Privacy policy
1. Introduction
This Privacy Policy explains how personal data is collected, used, and protected when you use the eFon website and mobile application (“Services”).
Personal data is processed in accordance with applicable data protection laws, including the UK General Data Protection Regulation.
Personal data is processed in accordance with applicable data protection laws, including the UK General Data Protection Regulation.
2. Data Controller
The data controller responsible for determining the purposes and means of processing personal data is:
Serbway Ltd
Company No.: 14320920
VAT No.: 438421496
167–169 Great Portland Street, 5th Floor
London, England, W1W 5PF
United Kingdom
EFON LIMITED
ROOM 8, S-V, 6/F VALIANT INDUSTRIAL CENTRE
2–12 AU PUI WAN ST., FO TAN, NT
HONG KONG
EFON LIMITED provides the Services under the eFon brand and may perform certain contractual and administrative functions within the group. Such arrangements do not affect the allocation of data protection responsibilities described in this Privacy Policy.
Serbway Ltd
Company No.: 14320920
VAT No.: 438421496
167–169 Great Portland Street, 5th Floor
London, England, W1W 5PF
United Kingdom
EFON LIMITED
ROOM 8, S-V, 6/F VALIANT INDUSTRIAL CENTRE
2–12 AU PUI WAN ST., FO TAN, NT
HONG KONG
EFON LIMITED provides the Services under the eFon brand and may perform certain contractual and administrative functions within the group. Such arrangements do not affect the allocation of data protection responsibilities described in this Privacy Policy.
3. Personal Data We Collect
We collect only limited personal data necessary to provide our Services:
• Phone number (registration and verification)
• Email address (if provided)
• Authentication data via Apple Sign-In or Google Sign-In
• Basic technical data (IP address, device type, app version)
We do not collect sensitive personal data.
• Phone number (registration and verification)
• Email address (if provided)
• Authentication data via Apple Sign-In or Google Sign-In
• Basic technical data (IP address, device type, app version)
We do not collect sensitive personal data.
4. Legal Basis for Processing
Personal data is processed on the following legal bases:
• Performance of a contract
• Legitimate interests (service security, fraud prevention, service improvement)
• Compliance with legal obligations
• Performance of a contract
• Legitimate interests (service security, fraud prevention, service improvement)
• Compliance with legal obligations
5. How We Use Personal Data
We use personal data to:
• Provide telecommunications services
• Process payments
• Deliver customer support
• Improve service functionality
• Detect and prevent fraud or misuse
• Provide telecommunications services
• Process payments
• Deliver customer support
• Improve service functionality
• Detect and prevent fraud or misuse
6. Data Storage and Security
Personal data is securely hosted within GDPR-compliant infrastructure in the United Kingdom.
We implement appropriate technical and organisational measures, including:
• Encryption in transit (TLS)
• Restricted access controls
• Secure infrastructure
• Internal governance procedures
We implement appropriate technical and organisational measures, including:
• Encryption in transit (TLS)
• Restricted access controls
• Secure infrastructure
• Internal governance procedures
7. Data Sharing
We do not sell personal data.
Personal data may be shared with:
• Payment service providers
• Telecommunications operators (for call routing)
• Hosting and infrastructure providers
• EFON LIMITED (Hong Kong), where necessary for administrative and service support
All service providers process data subject to confidentiality and security obligations.
Personal data may be shared with:
• Payment service providers
• Telecommunications operators (for call routing)
• Hosting and infrastructure providers
• EFON LIMITED (Hong Kong), where necessary for administrative and service support
All service providers process data subject to confidentiality and security obligations.
8. International Transfers
Where personal data is accessed by affiliated entities outside the United Kingdom, appropriate safeguards are implemented to ensure compliance with applicable data protection requirements.
9. Data Retention
Personal data is retained only for as long as necessary to provide the Services and comply with legal obligations. After this period, data is securely deleted or anonymised.
10. Your Rights
Under applicable data protection law, you may have the right to:
• Access your personal data
• Request correction
• Request deletion
• Object to processing
• Request restriction
• Request data portability
To exercise your rights, please contact: support@efon.io
• Access your personal data
• Request correction
• Request deletion
• Object to processing
• Request restriction
• Request data portability
To exercise your rights, please contact: support@efon.io
11. Contact