Privacy Policy - Arrival Card

Identity of the Data Controller

SECURE ONLINE PAYMENT (SOP), a limited liability company created and registered in the England and Wales Companies House (gov.uk) under number BRN 16088714, with administrative headquarters at 2a Connaught Avenue, London, United Kingdom, E4 7AA, is responsible for data processing for the collection and processing of personal data carried out as part of its activities.

This Privacy Policy describes the personal data processing carried out by SECURE ONLINE PAYMENT (SOP) in the operation of its website accessible at https://visa-evisa.org, and the rights of data subjects under applicable regulations.

Data Processing Performed by the Company

The personal data collected makes it possible to identify the user and facilitate access to the website and the provision of certain services.

In accordance with the French Data Protection Act No. 78-17 of January 6, 1978 and the General Data Protection Regulation (EU) 2016/679 of April 27, 2016, SECURE ONLINE PAYMENT (SOP) undertakes to ensure that its collection and processing of data comply with applicable regulations.

These data are processed in accordance with the purposes stated at the time of collection.

Purposes of Processing

The data processing carried out by SECURE ONLINE PAYMENT (SOP) on this site has the following purposes:

Management of ESTA, eTA (AVE), eVisa, and/or PLF requests;
Accounting management;
Customer administrative follow-up;
Website management;
Compliance with certain applicable legal and regulatory obligations.

Data collection and processing are limited to information strictly necessary to achieve the stated purposes.

Data Recipients

The processed data are intended exclusively for authorized persons and services of this site, as well as its subcontractors and partners when applicable, and for third-party recipients within the scope of the defined purposes of data processing.

In the event of outsourcing a service, this site ensures the compliance and integrity of the personal data communicated.

Data Retention Periods

This site undertakes to limit the retention period of personal data to what is necessary for the purposes for which they are collected and processed.

Rights of Data Subjects and Exercise of Rights

Any individual who can provide proof of identity may exercise their rights of inquiry, access, rectification, deletion, objection to processing for legitimate reasons, portability, and limitation regarding their personal data.

Data subjects also have the right to object to the processing of their data for commercial prospecting purposes.

Any person may also define general or specific directives regarding the retention, deletion, and communication of their personal data after their death. General directives cover all personal data relating to the data subject and may be registered with a certified digital trusted third party recognized by the French data protection authority (CNIL). Specific directives, which relate to certain data processing mentioned in those directives, require specific consent registered with the data controller.

To exercise these rights, the CLIENT may send a request by email to david@s-o-p.org or by post to SECURE ONLINE PAYMENT, 2a Connaught Avenue, London, United Kingdom, E4 7AA, attaching a copy of a signed identity document.

Security

This site takes appropriate precautions, considering the nature of the data and the risks presented by their processing, to preserve data security, and in particular to prevent them from being altered, damaged, deleted, or accessed by unauthorized third parties.

This site also ensures reinforced security of personal data by implementing, in general, all technical and organizational measures to ensure their security, including physical and logical security measures.

This site undertakes to notify the CNIL and the data subjects of any personal data breach in the event of a high risk to their rights and freedoms.

Transfers Outside the EU

In the event of a transfer of data of data subjects outside the European Union, this site will take all useful measures to ensure that the transfer benefits from a sufficient, appropriate, and adequate level of protection.

Complaints

In accordance with applicable regulations, the data subject has the right to file a complaint with the supervisory authority if any of their rights have been violated.

Cookies

The user is informed that during visits to the site, cookies may be automatically installed on their internet browser, in particular to:

Establish statistics and volumes of traffic and use of the various components of the services offered on the site;
Adapt the presentation of the site according to the device used;
Adapt the presentation of the site to each user’s preferences;
Store information relating to a form completed on the site (registration or account access, subscribed service, etc.);
Allow users to access reserved and personal areas of the site using identifiers;
Implement security measures, for example when the user is asked to log in again after a certain period of time;
Share information with advertisers on other websites to offer targeted ads aligned with the user’s interests;
Share information on social networks.

A cookie is a set of data that does not directly identify internet users but is used to record information related to their navigation on the site.

The personal data collected are retained by this site for a period not exceeding 60 months.

They are never transferred to third parties or used for other purposes.

Internet browser settings allow users to be informed of the presence of cookies and, if desired, to refuse them as described at the following address: https://www.cnil.fr/fr/cookies-les-outils-pour-les-maitriser

The user has the right to object to, access, modify, and delete personal data communicated through cookies under the conditions indicated above.

Updates

This site reserves the right to modify the content of this Privacy Policy at any time and to update it regularly according to changes in applicable regulations.