Effective Date: 29 July 2024
Welcome to xaano.com, a website providing non-regulated visa information services. We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your personal data, and your rights under the General Data Protection Regulation (GDPR).
1. Information We Collect
Personal Data
When you use our services, we may collect the following personal data:
- Contact Information: Name, email address, phone number, and address.
- Identity Information: Passport details, date of birth, and nationality.
- Travel Information: Travel itinerary, visa application details, and related documentation.
- Payment Information: Billing address, credit/debit card details, and transaction history.
- Technical Data: IP address, browser type, and operating system.
Non-Personal Data
We may also collect non-personal data that does not directly identify you, such as anonymized usage data and aggregated information.
2. How We Use Your Information
We use your personal data to:
- Provide and manage our visa services.
- Process and fulfill your visa application.
- Communicate with you regarding your application and our services.
- Improve our website and services.
- Comply with legal obligations.
3. Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Contractual Necessity: To perform our contract with you.
- Legal Obligation: To comply with legal requirements.
- Legitimate Interests: For our legitimate business interests, provided your rights and interests do not override these interests.
- Consent: Where you have given explicit consent for specific processing activities.
4. Your Rights
Under the GDPR, you have the following rights regarding your personal data:
4.1 The Right to Be Informed
You have the right to be informed about the collection and use of your personal data. This Privacy Policy aims to provide you with clear and transparent information about our data practices.
4.2 The Right to Access
You have the right to request access to your personal data and obtain information about how we process it.
4.3 The Right to Rectification
You have the right to request correction of any inaccurate or incomplete personal data we hold about you.
4.4 The Right to Erasure
You have the right to request the deletion of your personal data where there is no compelling reason for its continued processing.
4.5 The Right to Restrict Processing
You have the right to request the restriction of processing of your personal data under certain circumstances, such as when you contest the accuracy of the data.
4.6 The Right to Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another data controller.
4.7 The Right to Object
You have the right to object to the processing of your personal data based on legitimate interests, direct marketing, and profiling.
4.8 Rights Regarding Automated Decision-Making and Profiling
You have the right not to be subject to decisions based solely on automated processing, including profiling, which produce legal effects or significantly affect you.
5. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, and secure data storage.
6. Data Retention
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements.
7. Third-Party Disclosure
We do not sell, trade, or otherwise transfer your personal data to outside parties, except as described in this Privacy Policy. We may share your data with trusted third-party service providers who assist us in operating our website and providing our services, subject to appropriate confidentiality and security measures.
8. International Data Transfers
Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). We ensure that such transfers are conducted in compliance with GDPR requirements and appropriate safeguards are in place.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page, and, where appropriate, notified to you by email. Please review this Privacy Policy periodically for any updates or changes.
10. Contact Us
If you have any questions or concerns about this Privacy Policy or our data practices, or if you wish to exercise your rights under the GDPR, please contact us at:
Email: admin@xaano.com
By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your personal data as described herein.
This Privacy Policy is designed to comply with the GDPR and provide transparency about how xaano.com collects, uses, and protects your personal data.