Privacy Policy — DPT TRADING LTD

1) Who we are

Data Controller: DPT TRADING LTD (Company No. 16678112).

Registered office: 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.

If you are located in the United Kingdom or the European Economic Area, we process your data in accordance with the UK GDPR and/or EU GDPR, as applicable.

2) Data we collect

Account & profile data: name, email, login identifiers, password (hashed), language, country, city, preferences.
Communications: messages you send us (e.g., support emails, forms), marketing preferences.
Usage data: pages viewed, clicks, referring/exit pages, time on page, product interactions, crash/diagnostic logs.
Device & network data: IP address, device type, OS, browser, app version, approximate location (city/country), cookie IDs, advertising IDs.
Transaction data: order details, subscriptions, payment status (note: payments are processed by third‑party providers; we do not store full card numbers).
User content: reviews, comments, uploads (e.g., avatars), and any information you choose to share.
Partner data: information received from analytics, advertising, payment, eSIM or travel partners, where permitted by law.

3) How we collect data

Directly from you when you create an account, fill in forms, contact us, or make a purchase.
Automatically via cookies, SDKs, and similar technologies when you use the Services.
From third parties such as payment processors, analytics providers, and business partners, where lawful.

4) How we use data & legal bases

We process personal data for the following purposes and legal bases:

Provide and operate the Services (create/manage accounts, process orders, deliver content) — performance of a contract.
Customer support & communications — performance of a contract and legitimate interests.
Personalisation & recommendations — legitimate interests or consent where required.
Marketing (emails, in‑app, or ads) — consent where required; you can opt out at any time.
Analytics & service improvement — legitimate interests (to understand and improve our Services).
Fraud prevention & security — legitimate interests and legal obligations.
Compliance (tax, accounting, legal requests) — legal obligations.

5) When we share data

We may share your data with:

Service providers / processors (e.g., hosting, analytics, customer support, payment processing, anti‑fraud, email delivery) under contracts that require them to protect your data.
Business partners (e.g., travel/eSIM partners) when needed to deliver a feature you request.
Professional advisers (e.g., lawyers, auditors) and authorities where required by law.
Corporate transactions: in connection with a merger, acquisition, or asset sale, subject to appropriate safeguards.

We do not sell your personal information.

6) Cookies & tracking

We use cookies, pixels, and SDKs to run the site, remember preferences, measure performance, and (with your consent where required) personalise content and advertising.

Strictly necessary: required for core functionality (authentication, security, load balancing).
Preferences: remember choices like language and region.
Analytics: help us understand how the Services are used.
Marketing: personalise offers and measure campaigns (consent‑based where required).

You can manage cookies in your browser settings and, where available, via our in‑product Cookie Settings. Some features may not work without certain cookies.

7) International transfers

We may transfer personal data to countries outside the UK/EEA. Where we do, we rely on appropriate safeguards such as adequacy regulations, standard contractual clauses, or other lawful transfer mechanisms.

8) Data retention

We keep personal data only as long as necessary for the purposes set out in this Policy, including to comply with legal, accounting, or reporting obligations. Retention periods depend on the type of data and context of processing (for example, basic account data is retained while your account is active, and certain records may be kept longer to meet legal obligations).

9) Security

We use technical and organisational measures designed to protect personal data (e.g., encryption in transit, access controls, logging). However, no system is fully secure and we cannot guarantee absolute security.

10) Your rights

EEA/UK (GDPR): You may have the right to request access, rectification, erasure, restriction, portability, or to object to processing, and to withdraw consent at any time (without affecting the lawfulness of processing before withdrawal). You can also lodge a complaint with a supervisory authority.

UK: Information Commissioner’s Office (ICO)
EEA: your local data protection authority

California (CCPA/CPRA): California residents may request to know, access, correct, or delete personal information and to opt out of certain sharing for cross‑context behavioural advertising. We will not discriminate against you for exercising your rights.

To exercise rights, contact us at privacy@dapita.store. We may ask you to verify your identity.

11) Children

Our Services are not directed to children under 13 (or the age required by your country). We do not knowingly collect personal data from children. If you believe a child has provided us with data, please contact us and we will take appropriate steps.

12) Changes to this Policy

We may update this Policy from time to time. We will post the updated version and revise the “Last updated” date above. Significant changes may be notified through the Services or by email.

13) Contact us

DPT TRADING LTD (Company No. 16678112)
Registered office: 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
Email: privacy@dapita.store

If you operate multiple brands or domains, you can list brand‑specific contact details here.