Privacy Policy
ESNDoctor – IMEI Blacklist Removal Service
1. Information We Collect
ESNDoctor collects minimal information necessary to provide our IMEI blacklist removal services. We practice data minimization and only collect what’s essential for service delivery.
Device Information
IMEI number, device make/model, carrier information, and ESN/MEID when applicable
Personal Details
Email address, name (optional), and country/region for service customization
Technical Data
IP address, browser type, access times, and service interaction logs
2. How We Use Your Information
Your information is used exclusively for providing and improving our IMEI unlocking services:
| Purpose | Data Used | Legal Basis |
|---|---|---|
| Service Delivery | IMEI, Device Details | Contract Performance |
| Communication | Email Address | Contract Performance |
| Technical Support | All Collected Data | Legitimate Interest |
| Service Improvement | Anonymized Usage Data | Legitimate Interest |
| Legal Compliance | All Data (if required) | Legal Obligation |
3. Data Security Measures
ESNDoctor implements comprehensive security measures to protect your personal information:
4. Data Retention Policy
ESNDoctor follows a strict data minimization policy:
- Service Data: IMEI and device information are processed immediately and deleted within 24 hours of service completion
- Communication Records: Email confirmations are retained for 30 days for support purposes
- Technical Logs: Anonymized technical logs may be retained for up to 90 days for service improvement
- Legal Compliance: In rare cases, data may be retained longer if required by law enforcement or legal proceedings
- Account Deletion: Users can request immediate deletion of all personal data at any time
5. Third-Party Partnerships
ESNDoctor maintains strategic partnerships to deliver our services effectively:
- GSMA (GSM Association): Official partnership for accessing global IMEI databases
- Email Service Providers: For sending service confirmations and updates
- Security Services: SSL certificate providers and security monitoring services
- Analytics: Anonymized usage analytics to improve service performance (opt-out available)
Important: We never sell, rent, or trade your personal information to third parties for marketing purposes.
6. Your Privacy Rights
You have comprehensive rights regarding your personal information:
Right to Access
Request copies of all personal data we hold about you
Right to Rectification
Correct any inaccurate or incomplete information
Right to Erasure
Request deletion of your personal data (right to be forgotten)
Right to Restrict
Limit how we process your personal information
Data Portability
Receive your data in a machine-readable format
Right to Object
Object to processing based on legitimate interests
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days of receiving your request.
7. Cookies & Tracking
ESNDoctor uses minimal cookies and tracking technologies:
- Essential Cookies: Required for website functionality and security
- Session Cookies: Temporary cookies that expire when you close your browser
- Analytics Cookies: Anonymous usage statistics (you can opt-out)
- No Marketing Cookies: We do not use cookies for advertising or marketing purposes
You can control cookie preferences through your browser settings. Disabling essential cookies may affect website functionality.
8. International Data Transfers
ESNDoctor operates globally and may transfer data internationally:
- Primary Location: Our servers are based in Colombia, South America
- GSMA Partnership: Data may be processed in countries where GSMA operates facilities
- Adequate Protection: All transfers include appropriate safeguards for data protection
- Legal Frameworks: We comply with applicable international data protection laws
9. Children’s Privacy
ESNDoctor is committed to protecting children’s privacy:
- Our services are not intended for individuals under 18 years of age
- We do not knowingly collect personal information from children under 18
- If we become aware that a child has provided personal information, we will delete it immediately
- Parents or guardians who believe their child has provided information should contact us immediately
10. Data Breach Notification
In the unlikely event of a data security incident:
- Immediate Response: We will contain and assess the breach within 24 hours
- Authority Notification: Relevant data protection authorities will be notified within 72 hours
- User Notification: Affected users will be notified within 72 hours if personal data is compromised
- Remediation: We will take immediate steps to prevent further unauthorized access
- Investigation: Full investigation and report of the incident and preventive measures
11. Policy Updates
This Privacy Policy may be updated periodically to reflect changes in our practices or legal requirements:
- Notification: Significant changes will be communicated via email and website notice
- Effective Date: Changes become effective 30 days after notification
- Continued Use: Using our services after changes indicates acceptance of the updated policy
- Version History: Previous versions are available upon request
12. Contact & Complaints
For privacy-related questions, concerns, or to exercise your rights:
- Privacy Officer: [email protected]
- Response Time: We respond to privacy inquiries within 48 hours
- Complaint Resolution: We will work to resolve any privacy concerns promptly
- Regulatory Authority: You have the right to lodge complaints with your local data protection authority
Privacy Contact Information
For any privacy-related questions or to exercise your data rights: