Data Protection and Privacy Policy

Effective Date: October 1st, 2024

Last Updated: December 10th, 2024

At ILFIS SRL, we are committed to safeguarding the privacy and security of your data. This policy outlines how we collect, use, and protect your MSISDN (Mobile Station International Subscriber Directory Number) in compliance with data protection regulations.

1. Data We Collect

We only collect the MSISDN of users to provide our services. No other personal information, such as name, email, or location, is collected or stored.

2. Purpose of Data Collection

The MSISDN is collected for the following purposes:

• To provide and deliver the requested service.
• To enable account authentication and verification processes.
• To ensure compliance with legal and regulatory requirements.

We ensure that the data collected is limited to what is necessary for these purposes.

3. How We Protect Your Data

We implement the following security measures to protect your MSISDN:

• Encryption: All MSISDN data is encrypted during transmission and storage.
• Access Control: Access to MSISDN data is restricted to authorized personnel only, using multi-factor authentication.
• Regular Audits: Periodic security audits ensure our compliance with the latest data protection standards.
• Data Minimization: We do not store any unnecessary personal information about our users.

4. Data Sharing

We do not sell, trade, or rent your MSISDN to third parties. MSISDN may be shared with:

• Trusted service providers for technical support, under strict confidentiality agreements.
• Regulatory authorities, only if required by law.

5. User Rights

Users have the following rights regarding their MSISDN:

• Access: You can request details about how your MSISDN is being used.
• Deletion: You may request the deletion of your MSISDN from our records unless required for legal purposes.
• Portability: You can request a copy of your MSISDN in a machine-readable format.

For any requests, please contact our Data Protection Officer at contact us.

6. Compliance with Data Protection Regulations

We comply with the following regulations:

• GDPR (General Data Protection Regulation): Ensures transparency, lawful processing, and user control over data.
• Data Protection Act 2018 (UK): Extends GDPR principles for UK-specific data handling.

7. Data Retention

MSISDN is retained only for the duration necessary to fulfill the stated purposes or as required by law. Once no longer needed, data is securely deleted.

8. Policy Updates

This policy may be updated to reflect changes in regulations or services. Updates will be communicated via [Insert Communication Channel].

9. Contact Information

For questions about this policy or to exercise your rights, contact us