Privacy Policy

We collect information you provide directly to us, including: • Account Information: When you create an account, we collect your email address, phone number (for verification), and name. • Payment Information: When you make a purchase, our payment processor (Stripe) collects your payment card details. We do not store your full credit card information on our servers. • Usage Data: We collect information about how you use our services, including eSIM activations, call logs, SMS logs, and data usage for billing purposes. • Device Information: We collect information about your device, including device type, operating system, and unique device identifiers to ensure eSIM compatibility and service delivery. • Location Information: We may collect approximate location data to optimize network connections and comply with telecommunications regulations.

We use the information we collect to: • Provide, maintain, and improve our services • Process transactions and send related information • Send you technical notices, updates, security alerts, and support messages • Respond to your comments, questions, and customer service requests • Monitor and analyze trends, usage, and activities in connection with our services • Detect, investigate, and prevent fraudulent transactions and other illegal activities • Personalize and improve your experience • Comply with legal obligations and telecommunications regulations

We do not sell your personal information. We may share your information in the following circumstances: • Service Providers: We share information with third-party vendors who perform services on our behalf, such as payment processing, data analysis, and customer support. • Telecommunications Partners: We share necessary information with our eSIM and telephony partners to provide connectivity services. • Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request. • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. • With Your Consent: We may share information with your consent or at your direction.

We implement appropriate technical and organizational measures to protect your personal information: • All data is encrypted in transit using TLS 1.3 • Data at rest is encrypted using AES-256 encryption • We use secure cloud infrastructure with SOC 2 compliance • Regular security audits and penetration testing • Access controls and authentication requirements for all personnel While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

We retain your information for as long as your account is active or as needed to provide you services. We also retain information as necessary to: • Comply with legal obligations (including telecommunications records requirements) • Resolve disputes and enforce our agreements • Support business operations Call detail records and SMS logs are retained for 12 months for billing and customer support purposes. You may request deletion of your data at any time (see Your Rights section).

Depending on your location, you may have certain rights regarding your personal information: • Access: You can request a copy of the personal information we hold about you. • Correction: You can update or correct inaccurate information through your account settings or by contacting us. • Deletion: You can request deletion of your account and associated data. • Portability: You can request an export of your data in a machine-readable format. • Opt-out: You can opt out of marketing communications at any time. To exercise these rights, please contact us at privacy@burrn.app or through your account settings.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. We take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy, including using Standard Contractual Clauses approved by relevant authorities for transfers of personal data.

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information.

We use cookies and similar tracking technologies to: • Keep you logged in to your account • Remember your preferences • Understand how you use our services • Improve our services and user experience You can control cookies through your browser settings. Disabling cookies may affect the functionality of our services.

We may update this Privacy Policy from time to time. We will notify you of any material changes by: • Posting the new Privacy Policy on this page • Updating the "Last Updated" date • Sending you an email notification (for significant changes) We encourage you to review this Privacy Policy periodically for any changes.

If you have any questions about this Privacy Policy or our privacy practices, please contact us at: Burrn Technologies Inc. Email: privacy@burrn.app Address: 123 Innovation Drive, Suite 400, San Francisco, CA 94105, United States For data protection inquiries in the EU, you may also contact our Data Protection Officer at dpo@burrn.app.