TraffXchange

Privacy Policy

Last updated: June 2026

This Privacy Policy explains how TraffXchange collects, uses, discloses and protects personal data in connection with the Services. It should be read together with our Data Policy, which covers message traffic and OTP handling in more detail.

1. Data we collect

We collect only what we need to operate the Services:

  • Account data — username, email, contact details and role.
  • Operational data — SMS traffic metadata (message detail records), routing, balances and billing records.
  • Security data — IP addresses, login history, device/user-agent information and audit logs.
  • Contact data — information you submit through our contact form (name, email, subject, message).

2. How we use data

We use personal data to provide and secure the Services, process traffic and billing, prevent fraud and abuse, comply with legal and regulatory obligations, respond to your enquiries, and improve the platform. We do not sell personal data.

3. Legal bases

Where applicable law requires it, we process personal data on the bases of performing our contract with you, our legitimate interests in running and securing the platform, compliance with legal obligations, and your consent where specifically requested.

4. Sharing & disclosure

We may share data with carriers, upstream providers and resellers strictly as needed to route and settle traffic; with service providers who process data on our behalf under appropriate safeguards; and with authorities where required by law or to protect rights, safety and the integrity of the platform.

5. Retention

We retain personal and traffic data only for as long as necessary to provide the Services, meet billing and compliance requirements, and resolve disputes. Message detail records are retained according to our operational retention schedule and applicable law, after which they are deleted or anonymized.

6. Security

We apply technical and organizational measures including encryption in transit, access controls, role-based permissions, a web application firewall, rate limiting, IP allow-listing and audit logging. No system is perfectly secure, but we work to protect data against unauthorized access, alteration and loss.

7. Your rights

Subject to applicable law, you may request access to, correction or deletion of your personal data, or object to or restrict certain processing. To exercise these rights, contact [email protected]. We will respond within the timeframe required by law.

8. Cookies

The dashboard uses only essential cookies and local storage required for authentication and preferences (such as theme). We do not use advertising or third-party tracking cookies.

9. Contact

For privacy enquiries or to exercise your rights, email [email protected].