Privacy policy
Effective 2026-05-11. Draft pending legal review.
esimcompatibility.com is a free, public, cookieless reference for eSIM device compatibility. We collect as little data as possible and do not sell or share what we do collect.
1. Who we are
esimcompatibility.com (the "site") is operated independently. The site is publicly accessible and does not require an account, login, or signup. No personal data is collected for the purpose of identifying you.
2. What we collect
We collect anonymous usage data via Vercel Analytics in cookieless mode (page paths, referrer, country code derived from request IP at the edge, browser family). We do not store the raw IP address. We do not use cookies for tracking. We do not run third-party advertising trackers, social-network pixels, or session replay tools. When you use the public API endpoints (/api/check, /api/detect), we log standard request metadata for diagnostic and abuse-prevention purposes (timestamp, path, user-agent, country code). Request payloads are not retained.
3. Browser storage on your device
We set two localStorage keys on your device, both strictly necessary for site functionality: • ecc-theme — your light/dark/system theme preference. • ecc-consent — reserved for a future consent toggle (currently unused). These are stored on your device only. We cannot read them from our servers. You can clear them at any time from your browser settings. See /cookies for the full inventory.
4. Analytics
Vercel Analytics runs in cookieless mode. It records anonymous, aggregated metrics (page views, country, referrer, viewport size). It does not set cookies, does not track across sessions, and does not link visits to an identity. We honor the browser's Do Not Track signal: when present, the analytics call is suppressed entirely.
5. Third-party links and embeds
Pages may link to eSIM providers and other services. When you click an outbound link, you leave our site and become subject to that provider's privacy policy. Our embed widget, when used on third-party sites, does not set localStorage on the embedding domain and reports only anonymous, aggregated event metrics.
6. Your rights (GDPR / global)
Because we do not collect personally identifiable information, there is typically nothing to delete, correct, or export. If you believe we hold data about you in error, write to us (see contact below) and we will investigate and respond within 30 days. EU/UK visitors retain all GDPR rights including access, rectification, erasure, restriction of processing, and lodging a complaint with your local data protection authority.
7. California (CCPA / CPRA)
We do not sell or share personal information as those terms are defined by the CCPA/CPRA. We do not derive revenue from your data. California residents have a right to request information about any data collected; given that the site is cookieless and accountless, typically there is no record specific to you to disclose.
8. Children
The site is not directed at children under 13 (or under 16 in the EU). We do not knowingly collect data from children. If a parent or guardian believes their child has provided data, please contact us and we will remove it.
9. Changes
We may update this policy as the site evolves or as legal requirements change. Material changes will be noted with a new effective date. Continued use of the site after a change indicates acceptance of the updated policy.
10. Contact
Privacy questions: privacy@esimcompatibility.com (placeholder — replace before launch). General contact: hello@esimcompatibility.com (placeholder).