Privacy Policy

• "Data Principal" means the individual to whom personal data relates — i.e., you, the customer or user of SimDel.
• "Data Fiduciary" means the entity that determines the purpose and means of processing personal data — i.e., SimDel / Ansh Store.
• "Data Processor" means a person who processes personal data on behalf of the Data Fiduciary — e.g., the Operator, travel booking platform, or biller to whom service data is forwarded.
• "Personal Data" means any data about an identifiable individual — including name, mobile number, address, email, UPI ID, travel details, bill account numbers, and transaction records.
• "Processing" means any operation performed on personal data including collection, storage, use, disclosure, and deletion.
• "Consent" means a freely given, specific, informed, and unambiguous indication of the Data Principal's agreement to the processing of personal data.
• "Data Breach" means any unauthorised or unlawful access, disclosure, alteration, loss, or destruction of personal data.
• "Data Protection Board" means the Data Protection Board of India established under the DPDP Act, 2023.

This Privacy Policy applies to all personal data collected by SimDel through:

• The SimDel website (simdel.netlify.app and all subpages), including online forms and automated platform interfaces.
• Helpdesk communication (+91 8858018999) for support and inquiries.
• In-store interactions at Ansh Store for SimDel telecom and device services.
• Telephone calls and SMS communication with customers.

This policy applies to all customers, prospective customers, and visitors of SimDel — for all five service categories: Telecom, Bills & Utilities, Travel & Transport, Entertainment & Finance, and Devices & Accessories.

3.1 Data Provided Directly by You

3.2 KYC Data — NOT Collected by SimDel

For SIM purchase, SimDel redirects customers to the official Operator website via a referral link. The customer completes KYC (Aadhaar, PAN, biometric, etc.) entirely on the Operator's own platform.

3.3 Data Collected Automatically (Website)

• IP address, browser type and version, device type and OS.
• Pages visited, time spent, referral URL — for website analytics and security.

No personally identifiable information is collected via cookies without consent.

3.4 Call Records

SimDel may maintain call logs (timestamps and numbers) for service tracking and dispute resolution. Call content is NOT recorded unless explicitly disclosed.

• Directly from you: when you submit details through secure online forms on our platform, visit Ansh Store, or contact our Helpdesk.
• From service providers: limited status updates (e.g., activation confirmation, porting status, booking confirmation, payment receipt) shared by Operators, booking platforms, or billers after processing your request.
• Automatically: via website analytics and server logs when you visit simdel.netlify.app.

Under the DPDP Act, 2023 and the IT Act, 2000, SimDel processes your personal data on the following lawful bases:

• Consent: For data collected via the website and for service requests. You provide implicit consent by submitting an online form or using the website.
• Contractual Necessity: Processing is necessary to perform the service you have requested — recharge, SIM delivery, porting, bill payment, travel booking, etc.
• Legal Obligation: Processing required to comply with Operator KYC mandates (DoT norms), TRAI regulations, and applicable Indian law.
• Legitimate Interest: For fraud prevention, website security, and resolving disputes.

SimDel processes your personal data strictly for the following purposes:

• Telecom Service Delivery: To automatically process recharges, porting requests (MNP), SIM swaps, DTH recharges, broadband bookings, and OTT subscriptions based on form data.
• Bill & Utility Payment Processing: To receive your bill account details, verify the bill amount, collect payment, and automatically submit payment to the respective biller.
• Travel Booking: To receive travel details, search availability, confirm pricing, and automatically deliver e-tickets.
• Entertainment & Finance Services: To automatically deliver Google Play codes, gift vouchers, and process credit card bills.
• Automated Payment Verification: To verify integrated UPI payments and process automatic refunds for failed transactions.
• Customer Communication: To automatically notify you regarding order status and deliver receipts or confirmations.
• Dispute Resolution: To investigate and resolve refund requests or service complaints via the Helpdesk.
• Fraud Prevention: To detect and prevent fraudulent activities or identity fraud.

SimDel does NOT use your data for:

• Selling or renting to third parties for their own marketing.
• Targeted advertising on third-party platforms.
• Automated decision-making that affects your legal rights.
• Any purpose not listed above without fresh consent.

7.1 Authorised Sharing

SimDel automatically routes your data with the following API partners and providers only as necessary to deliver the requested service:

• Jio / Airtel / Vi (Operators): Mobile number, operator, and plan details are shared for recharge processing and MNP assistance. For SIM purchase, SimDel only provides a referral link — no customer data is shared.
• Billers (Electricity boards, Water authorities, Gas companies, Insurance providers, FASTag issuers, etc.): Bill account/consumer number and payment amount — for bill payment processing.
• Travel Booking Platforms (IRCTC, MakeMyTrip, RedBus, Goibibo): Passenger names, travel dates, and contact details — for ticket booking.

7.2 Disclosure Under Law

SimDel may disclose personal data if required by: a valid court order, TRAI/DoT regulatory direction, or a request from law enforcement agencies in connection with a criminal investigation under applicable Indian law.

7.3 Prohibitions

SimDel will NOT sell your data, share it with advertisers or data brokers, or share it with any entity not directly involved in delivering your requested service.

How SIM Purchase Works (Privacy Perspective)

When a customer wants to buy a SIM through SimDel:

• SimDel provides plan comparison and operator recommendation.
• SimDel redirects the customer to the official Operator website or app via a referral link.
• The customer then completes the entire SIM purchase process — including KYC (Aadhaar, PAN, biometric verification, etc.) — directly on the Operator's own platform.
• SimDel has zero visibility into what the customer submits on the Operator's platform.
• SimDel receives no data back from the Operator about the customer's KYC outcome or SIM issuance.

Who Handles KYC

All KYC verification, identity validation, biometric authentication (fingerprint/iris via UIDAI), and SIM activation are performed exclusively by the respective Operator (Jio, Airtel, or Vi) in compliance with DoT norms. KYC data submitted by the customer on the Operator's platform is governed entirely by the Operator's own privacy policy.

• SimDel's systems track UPI transaction IDs (UTR numbers) strictly to verify completed payments and automate refunds for failed transactions.
• SimDel does NOT collect or store credit card numbers, debit card details, CVVs, ATM PINs, or bank account credentials. All payments are processed on secure integrated UPI gateways.
• SimDel does NOT manually collect payment screenshots; all verification is automated via the NPCI infrastructure.
• UTR numbers are retained for up to 1 year for dispute resolution.

UPI infrastructure is regulated by NPCI and RBI. SimDel has no access to the underlying payment rails or bank account information.

SimDel uses WhatsApp exclusively as a Helpdesk support channel. You are not required to send service requests or payment screenshots via WhatsApp, as all services are automated via our platform.

• If you contact our Helpdesk, your WhatsApp number, name, and message content are visible to our support personnel.
• Helpdesk chat history is retained for 90 days to resolve ongoing issues, then deleted.
• End-to-end encryption of WhatsApp messages is provided by WhatsApp's Signal Protocol.

SimDel retains personal data only as long as necessary to fulfil the purpose it was collected for, or as required by law:

After the retention period, personal data is securely deleted or anonymised. Customers may request early deletion of non-mandatory retained data (see Section 15).

SimDel implements appropriate technical and organisational measures to protect your personal data:

• Encrypted Transport: All data submitted via our online forms is transmitted using TLS encryption.
• Access Control: Only authorised SimDel personnel access customer data, on a need-to-know basis.
• Secure Integrations: Data submitted to Operator portals, booking platforms, and biller systems is transmitted over their secure, encrypted API channels.
• Minimal Data Principle: SimDel collects only the minimum data necessary for each service. For SIM purchase, SimDel collects no data at all — the customer handles everything on the Operator's platform directly.

The SimDel website may use the following cookie categories:

• Strictly Necessary Cookies: Required for basic website functionality. Cannot be disabled.
• Analytics Cookies: Used to understand visitor interactions (pages visited, time spent). SimDel may use Google Analytics for this purpose.
• No Third-Party Advertising Cookies: SimDel does NOT use cookies to serve targeted advertisements.

You can manage or disable cookies via your browser settings. Continued use of the SimDel website after being informed of cookie usage constitutes consent.

SimDel's services are primarily intended for adults (18+). SimDel does not knowingly collect personal data from children under 18 without verifiable parental consent.

• As per the DPDP Act, 2023, processing personal data of children requires verifiable parental consent.
• If SimDel becomes aware that a minor's data has been collected without parental consent, it will promptly delete such data.
• If you are a parent or guardian and believe your child's data has been collected by SimDel, contact [email protected] immediately.

Under the DPDP Act, 2023 and applicable Indian laws, you have the following rights:

• Right to Access: Request a summary of personal data held by SimDel and how it has been processed.
• Right to Correction: Request correction of inaccurate, incomplete, or misleading personal data.
• Right to Erasure: Request deletion of your personal data where it is no longer necessary (subject to legal retention obligations).
• Right to Withdraw Consent: Withdraw consent for data processing at any time. Withdrawal does not affect processing done prior.
• Right to Grievance Redressal: File a complaint regarding any data processing concern.
• Right to Nominate: Under the DPDP Act, nominate a person to exercise rights on your behalf in event of death or incapacity.
• Right to Complain to Data Protection Board: If SimDel fails to address your request satisfactorily, you may complain to the Data Protection Board of India (once fully constituted).

How to Exercise Your Rights

• Helpdesk (WhatsApp): +91 8858018999
• Email: [email protected] (subject: 'DATA RIGHTS REQUEST')

SimDel will acknowledge within 72 hours and respond fully within 30 days.

SimDel's primary operations are within India. Limited cross-border transfer may occur via:

• WhatsApp: Helpdesk messages are processed by Meta Platforms Inc., which operates servers globally.
• Cloud Services: If SimDel uses tools hosted outside India (e.g., Google Workspace for email), limited data may reside on international servers.
• Travel Booking Platforms: International flight bookings may involve data transfer to airline systems operating globally.

Any cross-border transfer is conducted in compliance with the DPDP Act, 2023 and subject to countries not being restricted by the Government of India.

SimDel uses or integrates with the following third-party services:

• WhatsApp (Meta): Helpdesk communication platform.
• UPI Payment Gateways: Payment processing — governed by NPCI regulations and respective gateway privacy policies.
• Operator Portals (Jio, Airtel, Vi): Customers are redirected to these for SIM purchase. SimDel does not share data with Operators in this flow.
• Travel Booking Platforms (IRCTC, MakeMyTrip, RedBus, Goibibo): For train, flight, bus, hotel bookings.
• Biller Portals: For electricity, water, gas, insurance, and other utility bill payments.
• Website Hosting (Netlify): simdel.netlify.app is hosted on Netlify.

SimDel is not responsible for the data practices of these third-party services. We encourage you to review their privacy policies independently.

In the event of a personal data breach likely to result in harm:

• SimDel will notify the Data Protection Board of India as required by the DPDP Act, 2023.
• Affected Data Principals will be informed of the breach nature, data compromised, and remedial measures taken within a reasonable timeframe.
• SimDel will take immediate steps to contain the breach and prevent further unauthorised access.

SimDel respects the privacy principles established under the DPDP Act, 2023:

• Lawfulness & Transparency: Data is processed lawfully and transparently (this Policy).
• Purpose Limitation: Data is used only for the purpose stated at collection.
• Data Minimisation: Only necessary data is collected.
• Accuracy: Reasonable efforts to ensure data accuracy.
• Storage Limitation: Data is not kept longer than necessary.
• Integrity & Confidentiality: Security measures to protect against unauthorised processing.
• Accountability: Established grievance redressal mechanism.

In accordance with the DPDP Act and IT Act, SimDel has designated a Grievance Officer to address data protection concerns.

For any questions, requests to exercise your rights, or privacy-related complaints, please contact the Grievance Officer directly. SimDel aims to acknowledge all privacy-related communications within 72 hours.