This privacy policy describes how Visateq (“we” or “us”) collects, uses, handles and shares your information. This Policy applies to everyone who uses our services or who otherwise come in contact with us for example by email, our apps or our websites.
The information we collect
When you use our services we collect two (2) types of data: personal and non-personal data.
Personal data is always provided by you, but may also be queried from external sources to your device. The personal data is only available to us after a purchase is initiated, until then the data only exists on your device. Only data which is relevant for the requested service is collected. Due to the nature of our services this includes a wide range of information such as: personal data, family background, educational background, employment history, travel history and financial register. It may also include data which is considered sensitive such as: ethnicity, religion, union membership, health-related information, biometrics and criminal history.
The aforementioned non-personal data may automatically be collected from your device and how our services are used. This information consists solely of data which can not be used to identify you: such as operating system, device information, and click paths. The information is thus always stored in an anonymised manner.
Personal data may be anonymised and stored as non-personal data which can not be used to identify you.
How we use the information we collect
The personal data is solely used to carry out the requested services of the order or to be able to reach you in a timely manner. We do not rent or sell the personal data to third parties. Furthermore, we do not share personal data with third parties with the exceptions stated in this Privacy Policy.
We may share your personal data to third parties for the following reasons:
- To obtain the requested visa or document related to that process. This may include sharing your personal data to the issuing authorities, visa centers, translators, lawyers or other third parties which provide business activities in matters relating to visas.
- In accordance with legal requirements in response to a request from public authorities, including compliance with national security or law enforcement requirements.
The non-personal data collected is used to improve our services, provide improved customer support and detect market opportunities. We do not share, rent or sell the non-personal data to third parties. We may employ third parties to administer and provide services on our behalf. These third parties may have access to the data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purposes.
All collected data is treated in accordance with Swedish Law and The Personal Data Act (GDPR).
For how long will personal data be stored?
Your personal data is in general deleted 90 days after our service is completed. However, it might be stored longer when necessary, such as to resolve disputes and to enforce our agreements. We will also store payment details for a longer period in order to fulfil legal obligations such as for bookkeeping and financial reporting.
Security
Protecting your personal information is of uttermost importance to us. We have implemented several technologies and policies to safeguard your privacy and personal data from unauthorized access and improper use. In particular we employ Transport Layer Security (TLS) to secure all transfers between you and our services whilst storage and handling are conducted with utmost respect to the security of your personal data.
Legal ground of processing your personal data
We rely on the legal ground of completing the execution of a contract when utilising personal data. This is to aid you in the process, apply for and obtain visas and related documents on your behalf. The contract is solely initiated upon your request and all personal information is collected and handled according to local laws in agreement to GDPR. The legal ground is thus based on your consent which is given to us when you complete an order.
Your rights
Right to erasure
You can always request us to erase your personal data. Upon such request all your personal data, which may be deleted according to local law, will be deleted. Remaining data will be deleted when allowed in a timely manner.
Right to withdraw consent
If you have provided a consent to us for processing of personal data, you can always withdraw such consent for any future processing that is based on such consent.
Right to data access and portability
You have the right to receive your personal data in a commonly used and machine-readable format and to have this information provided to another controller, where this is technically possible. Due to the sensitive nature of the data such request can only be approved after a meeting where a state-issued ID card is presented.
Links to third party websites
We are not responsible for the privacy policies and practices of other sites or apps even if you access them using links from our services or platforms. Therefore we recommend that you read the policy of each site before using them.
Changes to the privacy policy
These terms may be unilaterally changed by Us without prior notice. You should therefore read through this privacy policy periodically. When major changes occur, including how your personal data is used, we will notify you by email.
How to contact us
If you have any questions about this Privacy Policy, please contact us at privacy@visateq.com.