Legal
Privacy Policy
Last updated: July 11, 2026
How LimitlessNumber collects, uses, and protects your information when you use our services.
1. Overview
This Privacy Policy explains how LimitlessNumber, Inc. ("we", "us") collects, uses, and protects your information when you use our virtual number rental Services. By using the Services you consent to the practices described here.
2. Information we collect
- Account data — email address, username, and a hashed password (we never store passwords in plaintext).
- Rental data — the numbers you rent, their country and capabilities, and metadata for messages and calls (such as sender, timestamp, and status).
- Message and call content — the OTP/SMS content and call events delivered to your rented numbers, processed to provide the Services.
- Payment data — cryptocurrency transaction identifiers and balance activity. We do not collect card numbers.
- Technical data — IP address, device and browser information, and security logs.
3. How we use your information
- to provide, maintain, and secure the Services;
- to deliver messages and calls to your rented numbers;
- to process prepaid balances and prevent fraud and abuse;
- to authenticate you and manage sessions, 2FA, and passkeys; and
- to comply with legal obligations and enforce our Terms.
4. Message and call content
Content delivered to your numbers passes through carrier networks and our systems so we can route it to you. We retain such content only as long as necessary to deliver the Services or as required by law, after which it is deleted or anonymized.
5. How we share information
We do not sell your personal information. We share it only with:
- Carriers and connectivity partners needed to provision numbers and route messages;
- Service providers (for example hosting and infrastructure) under confidentiality obligations; and
- Authorities where required by valid legal process or to protect rights and safety.
6. Data retention
We keep account data for as long as your account is active and for a reasonable period afterward to meet legal, accounting, and security needs. Message metadata and content are retained for the minimum period necessary to operate the Services.
7. Security
We protect data with industry-standard measures, including TLS in transit, Argon2id password hashing, encryption of sensitive secrets at rest, short-lived access tokens, rotating refresh tokens, and support for two-factor authentication and passkeys. No system is perfectly secure, and we cannot guarantee absolute security.
8. Your rights
Depending on your location, you may have rights to access, correct, export, or delete your personal information, and to object to or restrict certain processing (for example under the GDPR or CCPA). You can exercise these rights from your account or by contacting us.
9. Cookies
We use strictly necessary cookies for authentication. Session tokens are stored inHttpOnly, SameSite=Lax cookies that cannot be read by JavaScript. We do not use advertising cookies.
10. International transfers
Because our Services are global, your information may be processed in countries other than your own. Where required, we use appropriate safeguards for such transfers.
11. Children
The Services are not directed to children and are intended for users aged 18 and over. We do not knowingly collect information from children.
12. Changes to this policy
We may update this Policy periodically. Material changes will be posted here with a revised date. Please review it regularly.
13. Contact
For privacy questions or to exercise your rights, contact privacy@limitlessnumber.com.