At iBASIS, the privacy of our stakeholders is very important to us. We take privacy very seriously and make our best efforts to ensure your personal data is protected.

Please read our Privacy Policy and find out how iBASIS collects, uses, shares and retains your personal data, what rights you have with respect to your personal data, and how we keep it secure.


We are a group of companies held by Tofane Global, S.A.S. that provide international telecommunication services and related added value services to other telecommunication companies.

This Privacy Policy applies to the different IBASIS legal entities, each of which may process your personal data.

References to “we”, “our or “us” in this Policy refer to the relevant company within IBASIS that is responsible for processing your personal data, as indicated in any contract for products or services you enter with us. You can find a list of our legal entities here: 


We are in the wholesale part of the telecommunications industry, so our customers are always other companies. iBASIS generally does not have access to information that allows to directly determine the identity of natural persons using our network or telecommunications services. However, we need to process personal data that may be necessary to provide our services in accordance to the applicable laws and in our legitimate interest.

We collect personal data:

  • From our customers for the provision of the services;
  • When is created by the use of our services – making a phone call, sending an SMS text;
  • When you apply for a job through our website;
  • If our websites use cookies, technology to collect information about user interactions and how to use the websites, in order to maintain and improve the design of the websites.


In the table below, you can find what sort of data and for what purposes we use it:

Type of dataPurpose

Traffic data: Origin and destination of telephone numbers, duration of call, volume of data, date and time of the communication

SMS content


IMEI or MAC address

IP address

Process communications

Receive or deliver communications to their destination and manage their signaling

Billing customers

Interconnect communications with other operators

Fraud prevention

Internal operations, including troubleshooting, network management and network optimization

Business analytics

Name, e-mail address, telephone numberCommercial and operational contacts with customers’ employees
Professional or employment-related informationRecruitment processes of potential employees
Name, e-mail, telephone number, country of residenceProvide requested information when you submit our Contact Us Form
Name, e-mailSend our newsletters when requested by you

We rely on our legitimate interest to process personal data and other information in order to provide, analyze, develop, improve and optimize our products and services, and to maintain the security and integrity of our networks and systems. We also have a legitimate interest or the need to perform a contractual obligation to process your personal data when sending you commercial information or to comply with legal obligations in connection with legal claims, compliance, regulatory or investigative purposes.


Cookies are small text files that are used to store small pieces of information. They are stored on your device when the website is loaded on your browser. These cookies help us make the website function properly, make it more secure, provide better user experience, and understand how the website performs and to analyze what works and where it needs improvement. As most of the online services, our website uses first-party and third-party cookies for several purposes. First-party cookies are mostly necessary for the website to function the right way, and they do not collect any of your personally identifiable data. For more information, please consult our Cookies Policy.


We may provide your personal data to:

  • Other carriers and operators as required to route international calls and messaging.
  • Other IBASIS legal entities where necessary and within the limits of applicable law for the provision of services.
  • Service providers, who process your personal data on behalf of us.
  • Competent authorities, to comply with applicable laws or court orders or in connection with judicial proceedings or other legal process.
  • Other companies in the process of a business transfer if we are acquired by or merged with another company.

When sharing your personal data with service providers, we take steps to assure your data is processed only for the provision of services and ensure compliance with data protection applicable regulations, by signing with them data processing agreements.


We have invested in and deployed technological and organizational security measures to protect information that we process. For instance we maintain firewalls, network segmentation, periodic security scans, patch updates and other technical security measures for our servers and internal networks, and the servers on which personal data is stored are located in secure facilities that are available only to authorized personnel. We use restrictive access methods to keep information secure. Our employees are dedicated to maintaining and upholding your privacy and security and are educated regarding this Privacy Policy. Only those employees who require personal data to perform a specific function are granted access to that information.


Personal Data provided to iBASIS may be transferred to, accessed from and otherwise processed in other countries outside EEA, in which iBASIS legal entities and third party service providers operate. When we transfer your information internationally, we ensure that appropriate security measures are taken with the aim of ensuring that your privacy rights continue to be protected as required by the applicable law. This may be achieved by using Standard Contractual Clauses or Data Processing Agreements to meet the adequacy and security requirements for our Customers that operate in the EU.


We retain personal data for as long as it is necessary to provide our services or to comply with the applicable law, regulation, tax or accounting practice or the terms of any governmental telecommunications licenses or authorizations to which we may be subject.

These might include retention periods:

  1. mandated by law, contract or similar obligations that apply to our business operations;
  2. for preserving, resolving (customer support), defending or enforcing our legal/contractual rights; or
  3. as needed to maintain adequate and accurate business and financial records (billing purposes).

Once we no longer need your personal data, we will take the necessary procedures to destroy it.


The most effective way to attend to your rights should be through your company or operator to whom we provide the services, so that they can contact us for this purpose.

Nevertheless, iBASIS guarantees you:

Right of Access: allows the data subject to obtain information on whether or not iBASIS is processing personal data concerning him/her and, if so, the right to obtain information on the personal data being processed.

Rectification: allows for the correction of errors and the modification of inaccurate or incomplete data.

Erasure: allows data to be erased and not processed by iBASIS, unless there is a legal obligation to retain them. For example, where personal data are no longer necessary for the purposes for which they were collected, the data subject may request that we delete such data without undue delay.

Restrict data processing: under the conditions established by law, it allows the processing of data to be stopped, in such a way as to avoid future processing by iBASIS, which will only keep them for the exercise or defense of claims.

Right to object: in certain circumstances and for reasons related to their particular situation, data subjects may object to the processing of their data. We will cease processing the data, except for compelling legitimate reasons, or the exercise or defense of any claims.

Portability: it allows the data subject to receive the personal data concerning him or her, and be able to transmit those data to another controller in a structured, commonly used and machine-readable format.

Should you need to exercise one of your rights or any additional information, you can contact our Data Protection Officer to the following address:

White Label Consultancy AS
Fjordalleen 16
0250 Oslo, Norway

Updated 15.09.2023