What personal data does BulkSMSOnline.com collect?

We collect contact details (name, email, phone ), billing information, technical usage data (IP address, browser type), and the communication data you upload (contact lists, message content) necessary to provide our SMS services.

Is BulkSMSOnline.com GDPR compliant?

Yes, we strictly adhere to the General Data Protection Regulation (GDPR). We act as a Data Processor for the messages you send, and provide you with rights to access, rectify, and delete your personal data.

Do you sell my data or my contact lists to third parties?

No. We never sell, rent, or trade your personal information or your uploaded contact lists to third-party data brokers or marketing companies.

How long do you retain my data?

We retain account information as long as your account is active. Message transmission logs and delivery reports are typically retained for up to three (3) months for reporting and billing purposes before being securely purged.

Privacy Policy & Data Protection

1. Introduction & Purpose of Policy

This Privacy Policy ("Notice") sets out the way in which PT DIGITAL MASA DEPAN (operating as BulkSMSOnline.com, "we", "us", or "our") collects, processes, and protects your personal information when you use our website, APIs, or digital platforms (collectively, the "Services").

This Notice applies to individuals visiting our Website, registered users of our platform, and data processed on behalf of our users. We are committed to complying with global data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

2. Information We Collect

To provide our enterprise SMS services effectively, we collect several categories of information:

Account & Identity Data: First name, last name, email address, phone number, job title, company name, and account passwords.
Billing & Financial Data: Billing addresses, tax identification numbers, and transaction history. (Note: We do not store full credit card numbers; these are processed securely by our payment gateways like Stripe or PayPal).
Communication Data (Customer Data): The phone numbers, contact lists, and message content you upload to our platform to utilize our SMS routing services. (In this context, you are the Data Controller, and we act solely as the Data Processor).
Technical & Usage Data: IP addresses, MAC addresses, device identifiers, browser types, operating systems, referring/exit URLs, timestamps, and API request logs.

3. How We Collect Data

We gather personal data through the following methods:

Direct Interactions: When you register for an account, fill out web forms, subscribe to our newsletter, request customer support, or upload contact lists to your dashboard.
Automated Technologies: As you navigate our Website or use our API, we automatically collect Technical Data about your equipment and browsing actions using cookies, server weblogs, and similar tracking technologies.
Third-Party Sources: We may receive information about you from analytics providers (e.g., Google Analytics), payment processors confirming your transactions, or identity verification services used to prevent fraud.

4. How We Use Your Data (Purpose of Processing)

We only use your personal data when the law allows us to. We process your data for the following purposes:

Purpose / Activity	Type of Data Used	Legal Basis for Processing
To register you as a new customer and provide access to the platform	Account & Identity Data	Performance of a contract with you
To process payments and deliver SMS messages (routing)	Billing, Communication Data	Performance of a contract
To manage our relationship (support, notifying you of policy changes)	Account, Technical Data	Legitimate interests / Legal obligation
To administer and protect our business (fraud prevention, API rate limiting)	Technical, Identity Data	Legitimate interests (security)
To improve our website, products, and user experience	Technical & Usage Data	Legitimate interests

5. Data Sharing & Third Parties

We do not sell your personal data. However, to provide our Services, we may share necessary data with trusted third parties under strict confidentiality agreements:

Telecommunication Operators: To physically deliver your SMS messages, we must transmit the destination phone number and message content through global mobile network operators and aggregators.
Service Providers: IT infrastructure providers (e.g., AWS, cloud hosting), payment gateways, and customer support ticketing systems that assist in operating our platform.
Legal & Regulatory Authorities: We may disclose information if required to do so by law, court order, or to assist telecom regulators in investigating fraud, spam, or illegal activities.

6. Data Security Measures

We have implemented robust, industry-standard security measures to prevent your personal data from being accidentally lost, used, accessed in an unauthorized way, altered, or disclosed.

Our security protocols include SSL/TLS encryption for all data in transit, encrypted database storage for sensitive credentials, strict role-based access controls (RBAC) for our employees, and regular vulnerability scanning. In the unlikely event of a suspected data breach, we have procedures in place to notify you and any applicable regulator where we are legally required to do so.

7. Data Retention Policy

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

Account Data: Retained as long as your account is active. If your account is inactive for two (2) years, it may be slated for deletion.
Message Logs & Content: Transmission logs, delivery reports (DLRs), and message content are typically retained for a maximum of three (3) months for billing dispute resolution and troubleshooting, after which they are automatically purged.
Financial Records: Retained for up to seven (7) years to comply with international tax and accounting laws.

8. Your Privacy Rights (GDPR & CCPA)

Under certain circumstances, and depending on your jurisdiction (such as the EU or California), you have rights under data protection laws in relation to your personal data:

Right to Access: Request a copy of the personal data we hold about you.
Right to Rectification: Request correction of incomplete or inaccurate data.
Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data when there is no good reason for us continuing to process it.
Right to Restrict Processing: Ask us to suspend the processing of your data in certain scenarios.
Right to Data Portability: Request the transfer of your data to you or a third party in a structured, machine-readable format.
Right to Object: Object to processing of your personal data where we are relying on a legitimate interest.
Right to Withdraw Consent: Where we rely on consent to process your data, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, please email our Data Protection team at privacy@bulksmsonline.com. We aim to respond to all legitimate requests within 30 days.

9. Cookies & Tracking Technologies

Our Website uses cookies to distinguish you from other users, providing a seamless experience and allowing us to improve our site. We use the following types:

Strictly Necessary Cookies: Required for the operation of our platform (e.g., logging into secure areas, maintaining session state).
Analytical/Performance Cookies: Allow us to recognize and count visitors and see how they move around the site (e.g., Google Analytics).
Functionality Cookies: Used to recognize you when you return (e.g., remembering your language or region preferences).

You can set your browser to refuse all or some browser cookies, or to alert you when websites set or access cookies. If you disable cookies, some parts of our platform may become inaccessible or not function properly.

10. International Data Transfers

BulkSMSOnline.com operates globally. The data that we collect from you may be transferred to, and stored at, a destination outside the European Economic Area (EEA) or your home country. It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers.

Whenever we transfer your personal data internationally, we ensure a similar degree of protection is afforded to it by implementing appropriate safeguards, such as using Standard Contractual Clauses (SCCs) approved by the European Commission, or transferring data only to countries that have been deemed to provide an adequate level of protection.

11. Changes to this Privacy Policy

This Notice is effective as of May 2026. We reserve the right to update or change this Privacy Policy at any time. When we make substantial updates, we will notify you either through the email address associated with your account or by providing a prominent notice on our Website prior to the change becoming effective.

You should check this Notice periodically. Your continued use of the Service after we post any modifications constitutes your acknowledgment of the modifications and your consent to abide by the modified Notice.

12. Contact Information

If you have any questions about this Privacy Policy, our data practices, or if you wish to exercise your legal rights, please contact our Data Protection team:

Email: support@bulksmsonline.com