NUMBRRS
Privacy Policy
Effective Date: 10 February 2026
www.numbrrs.com
Numbrrs (a trading name of S-IMSY Ltd) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store, and disclose your personal data when you use our services and visit our website, in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and applicable European data protection legislation.
In this policy, "we", "us", and "our" refer to Numbrrs / S-IMSY Ltd. "You" and "your" refer to any individual whose personal data we process.
1. Data Controller
1.1 For the purposes of applicable data protection legislation, the data controller is S-IMSY Ltd, trading as Numbrrs.
1.2 If you have any questions about this Privacy Policy or our data practices, please contact us at privacy@numbrrs.com.
2. Personal Data We Collect
2.1 We may collect and process the following categories of personal data:
Account and Identity Data
Full name, email address, business name, billing address, and telephone number provided during account registration and order processing.
Financial Data
Payment card details (processed securely via our third-party payment processor), billing history, and transaction records.
Service Usage Data
Details of your use of our services, including numbers provisioned, message logs (metadata such as timestamps, sender and recipient information), API usage, and platform integration activity.
Technical Data
IP address, browser type and version, device information, operating system, time zone setting, and other technology identifiers on the devices you use to access our services.
Communications Data
Records of correspondence between you and our support team, feedback, and any other communications you send to us.
3. Lawful Basis for Processing
3.1 We process your personal data on the following lawful bases under Article 6 of the UK GDPR:
| Lawful Basis | Purpose | Data Categories |
|---|---|---|
| Performance of Contract | To provision numbers, deliver services, process payments, and manage your account. | Account, Financial, Service Usage |
| Legitimate Interests | To improve our services, ensure security, prevent fraud, and maintain network integrity. | Technical, Service Usage |
| Legal Obligation | To comply with legal and regulatory requirements, including law enforcement requests and telecommunications regulations. | All categories as required |
| Consent | To send marketing communications (where applicable) and for any processing not covered by the above bases. | Account, Communications |
4. How We Use Your Data
4.1 We use your personal data for the following purposes: to create and manage your account; to provision and deliver our services; to process payments and maintain billing records; to provide customer support and respond to enquiries; to monitor and improve the performance, security, and reliability of our services; to detect and prevent fraud, abuse, and violations of our Terms of Service; to comply with legal obligations and respond to lawful requests from authorities; and to communicate with you regarding service updates, changes, or issues.
4.2 We will not use your personal data for purposes materially different from those described above without first notifying you and, where required, obtaining your consent.
5. Data Sharing and Disclosure
5.1 We do not sell your personal data to third parties. We may share your personal data with the following categories of recipients:
Network Operators and Carrier Partners: To the extent necessary to provision and deliver our services, including number allocation and message routing.
Payment Processors: To process payments securely. We do not store full payment card details on our systems.
Service Providers: Third-party providers who assist us with hosting, analytics, customer support tools, and other operational services, under appropriate data processing agreements.
Law Enforcement and Regulatory Authorities: Where we are required by law to do so, or where we reasonably believe disclosure is necessary to prevent crime, protect safety, or comply with a legal obligation.
5.2 Where we share data with third parties, we ensure that appropriate safeguards are in place to protect your data in accordance with applicable data protection legislation.
6. Law Enforcement Cooperation
6.1 As a telecommunications service provider, we are subject to legal obligations to cooperate with law enforcement agencies and regulatory bodies. Where a lawful request is made by an appropriate authority, we will comply with that request to the fullest extent required by law.
6.2 This cooperation may include the disclosure of account information, service usage data, message metadata, and, where lawfully required and technically possible, message content.
6.3 We will only disclose personal data to law enforcement where we are satisfied that the request is lawful, proportionate, and made by an authority with appropriate jurisdiction. Where permitted by law, we will notify you of any such request unless we are legally prohibited from doing so.
7. International Data Transfers
7.1 We primarily store and process personal data within the United Kingdom. Where it is necessary to transfer personal data outside the UK or the European Economic Area (EEA), we will ensure that appropriate safeguards are in place, such as Standard Contractual Clauses approved by the relevant authority, or transfers to countries that have been deemed to provide an adequate level of data protection.
7.2 Further details about the specific safeguards applied to international transfers can be obtained by contacting us at privacy@numbrrs.com.
8. Data Retention
8.1 We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Our general retention periods are as follows:
| Data Category | Retention Period |
|---|---|
| Account Data | Duration of account plus 6 years following account closure |
| Financial / Transaction Data | 7 years from the date of the transaction (legal requirement) |
| Service Usage / Message Metadata | 12 months from creation (unless longer retention is required by law) |
| Technical / Log Data | 12 months |
| Support Communications | 3 years from the date of the last communication |
8.2 Where personal data is no longer required, it will be securely deleted or anonymised in accordance with our data retention procedures.
9. Your Rights
9.1 Under applicable data protection legislation, you have the following rights in relation to your personal data:
Right of Access: You have the right to request a copy of the personal data we hold about you.
Right to Rectification: You have the right to request correction of any inaccurate or incomplete personal data.
Right to Erasure: You have the right to request deletion of your personal data, subject to our legal obligations and legitimate interests.
Right to Restriction: You have the right to request the restriction of processing of your personal data in certain circumstances.
Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
Right to Object: You have the right to object to the processing of your personal data where we rely on legitimate interests as our lawful basis.
Rights Related to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing that produce legal effects or similarly significant effects.
9.2 To exercise any of these rights, please contact us at privacy@numbrrs.com. We will respond to your request within one (1) month, or such longer period as may be permitted by law.
9.3 You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you believe that your data protection rights have been infringed. The ICO can be contacted at www.ico.org.uk.
10. Data Security
10.1 We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption of data in transit and at rest, access controls, regular security assessments, and staff training.
10.2 Whilst we take all reasonable steps to protect your data, no method of transmission over the internet or method of electronic storage is completely secure. We cannot guarantee absolute security of your personal data.
11. Children's Privacy
11.1 Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child, we will take steps to delete that data promptly.
12. Changes to This Privacy Policy
12.1 We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by email or by posting a prominent notice on our website.
12.2 We encourage you to review this Privacy Policy periodically. Your continued use of our services after any changes constitutes your acceptance of the updated policy.
13. Contact Us
For privacy-related enquiries: privacy@numbrrs.com
For general support: support@numbrrs.com
Website: www.numbrrs.com
Numbrrs is a trading name of S-IMSY Ltd, registered in England and Wales.
You may also contact the Information Commissioner's Office (ICO) at www.ico.org.uk if you have concerns about how your personal data is being handled.
— End of Privacy Policy —