Privacy Policy

Version updated as of 08/25/2020

VISAMUNDI is committed to protecting your privacy. Please contact us if you have any questions or concerns regarding the use of your personal information and we will be happy to assist you. This privacy policy is part of our Conditions of sale ; By accepting the terms and conditions, you also agree to this policy. In the event of a collision of terms used in the Conditions of Sale and the Privacy Policy, the latter will prevail.

Definitions

VISAMUNDI Trade name used by SAS VISAMUNDI, with capital of €50,000, headquartered at 15 allee Duguay-Trouin, 44000 Nantes (France) France, registered with the Nantes Trade and Companies Registry under number 828 148 189 (VAT FR69828148189), represented by Mr. Sebastien Couix in his capacity as Chairman; ;
Administration State service that materializes the exercise of public authority in matters of civil status or immigration;
Application The computer solution that enables the User to use the Features and Services offered by VISAMUNDI ;
Customer : Person who has signed and adhered to the General Terms and Conditions and the obligations they contain;
Administrative document : Document requested by the Client to carry out personal or professional administrative procedures;
Data) Any element (information, texts, photographs, photocopies, messages, etc.) collected by the User and implemented by him within the Site, the Application and the Services through his use;
Personal data) Identifiable natural or legal person" means a natural or legal person who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier, or to one or more factors specific to his or her physical, physiological, genetic, economic, cultural or social identity;
Functionality : Each element implemented, accessible and usable within the different Services;
Access Methods and/or functions by which the User can access one or more Services in order to use them for his own needs;
Operator Company that operates the various electronic telecommunications networks required to access and use the Services;
Services All services made available to the User by VISAMUNDI and accessible via the Access Means; ;
Site (or Website) The VISAMUNDI website enabling the User to access the Services, namely: https://www.nomamundi.com Third party VISAMUNDI : Refers to natural or legal persons who are not linked by common ownership or control to VISAMUNDI or other individuals unrelated to VISAMUNDI and/or the User; ;
User : Refers to any natural or legal person accessing the Site and, where applicable, the Application.

Data protection principles

VISAMUNDI undertakes to comply with the following data protection principles:

• Processing is legal, fair and transparent. Processing activities have legitimate grounds. VISAMUNDI always considers your rights before processing personal data. It will provide you with information about processing on request.
• Processing is limited to the purpose. The processing activities correspond to the purpose for which the personal data were collected.
• VISAMUNDI collects and processes only the minimum amount of personal data required.
• Processing is limited in time. VISAMUNDI does not keep your personal data longer than necessary.
• VISAMUNDI will do its utmost to ensure data integrity and confidentiality.

In accordance with the Current regulations regarding Personal Data (RGPD), the processing operations designated in this documentation must receive your prior acceptance. Indeed, on the occasion of a request for Administrative Documents made via the Website, you are asked to accept this Data Protection Policy.

The processing that we carry out may also be dictated to us by a legal obligation incumbent on us, in particular at the accounting or tax level.

Most of the processing carried out by VISAMUNDI falls within the scope of processing necessary for the contractual relationship and the provision of the requested service, i.e. the provision of Administrative Documents for the Customer.

Thus, the execution of the (pre)contractual relations which bind us, at your initiative, require the carrying out of a certain number of processing operations.

In any case, we ensure not to disregard your interest or your fundamental rights and freedoms by allowing you, at any time, to object to all or part of the processing described in this Personal Data Protection Policy.

As minors are also concerned by our services, this privacy policy also applies to them. Data concerning them is available to their legal representatives.

Who collects your Personal Data?

The Website is published by SAS VISAMUNDI, with capital of €50,000, whose registered office is located at 15 allee Duguay-Trouin, 44000 Nantes (France), France, and registered with the Nantes Trade and Companies Registry under number 828 148 189 (VAT FR69828148189), represented by Mr Sebastien Couix in his capacity as Chairman; ;

As part of the management and operation of the Site, and in its capacity as data controller under the French Data Protection Act of January 6, 1978, as amended, VISAMUNDI may collect Users' Personal Data.

VISAMUNDI attaches great importance to the respect of privacy and takes all necessary measures to ensure the confidentiality and security of Users' Personal Data. To this end, VISAMUNDI invites Users to read the present Data Protection Policy in order to be informed of how their Personal Data is processed and of their rights.

Who are the recipients of Personal Data?

Users' Personal Data is collected and processed by VISAMUNDI. Data may also be communicated to VISAMUNDI's subcontractors who act in the name of and on behalf of VISAMUNDI, in particular the Site host.

VISAMUNDI may disclose Users' Personal Data in order to cooperate with administrative and judicial authorities.

Lastly, VISAMUNDI may communicate Users' Personal Data to third-party service providers for the purposes of statistical studies of Site usage and Site optimization. In this context, Users' Personal Data will be anonymized.

What personal data does VISAMUNDI collect?

VISAMUNDI offers a platform to assist Customers in the provision of Administrative Documents. In this respect, VISAMUNDI collects personal data from Users submitting the request. Declarative information, provided by you, among:

• Civility;
• First and last name ;
• Year and place of birth ;
• Phone number* ;
• E-mail address ;
• Place of residence (address declared by the User) ;
• Religion
• The level of studies
• Marital status and contact details of spouse
• The civility of the parents and their place of birth
• The employer (name and address)
• Nationalities (current and original)
• Passport (number, place of issue, validity dates)
• Travel data (travel dates, place of arrival, content of the trip, purpose and history in the country or related countries)
• Contacts in the Customer's country of origin and in the country targeted by the Customer

Information about you, collected automatically

• The identifier of the connection at the origin of the communication;
• Traces of connections (via cookies);
• The identifier assigned by the information system to the content, the object of the operation;
• The types of protocols used for connection to the service and for the transfer of content;
• The nature of the operation.

Information provided by third parties

• The presumed location of the User, based on IP data
• His journey on other websites
• Payment information, secured so that it cannot be used for other purposes

* In accordance with article L.223-2 of the French Consumer Code, the User is hereby informed that he/she may, if he/she so wishes, register on an opposition list against telephone canvassing available on the website www.bloctel.gouv.fr, Even though the telephone number provided to VISAMUNDI is not passed on to any third party for commercial purposes during the order process.

For what purposes are personal data collected?

VISAMUNDI uses Users' personal data for the following purposes:

• Provision of Services;
• Billing;
• Obtaining Administrative Documents from Administrations;
• Monitoring of files with Administrations;
• Response to possible questions/complaints from Users;
• Preparation of commercial statistics;
• Marketing ;
• Management of unpaid debts and disputes.

Does VISAMUNDI use the services of external service providers?

YES, VISAMUNDI wishes to offer the best service to its Users. In this respect, VISAMUNDI relies on the best external service providers to :

• Storage of personal data;
• Instant messaging ;
• Email marketing;
• Internal messaging;
• Submitting Customer requests to authorities;
• Online advertising;
• Billing;
• Collect opinions from Users;
• Online payment.

Regarding the storage of personal data:

With regard to the storage of personal data, VISAMUNDI has selected a third-party service provider with all the necessary approvals for data collection and storage. The servers used by this third-party service provider are located in Switzerland.

In this regard, the selected service provider is the company Infomaniak, located at 25 rue Eugène-Marziano, 1227 Les Acacias (Switzerland), Tel. : +41 (0) 22 820 35 44. Its confidentiality policy is available at this address: https://www.infomaniak.com/fr/cgv/reglement-general-protection-donnees

VISAMUNDI also uses Google Cloud solutions to manage its data and transfer it to external service providers. The Google Cloud privacy policy is available at this address: https://business.safety.google/intl/fr_fr/

About instant messaging :

VISAMUNDI has an online instant messaging service through which the User can contact VISAMUNDI services. Certain data may be collected in this context. The service used by VISAMUNDI to provide this service is Brevo.

Brevo's privacy policy is available at : https://www.brevo.com/fr/rgpd/

Concerning email marketing (email & SMS):

VISAMUNDI takes the liberty of sending you certain emails as part of your transactional process, in compliance with good practice, particularly with regard to unsubscribing. Certain data may be collected in this context. The service used by VISAMUNDI to provide this service is Brevo.

Brevo's privacy policy is available at : https://www.brevo.com/fr/rgpd/

About internal messaging :

In order to process your data, VISAMUNDI uses a high-performance messaging service that enables us to work efficiently and effectively. To this end, we use the messaging services of Google Workspace, whose privacy policy is set out below: https://business.safety.google/intl/fr_fr/ All data from this service provider (Google) via its services is hosted expressly in Europe. No message exchanged leaves the company, except to contact the Customer or the Administrative Services, and unless otherwise instructed by the Customer.

Regarding the submission of Customer requests to authorities:

Each external partner working with VISAMUNDI must sign an NDA (non-disclosure agreement) particularly restrictive for the strict use of data for the sole purpose of submitting them to the competent authorities for the execution of the service for which the Client mandates VISAMUNDI.

Concerning online advertising:

VISAMUNDI may occasionally use services to promote its activities. These services use Users' browsing patterns to provide them with a personalized message. These services are as follows:

• Facebook Pixel: https://www.facebook.com/business/gdpr
• Google Ads: https://business.safety.google/intl/fr_fr/
• Microsoft Ads: https://www.microsoft.com/fr-fr/trust-center/privacy?rtc=1

About billing :

VISAMUNDI relies on an external invoicing service, entirely dematerialized, in order to centralize and optimize accounting management processes. This data is used to keep a record of customer orders on VISAMUNDI websites and to keep accounting records, as required by the authorities in VISAMUNDI's country. Incwo's privacy policy is available at this address: https://go.incwo.com/termes-dutilisation-incwo/

Concerning the collection of Customer opinions:

VISAMUNDI uses a trusted third party to collect customer reviews following their order. The Google Reviews privacy policy is available at this address: https://privacy.google.com/intl/fr_fr/businesses/compliance/

About online payment :

When making a payment, VISAMUNDI uses the resources of an external payment service provider in order to guarantee the fluidity and quality of its services.

VISAMUNDI uses Stripe for online payments. Stripe's privacy policy is available at the following address: https://stripe.com/ie/privacy

When making a payment, the service provider collects Personal Data concerning your means of payment (credit card number, expiry date of credit card, visual cryptogram, which is not stored, etc.). Please note that VISAMUNDI does not collect or hold any banking data directly.

How long do you keep my personal data?

Your Personal Data on the Website as you have declared and/or completed on the Site are only kept for a strictly necessary period, namely:

Internal messaging :

• Sensitive Customer documents: 18 months after receipt
• Form entries: 18 months for finalized applications
• Product: 18 months after sending them to the Customer
• Exchanges with Administrations: 18 months after their receipt

Website :

• 30 days for partial entries
• 6 months after customer return date for complete entries

Cloud :

• Follow-up: 6 months after the customer return date
• Files: 6 months after the customer return date

Billing and payment :

• 10 years at the end of the financial year

These deadlines do not apply to ongoing legal or administrative proceedings.

As part of a request for complete data on all media, the Customer may make a request on the contact form of the Website. You can also exercise your right to be forgotten by submitting a complaint to the CNIL.

On the other hand, cookies and Website audience measurement statistics are kept for no longer than thirteen (13) months.

How does VISAMUNDI ensure the security of Personal Data?

VISAMUNDI ensures that Users' Personal Data is adequately and appropriately secured and has taken the necessary precautions to preserve the security and confidentiality of the Data and, in particular, to prevent it from being distorted, damaged or communicated to unauthorized persons.

All human service providers handling customer data have signed a confidentiality agreement with VISAMUNDI, guaranteeing discretion regarding the content exchanged. VISAMUNDI has also taken out CYBER RISKS insurance to cover any loss of data and to anticipate future risks (contract AXA n°10282430204).

Concerning transmission security

The Website uses an "https" connection encryption protocol with a TLS 1.2, 128-bit key.

The User must be vigilant regarding the encryption of the page. They must not provide any personal information if the page does not contain this encryption (symbolized by a padlock in the browser address bar), as this page is not administered by VISAMUNDI.

Use of cookies

In accordance with CNIL deliberation no. 2013-378 of December 5, 2013, the VISAMUNDI Company informs Users that cookies record certain information that is stored in the memory of their hard disk. This information is used to generate Site audience statistics and to offer services according to the Services they have already selected during their previous visits.

Furthermore, Article 30 of the RGPD states: "Individuals may be associated [...] with online identifiers such as IP addresses and cookies or other identifiers [...]. These identifiers can leave traces which, particularly when combined with unique identifiers and other information received by servers, can be used to create profiles of natural persons and identify those persons."

In this respect, Users wishing to browse the Site must accept the cookie management policy. An alert message, in the form of a banner, asks each person visiting the Site whether they wish to accept cookies. These cookies do not contain confidential information concerning Users of the Site.

In particular, we use cookies of different types:

• Necessary cookies: These cookies are necessary for you to use certain important features on our website. These cookies do not collect any personal information.
• Functionality cookies - these cookies provide features that make using our service more convenient and allow us to offer more personalized functionalities.
• Analytical cookies: these cookies are used to track the use and performance of our website and services.
• Advertising cookies: these cookies are used to serve ads that are relevant to you and your interests. They are also used to limit the number of times you see an advertisement. They are generally placed on the website by advertising networks with the permission of the site operator. These cookies remember that you have visited a website and that this information is shared with other organizations such as advertisers.

The User going to the home page or another page of the Site directly from a search engine will be informed of the possibility of opposing these cookies and changing the parameters by clicking on a link present in headband.

To guarantee the free, informed and unequivocal consent of the User visiting the Site, the banner will not disappear until the User clicks on one of the banner's action buttons.

Without the prior consent of the User, the deposit and reading of cookies will not be carried out:

• if any person who visits the Site (home page or directly on another page of the Site from a search engine for example) does not continue his navigation: a simple absence of action cannot be assimilated to a manifestation of will;
• or if she clicks on the link in the banner allowing her to refuse the deposit of cookies.

The effects of “private browsing” of your Internet browser

The “Private Browsing” mode offered today by almost all internet browsers allows the user to browse the internet without the history of pages visited or downloads being kept. Concerning Cookies, all those which were recorded during your navigation via “private browsing” will be automatically deleted when you close your browser. “Private browsing” mode therefore does not allow you to refuse or prevent cookies from being stored on your computer during browsing. “Private browsing” mode simply allows you to limit the retention period of collected cookies.

How to delete cookies?

Below, we explain the procedure to follow depending on your browser. For more information, we invite you to consult the conditions for deleting cookies by clicking on the following links:

• Internet Explorer: https://support.microsoft.com/fr-fr/help/17442/windows-internet-explorer-delete-manage-cookies
• Microsoft Edge: https://privacy.microsoft.com/fr-fr/windows-10-microsoft-edge-and-privacy/
• Google Chrome: https://support.google.com/chrome/answer/95647?co=GENIE.Platform_3DDesktop&hl=fr
• Mozilla Firefox: https://support.mozilla.org/fr/kb/protection-renforcee-contre-pistage-firefox-ordinateur
• Opera: https://help.opera.com/Windows/10.20/fr/cookies.html
• Safari (MacOS): https://support.apple.com/fr-fr/guide/safari/sfri11471/mac

What are the obligations of Users?

Users acknowledge that the Personal Data disclosed by them on the Site and/or the Application are valid, adequate and up to date. Only Users are responsible for their Personal Data communicated.

Users undertake not to violate the privacy and protection of Personal Data of any Third Party, in particular persons declared on their behalf as part of a process.

What are the rights of Users whose Personal Data is collected?

In accordance with the laws and regulations in force concerning the processing of Personal Data, you may :

• Access all of your Data at any time;
• Oppose the processing of your Data for legitimate reasons;
• Rectify, update and delete your Declarative Data, by contacting us via the Contact form of this site, subject to legitimate reasons;
• Request portability of your Data;
• Request deletion of certain Data.

In addition, you have the possibility to communicate to us instructions relating to the conservation, erasure and communication of your Personal Data after your death. These directives, or a sort of “digital will”, can designate a person responsible for their execution; failing this, your heirs will be designated.

In the absence of any instructions, your heirs may contact VISAMUNDI to :

• to access Data processing allowing “the organization and settlement of the deceased’s estate”;
• to receive communication of “digital assets” or “data resembling family memories, transferable to heirs” within the meaning of the law;
• to have your data deleted on the Sites and to oppose the continued processing of your Personal Data.

In any case, you have the possibility to tell us, at any time, that you do not wish, in the event of death, for your Personal Data to be communicated to a third party.

How can I exercise my rights with regard to Personal Data?

In order to exercise your rights with respect to VISAMUNDI, you may send a request to VISAMUNDI at the following address Contact form or to one of the addresses below. VISAMUNDI reserves the right to request proof of identity.

A response is then sent within one week of receipt of the request.

How are Users informed of changes to this Data Protection Policy?

VISAMUNDI may modify this Privacy Policy at any time. VISAMUNDI will inform Users by any means of the modifications made to this Policy. VISAMUNDI invites Users to regularly read the Data Protection Policy in order to keep themselves fully informed of its provisions.

Each transaction carried out on one of VISAMUNDI's websites requires acceptance of this privacy policy.

How to contact VISAMUNDI

Users may contact VISAMUNDI with any questions they may have about this Data Protection Policy at the following addresses:

• Mail : [email protected]
• Contact form
• Postal address: VISAMUNDI, 15 allee Duguay-Trouin, 44000 Nantes (France)
• Telephone: +33 2 85 520 450

Data Protection Officer (DPO) If you have any questions about the processing of your personal data, your rights or this policy, please do not hesitate to contact our Data Protection Officer (DPO): Sebastien Couix ([email protected] - +33 2 85 520 450)