Privacy Policy

SMS Virtual ("we", "us", or "our") operates the website smsvirtual.uk and provides virtual phone number services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

By using SMS Virtual, you agree to the collection and use of information in accordance with this policy. If you disagree with any part of this policy, please discontinue use of our services.

Information You Provide Directly:

• Account Information — When you register, we collect your name, email address, and password (stored as a secure hash)
• Payment Information — Payment details are processed by our payment providers. We do not store full card numbers. For crypto payments, only the transaction hash is recorded
• Communications — If you contact our support team, we retain the contents of that communication

Information Collected Automatically:

• Usage Data — Pages visited, features used, time spent, clicks, and navigation paths
• Device & Browser Data — IP address, browser type and version, operating system, device type
• Cookies — Session cookies for authentication; analytics cookies (see Section 6)

Information We Do NOT Collect:

• We do not require government-issued ID
• We do not collect your real phone number
• We do not read the content of SMS messages received on virtual numbers beyond displaying them in your dashboard

We use the information we collect to:

• Provide and maintain our service — Process purchases, deliver virtual numbers, display received SMS
• Manage your account — Authentication, account settings, balance management
• Process payments — Verify transactions, apply credits, issue refunds where applicable
• Send transactional communications — Order confirmations, SMS delivery alerts, expiry reminders (if enabled in settings)
• Improve our platform — Analyse usage patterns to fix bugs and improve features
• Prevent fraud and abuse — Detect and block fraudulent transactions or terms violations
• Comply with legal obligations — Respond to lawful requests from authorities where required

We do not sell your personal information to third parties for marketing purposes.

We share your data only in the following circumstances:

Service Providers

We work with trusted third-party companies to operate our platform:

• - Payment processors (to handle transactions)
• - Cloud hosting providers (to store data securely)
• - Analytics providers (to understand usage — see Section 6)
• - Email service providers (to send transactional emails)

All service providers are contractually bound to process your data only as instructed by us and in compliance with applicable data protection law.

Virtual Number Providers

To deliver virtual numbers, we transmit purchase requests to our upstream suppliers. These providers receive only the number type and country requested — never your personal identity details.

Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe in good faith that disclosure is necessary to protect our rights or the safety of others.

Business Transfers

In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction. We will notify you via email or a prominent site notice before your data becomes subject to a different privacy policy.

You may request deletion of your account and personal data at any time (see Section 7). Note that transaction records may be retained longer to comply with financial regulations.

We use the following types of cookies:

Essential Cookies

Required for the site to function. Cannot be disabled.

• Session authentication token
• CSRF protection token
• User preferences (theme, language)

Analytics Cookies

Help us understand how visitors use our site. You may opt out.

• Page view tracking
• Feature usage analytics
• Error monitoring

We do not use advertising cookies or sell browsing data to advertisers.

You can control cookies through your browser settings. Disabling essential cookies will prevent you from using authenticated features.

Depending on your location, you may have the following rights regarding your personal data:

• Access — Request a copy of the personal data we hold about you
• Correction — Request correction of inaccurate or incomplete data
• Deletion — Request deletion of your personal data ("right to be forgotten")
• Portability — Request your data in a machine-readable format
• Objection — Object to processing of your data for certain purposes
• Restriction — Request that we restrict processing of your data
• Withdraw Consent — Where processing is based on consent, withdraw it at any time

To exercise any of these rights, contact us at privacy@smsvirtual.uk. We will respond within 30 days. We may need to verify your identity before processing your request.

SMS Virtual is not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe a child has provided us with personal information, please contact us immediately at privacy@smsvirtual.uk and we will delete it promptly.

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your country.

Where we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission.

We implement appropriate technical and organisational security measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction. These include:

• AES-256 encryption for data at rest
• TLS 1.3 encryption for all data in transit
• Bcrypt password hashing (never stored in plain text)
• Regular security audits and penetration testing
• Strict internal access controls

No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

We may update this Privacy Policy from time to time. When we do, we will:

• Update the "Last Updated" date at the top of this page
• Notify registered users via email for material changes
• Post a notice on our website

Continued use of our service after changes take effect constitutes acceptance of the revised policy.

For privacy-related questions, requests, or complaints:

• Email: privacy@smsvirtual.uk
• Response time: Within 2 business days
• Support: smsvirtual.uk/contact

If you are located in the EU and believe we have not adequately addressed your concern, you have the right to lodge a complaint with your local data protection authority.