purchase one of our eSIM plans.
Ireland is an EU member state and the General Data Protection Regulation (EU) 2016/679 ("GDPR") applies in full. The Data Protection Commission (DPC) is the lead supervisory authority in Ireland. We are required by the GDPR to give you this information, including details of your rights.
Does HelloRoam comply with GDPR?
HelloRoam will not share your personal data with any third party without a lawful basis under GDPR. We comply with Regulation (EU) 2016/679, and our services are designed with data protection built in from the start. As a company serving users in Ireland, we take our obligations under the GDPR and the Data Protection Act 2018 seriously.
2. Data Controller Information
The data controller for the purposes of this Notice is Future Syncs Limited, UK, trading as HelloRoam. As data controller, HelloRoam determines how and why your personal data is processed.
Company:Future Syncs Limited
Brand:HelloRoam (a brand of Future Syncs Limited)
Address:London, United Kingdom
Company Registration:Pending verification
Email:admin@helloroam.com
HelloRoam is committed to handling your personal data with care and in line with the GDPR. This Notice gives you a clear picture of our data practices and the choices available to you.
3. Personal Data We Collect
The following categories of personal data may be collected and processed:
| Category | Examples |
|---|---|
| Identity Data | First name, last name, username or similar identifier, title, date of birth |
| Contact Data | Email address, telephone number, billing address, delivery address |
| Financial Data | Payment card details (handled by our payment provider), bank account information |
| Transaction Data | Details of payments to and from you, details of products and services purchased |
| Technical Data | IP address, login data, browser type and version, time zone, browser plug-in types, operating system, device identifiers |
| Profile Data | Username and password, order history, preferences, feedback and survey responses |
| Usage Data | How you use our website, app, and eSIM services, including activation and data consumption records |
| Marketing Data | Your marketing preferences and communication choices |
4. Sources of Your Personal Data
We gather personal data from the following sources:
You, Directly
You share Identity, Contact, and Financial Data with us directly when you fill in a form, get in touch by phone, email, or other means, register an account, buy a plan, sign up for marketing, enter a competition, or send feedback.
Automated Collection
When you browse our website or use our app, we collect Technical Data automatically through cookies, server logs, and similar tools. This covers your device, browsing behaviour, and usage patterns.
Third-Party Sources
We may receive personal data from analytics partners, advertising services, payment processors, and identity verification providers.
5. Legal Basis for Processing
We only process your personal data where the GDPR gives us a lawful basis to do so. The bases we rely on are:
Contract Performance
Processing needed to carry out our contract with you, for example to deliver your eSIM plan.
Legitimate Interests
Processing necessary for our legitimate business interests, provided those interests are not overridden by your rights or freedoms.
Legal Obligation
Processing required to comply with a legal or regulatory obligation.
Consent
Processing based on your explicit consent for a specific purpose.
Your Right to Withdraw Consent
We only process your personal data where the GDPR gives us a lawful basis to do so. The bases we rely on are:
6. Data Sharing & Recipients
We may share your personal data with the following types of recipients:
Service Providers
Businesses that deliver services for us, including payment processors, data analysts, email providers, hosting companies, customer service teams, and marketing partners.
Network Partners
Mobile network operators and eSIM partners who deliver the connectivity you purchase.
Professional Advisers
Solicitors, accountants, auditors, and insurers who support our business operations.
Regulatory and Public Authorities
Government departments, regulatory bodies, courts, and law enforcement, where required by law.
Third-Party Data Standards
All third parties who process personal data on our behalf must protect it to the same standard we do. We only allow them to process data for the specific purpose we have set out. They cannot use your data for their own ends.
7. International Data Transfers
Some of our service providers are based outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we put safeguards in place to make sure it stays protected to the GDPR standard.
• Transfers to countries that the European Commission has found to provide adequate protection.
• Standard Contractual Clauses (SCCs) approved by the European Commission.
• Transfers to US providers certified under the EU-US Data Privacy Framework.
Questions About Transfers?
If you would like details of the specific safeguards in place when we transfer data outside the EEA, please write to us at privacy@helloroam.com.
8. Your Data Protection Rights
Under the GDPR, you have a set of rights over your personal data. These include:
Right to Access
Ask us for a copy of the personal data we hold about you.
Right to Rectification
Ask us to update or correct any inaccurate or incomplete data.
Right to Erasure
Ask us to delete your personal data, subject to certain conditions.
Right to Restrict Processing
Ask us to limit how we use your data in certain situations.
Right to Object
Object to our processing of your data, in certain circumstances.
Right to Data Portability
Ask us to send your data to you or to another organisation in a portable format.
How to Use Your Rights
To use any of the rights set out above, contact us at privacy@helloroam.com. There is no charge for exercising your rights in most cases. We may apply a small fee only where a request is clearly without foundation or unreasonably repetitive. You also have the right to lodge a complaint with the Data Protection Commission (DPC) at www.dataprotection.ie.
9. Data Retention
We hold your personal data only for as long as we need it to serve the purpose it was collected for, including any legal, tax, or reporting obligations.
When setting retention periods, we weigh the amount and sensitivity of the data, the risk of harm from unauthorised access, the purpose it was collected for, whether we could meet that purpose without keeping it, and what applicable law requires.
| Category | Retention Period |
|---|---|
| Account Data | Duration of your account plus 6 years after closure |
| Transaction Data | 7 years from the transaction date |
| Marketing Preferences | Until you unsubscribe, or after 3 years without activity |
| Technical and Usage Data | 13 months from the date of collection |
10. Children's Personal Data
HelloRoam's services are intended for users aged 16 and over. We do not knowingly collect personal data from children under 16. If you are a parent or guardian and think your child has shared personal data with us, please get in touch straight away.
If we find that we have collected data from a child without appropriate parental consent, we will delete it from our systems as soon as possible.
Children Under 16
Concerned that we may hold data about a child under 16? Contact us immediately at admin@helloroam.com.
12. Contact Information
For any questions about this notice or how we handle personal data, please use the contact details below:
Complaints to the DPC
For any questions about this notice or how we handle personal data, please use the contact details below:
13. Referral Program Privacy
When you participate in the HelloRoam referral program, we collect limited technical data to attribute referrals accurately and prevent fraud.
Data Collected
- IP address (anonymized after attribution)
- Browser user-agent string
- Device fingerprint (hashed, non-reversible)
Purpose
This data is used solely to attribute referral purchases to the correct referrer, prevent duplicate or fraudulent claims, and calculate referral rewards. We do not use this data for advertising or sell it to third parties.
Data Retention
Referral attribution data is retained for 90 days after the referred purchase. After this period, the data is automatically deleted. Aggregated, non-personal statistics (total referrals, reward amounts) are kept for accounting purposes.
Your Privacy Matters
We care about your data rights. Our practices are transparent, and you can exercise your rights anytime by contacting us at admin@helloroam.com.
Related Policies
Questions About This Policy?
Have questions about this Privacy Policy or how we handle your data? We're happy to help.
Get the app. Travel sorted.
Keep track of all your eSIMs in one place, wherever you are.
