Privacy policy

Effective date: October 2024

We are (hereinafter, “the Company”, “We”, “Us” and the like) firmly committed to regulatory compliance and the privacy and protection of personal data. Accordingly, in the present Privacy Policy, we explain the Users of this website all the relevant information to better understand what we do with your personal data. In this sense, please be aware that if you confirm the payment of our professional services, you automatically acquire the status of Customer and are linked to our Terms and Conditions (hereinafter, individually referred to as “the User”, “the Customer” and jointly referred to as “you”, “your”).

We may update this Privacy Policy according to new legislative or jurisprudential requirements and/or business needs, among others. Any update or modification of the present Privacy Policy will be considered applicable from the moment of its publication on the website. Therefore, the User is recommended to review this Privacy Policy regularly.

Please bear in mind that to access and use our website you must be an adult and have legal capacity to enter into contracts, according to the applicable national laws and regulations of your birth and/or residence country.

Without affecting your rights under current applicable legislation, the present Privacy Policy is not contractual or part of your contract with us.

What Does Personal Data Mean?

For the purposes of this Privacy Policy, "personal data" means all data that identifies you or that could be used to identify you, such as your contact details like your name and surname, date and place of birth, email/postal address, signature, and/or other information such as how you use our website or your IP address.

Who is your personal data controller?

The Company stated in our Terms and Conditions will be the controller of your personal data collected, among others, when you browse our website, you fulfill the Electronic Travel Authorization application, you contact our Customer Service Department, etc.

When does this Privacy Policy apply?

This Privacy Policy applies to the personal data that we collect, use and process from you as User of our website and/or Customer.

Our website may contain icons and/or links to redirect you to websites of third parties. In this sense, please note that these third party websites are not operated by us, so we can not assume any responsibility for the information and content provided on them and/or the correct provision of the functionalities and/or services offered by these third parties, since we have no control over this. These third party websites are bound by their own Cookie and Privacy Policies.

What personal data we collect?

The personal data we collect from and about you is as follows:

  • Direct interactions: When you interact with us by completing the forms on our website (such as the Electronic Travel Authorization application form or the Contact form) and/or when you contact our Customer Service Team by the enabled means at the time of contact, such as website's chat, post, email or telephone.
  • Automated technologies: We may automatically collect information like your IP address, the sections you consult on our website or the time that you remain on our website by using cookies, whether our own or from third parties.
  • Payment data: We will only request your payment information once you have completed your Electronic Travel Authorization application form and you have accepted our Terms and Conditions which will then allow you to proceed to the payment page of the Electronic Travel Authorization costs. The captured data will be sent securely to our certified payment service providers for the authorization of the transaction. In no case we visualize or access the complete data of your credit or debit card. It is the customer’s responsibility not to enter, provide or send his/her card information through channels not authorized by the company.

Please be informed that you only be required to provide those personal data and information strictly necessary to fulfill the purposes explained below. In this sense, if you provide us with more information that the ones expressly required, you consent the processing of them for the informed purpose/s for which you're sending it.

The User must provide accurate, updated and complete personal data and/or private information in order to properly submit his/her Electronic Travel Authorization application and/or to manage his/her information and/or support request. We will not assume any type of responsibility for circumstances that are beyond our reasonable control, such as being provided with erroneous, incomplete and/or fraudulent information from the User.

If you provide us with personal data of third parties, whether these minors or adults, you guarantee us that you have informed them about the purposes for which their personal data will be processed by the Company and that you have obtained their prior and express consent to communicate us their personal data.

If you provide us with the personal data of a minor, you guarantee us that you are his/her parent and/or legal guardian.

Moreover, bear in mind that if:

  • the Company has received an adult’s personal data and/or private information to submit his/her Electronic Travel Authorization application by an individual without having requested his/her consent to communicate us his/her personal data. In such case, the Company will inform the data subject about how his/her personal data and/or private information has been collected and, where appropriate, we will ask the individual who provided the personal data to the Company to confirm he/she requested the consent of the data subject and, where appropriate, to amend this circumstance. In any case, the data subject will have at all times the possibility of objecting to the processing of his/her personal data by the Company, in which case the provision of our professional services will not be possible, so that submission of the Electronic Travel Authorization application will be canceled.
  • the Company has received a minor’s personal data and/or private information to submit his/her Electronic Travel Authorization application provided by an individual who is not his/her parent and/or legal guardian, as soon as the Company detects and/or becomes aware of this circumstance, it will proceed to take the appropriate measures to fix the situation, including the possibility of canceling the submission of his/her application.

What do we use your personal data for?

Your personal data are processed for the following purposes:

  • To provide you with our professional assistance services in submitting your Electronic Travel Authorization application. It means that we will verify that you have correctly fulfilled your application and, when appropriate, you have provided the required documents and that meet the requirements of the Government and, in this sense, will ask you for the missing incomplete and/or missed information/documentation when necessary.
  • To send you up-to-date information according to Government updates and/or operational communications regarding the status of Electronic Travel Authorization application, as well as its approval or denial. In this sense, we will you if the Government requires more personal information and/or additional documentation in order to assess your application;
  • To properly address your informational request, claims or queries about us and/or our professional services and/or to attend your refund and cancellation requests;
    • For administrative purposes related to the process and management of our professional, such as verification of your payment information (fraud control), accountancy and billing tasks;
  • To comply with our legal obligations and/or to respond to judicial, police or to the corresponding authorities requirements;
  • To improve your user experience on our website and improve our services and customer support by analyzing your behaviour while navigating through this website;
  • To carry out periodic checks against fraudulent, unauthorized or illegal activity on/or through our website.

What is the legal basis for processing your personal data?

We only process your personal data when there is a legal basis for doing so. The legal basis will depend on the reason we collect and process your personal data. In almost all cases the legal basis will be:

  • To fulfill the contract with you, means, to check the accuracy of your Electronic Travel Authorization application form and submit it before the Government; keep you updated about the status of your application and communicate you the Government’s final decision regarding its approval or denial; to respond your information requests addressed to our Customer Service Department, among others.
  • The consent that you provided us for the processing of your personal data in connection to the purposes informed at the time of collection of your data (i.e. to receive the requested information by writing to our Customer Service team).
  • For compliance with our legal obligations and/or to attend to administrative, judicial, police or with the corresponding authorities requirements.
  • Our legitimate interest regarding (i) credit/debit cards and other methods of payments verifications, (ii) address possible claims regarding our services, (iii) enhancing the user experience when you use this website and to operate it efficiently, (iv) enhance the quality of our professional services, (v) monitor fraudulent activity in order to preserve the security and integrity of our website.

How long do we keep your personal data?

We will process your personal data for as long as necessary to fulfill the purposes for which they were collected and, beyond that, your personal data will be retained, duly securely blocked, for the necessary period we need to keep them. For example, it will be kept for as long as necessary to comply with our legal obligations and/or address possible claims related to the professional services we have offered; to finish the investigation of a fraudulent or illicit activity detected; to retain the Cookies’ information providing that you do not revoke its consent, etc. Once the necessary retention period has ended, your personal data will be securely deleted from our information systems.

Furthermore, if you had provided us with your consent to process your personal data for specific purposes, note that you can withdraw said consent at any time. Upon receiving your withdrawal request, we will proceed to delete your personal data.

With Whom Do We Share Personal Data?

Your personal data will be processed and/or communicated in the following assumptions and circumstances:

  • To the Government of the Country you're going to visit as it is the competent body to approve or deny the Electronic Travel Authorization applications.
  • To our payment service providers to process the payments of the costs of the Electronic Travel Authorization applications process and to carry out fraud controls, as well as to your bank entity credit/debit card companies when you have initiated a dispute of the charges made.
  • To our personal data will be processed by our technology service providers which host our information systems and/or or that offer us tools or technological support.
  • To comply with our legal obligations and when administrative, judicial and/or police authorities require it in accordance with the applicable law and regulations.
  • To protect our legitimate interests in the event that a claim may arise regarding the professional services offered.

The third parties mentioned above may have their headquarters outside the European Economic Area, therefore the personal data will be object of an international transfer. In this regard, we inform you that we only transfer personal data to recipients located in countries that offer a level of personal data protection comparable to the laws and regulations of data protection of European countries or, failing that, we will apply the appropriate safeguards required by the current applicable law and regulations on the protection of personal data, in order to ensure the privacy and security of your personal data and that your individual rights and freedoms are guaranteed.

How do we protect your personal data?

Your personal data is securely stored in our information systems and we have established the appropriate technical and organizational measures in order to ensure the confidentiality and integrity of your personal data and to protect it against unauthorised or unlawful processing and/or accidental loss, destruction or damage.

Likewise, we have taken reasonable measures to guarantee that all our staff, as well as the suppliers or partners with access to your personal data, have received adequate information and/or training regarding their obligations regarding the processing the personal data of our Users and/or Customers to which they have access and treat for the specific purposes previously mentioned.

Although we will do our best to guarantee the protection of your personal data transmitted through our website and/or that you may provide us by others means such as email or phone, please bear in mind that you should also take precautions to keep safe your personal data such as e.g you must not enter or confirm bank details by means of fake messages and/or websites.

What Rights Do You Have and How Can You Exercise Them?

You may, with any cost, exercise your rights of access, rectification, to erasure, restriction of the processing, to object, as well as the right to the portability of your personal data, by a written request addressed to us, sent by email to: info@handyvisas.com or by means of our Contact form.

You may modify the “privacy settings” of your web browser to set up tracking cookies at any time. Also, you can install programs or add-ons to your browser, known as "Do Not Track" tools, which will allow you to choose the Cookies you want to allow.

Your data protection right request will be responded to within one (1) month; but occasionally, this period may be extended by two (2) further months where necessary, taking into account the complexity and/or number of requests you may have made. In this case, we will notify you of such an extension together with the reasons for the delay.

When you consider it appropriate, you have the right to lodge a complaint before the corresponding Supervisory Authority, such as e.g when you consider that your data protection rights have not been adequately addressed.

We remain at your disposal for any doubts or questions about the present Privacy Policy or about the processing of your personal data you may have, so don’t hesitate to contact us: info@handyvisas.com.

What are cookies, and what are they used for?

For the purposes of this Policy, the single term ‘cookies’ refers to cookies and similar technologies that track information about accessing and interaction with our Website, for different purposes, such as facilitating information about the user’s device, the user’s your navigation through our Website, remembering your browsing preferences, customizing the services offered on this Website, the user’s purchase and cancellation history, and generating aggregate statistics based on user interaction, among others.

The memorized data recorded by cookies takes up a small space on a device’s memory and does not harm the device in any way.

You can find more information in our Cookie Policy.