Privacy Policy

Last Updated: October 28, 2025

1. Introduction

Welcome to Nomra ("we," "our," or "us"). We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "App") and eSIM services.

By using Nomra, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our App.

2. Information We Collect

2.1 Personal Information

We may collect the following personal information:

  • Account Information: Name, email address, phone number when you create an account
  • Payment Information: Billing details, payment card information (processed securely through RevenueCat and Google Play Billing)
  • Device Information: Device ID, device model, operating system, unique device identifiers
  • Location Data: Country and region information to provide relevant eSIM plans

2.2 Usage Data

  • eSIM activation and usage statistics
  • Data consumption and plan usage
  • App interaction data and preferences
  • Search queries within the App (AI Search feature)
  • Customer support interactions

2.3 Technical Data

  • IP address and network information
  • Browser type and version
  • Time zone settings and device language
  • Crash logs and error reports

3. How We Use Your Information

We use the collected information for:

  • Service Provision: Processing eSIM purchases, activations, and managing your account
  • Payment Processing: Facilitating transactions through RevenueCat and Google Play Billing
  • Communication: Sending purchase confirmations, activation QR codes, and important service updates
  • Customer Support: Responding to inquiries and providing technical assistance via our 24/7 support
  • AI Features: Powering our AI Search to recommend suitable eSIM plans based on your destination
  • Analytics: Understanding usage patterns through Firebase Analytics and Airbridge to improve our services
  • Notifications: Sending push notifications via OneSignal about plan expiry, data usage, and promotional offers
  • Security: Detecting and preventing fraud, unauthorized access, and technical issues

4. Data Sharing and Disclosure

4.1 Third-Party Service Providers

We share data with trusted partners who help us operate our services:

  • Firebase (Google): Authentication, Firestore database, Cloud Functions, Remote Config, and Analytics
  • eSIM Access API: eSIM provisioning and network connectivity services
  • RevenueCat: In-app purchase management and subscription handling
  • OneSignal: Push notification delivery
  • Airbridge: Attribution and analytics tracking
  • Resend: Email notification services

4.2 Legal Requirements

We may disclose your information if required by law, court order, or government request, or to protect our rights, property, or safety.

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Data Storage and Security

We implement industry-standard security measures to protect your data:

  • Encryption of data in transit and at rest
  • Secure storage using Firebase Firestore and FlutterSecureStorage
  • Regular security audits and updates
  • Limited access to personal data by authorized personnel only
  • Payment information encrypted and processed through PCI-DSS compliant providers

Your data is stored on Firebase servers located in secure data centers. We retain your information for as long as your account is active or as needed to provide services, comply with legal obligations, and resolve disputes.

6. Your Privacy Rights

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct inaccurate information in your profile
  • Deletion: Request deletion of your account and personal data
  • Opt-Out: Unsubscribe from marketing communications and push notifications
  • Data Portability: Request your data in a machine-readable format
  • Withdraw Consent: Revoke permissions for data processing where consent was given

To exercise these rights, please contact us at support@nomra.world

7. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience:

  • Essential Cookies: Required for authentication and basic app functionality
  • Analytics Cookies: Firebase Analytics and Airbridge for usage statistics
  • Local Storage: Hive database for caching eSIM plans and user preferences

You can manage cookie preferences through your device settings, though disabling certain cookies may limit app functionality.

8. Children's Privacy

Nomra is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If we discover that a child has provided us with personal data, we will delete it immediately. If you believe a child has provided us with information, please contact us.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including the United States where Firebase servers are located. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy and applicable data protection laws.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes via email or push notification. The "Last Updated" date at the top indicates when the policy was last revised. Continued use of the App after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Nomra eSIM

Email: support@nomra.world

Website: www.nomra.world

24/7 Customer Support available through the App

12. Regional Compliance

12.1 GDPR (European Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with your local supervisory authority.

12.2 CCPA (California Users)

California residents have the right to know what personal information is collected, request deletion, and opt-out of the sale of personal information. We do not sell your personal information.