Privacy PassportScan

Privacy Policy

We respect your privacy

GlobeID Limited are committed to protecting and respecting your privacy.

This policy (together with our terms of use and any other documents referred to on it) sets out the basis on which any personal data we collect from you, or that you provide to us, will be processed by us.s

Personal Data” is information relating to a living individual who can be identified from the information and it includes your name, email address or postal address.

Data Controller

The domain www.passportscan.net is owned by GlobeID Ltd, so it is responsible for the processing of personal data that can be carried out through the aforementioned page. The data of the controller are:

GlobeID Ltd.

Ireland with identification number 559612

Headquarters: the Black Church, St Mary’s Place, Dublin, 7

Contact: legal@globeid.net

GlobeID is committed to protecting the personal data in accordance with the Regulation (EU)2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC(hereinafter referred to as “GDPR”)

The GlobeID Privacy policy applies to data processing within any services, systems, platforms and applications operated by GlobeID where personal data is processed (“Services”).

Processing” includes when we obtain data from you, store your data, transfer your data or use your data to allow you to use this site. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. This Privacy policy applies also to processing of personal data of visitors of this website, individuals who contact us via our website and applicants that apply for any job positions at GLOBEID.

The GlobeID Privacy policy applies to services within GlobeID which incorporate this policy or contain reference hereto. In the event of any discrepancies between this Privacy policy and any specific privacy policy applicable to GlobeID product and services, the specific privacy policy prevails.

Data Collection

GlobeID as per our terms of use supply the products and services including opening an Account on our platform (PassportScan Cloud – together the“Services”) which Services are made available from our website “Site” to you. You will then be required to subscribe in relation to the proprietary software owned by us (PassportScan Client- iOS, Windows, Android) (together “theSoftware” ),which is necessary in order to operate and provide the Services between the parties (the “Contracting parties”). In these situations, personal data is collected only by the Contracting parties and GlobeID as a data processor, processes it under instructions of the Contracting party that acts as a data controller. Processing of this personal data is governed by the privacy policy of the respective Contracting party.

GlobeID as data controller

When using the GlobeID Services, contacting GlobeID or applying for job position, you may be asked to provide certain personal data to GlobeID which will be further processed by GlobeID as data controller within the meaning of Article 4 (7) GDPR. Processing of this personal data is governed by this Privacy policy.

Data collection:

The data that GlobeID can collect through the website www.passportscan.net

As the controller: GlobeID collects the following information:

  • Registration data when you decide to request proof of our SaaS: This registration data includes personal information of the applicant, but also non-personal data, of the entity it represents.
  • Contact details of the user who sends us a query or request for information.
  • Browsing data, in cases where the user marks the option of activating analytical cookies.
  • Data necessary for the management, contracting and billing of the contracted service: In case of contracting our services, it will be necessary to collect certain essential information to formalize the contract between the parties, as well as its subsequent management and billing.
  • Data necessary to maintain a customer history once they have been de-serviced, in order to be able to track statistical and analytical our work and improve our services.
  • information, communication of news, events, etc.

Legitimation of data processing as responsible: Art 6 GDPR:

In the event of any en queries, the legitimacy is based on the consent of the interested party, verified in the case of checking the box “I have read and accept the privacy policy of the company”

In the case of browsing data, the legitimacy is based on the express consent of the user, who has checked the option to activate analytical cookies freely, consciously and informally. In the case of registration data, the legitimacy is based on the consent of the interested party, who decides to ask us to register in our application.

In the case of management, contracting and billing data: The legitimacy is based on the contract signed between the parties, either by acceptance, by click or by digital signature. In the case of the historical, GlobeID is based on the legitimate interest in being able to improve its services.

In case of commercial information, only voluntarily, if expressly desired by the user. This information has nothing to do with the information of the service, necessary to keep the user informed and that by default is integrated within the services provided to the customer.

GlobeID as a Data Processor

Account GlobeID provides a service based on the SaaS model by which, it makes available to the customer the cloud platform software “PassportScan” through which, the customer can carry out certain data processing necessary to carry out the check-in or internal management of their establishment.

The customer is responsible for the processing of data carried out through our application, although GlobeID, as facilitator and maintainer of the platform, may carry out different tasks by itself or by third parties that may involve the processing of data on without their customers, such as:

  • Storage of the information that the customer collects in the Saas. The storage is outsourced to the company Amazon Web Services, which has the most demanding accreditations in terms of information security, such as: ISO 27000 family certifications, SOC 2, high level ENS, etc. You can learn more about these endpoints at: https://aws.amazon.com/es/compliance/programs/ Both information storage and web-based accommodation are located on AWS in your data centers in Germany, so there are no international data transfers.
  • Maintenance and service update tasks that may involve timely access to the customer’s internal area
  • Payment for services, through the third-party stripe platform. You can learn about the security mechanisms you operate with, here: https://stripe.com/docs/security/stripe

Duration of the processing and/or storage of the information collected, both as a processor and as a processor:

GlobeID will process personal information for the essential time for which it was collected or provided. In this sense, once the purpose for which they were obtained has been fulfilled, their elimination will be made, unless legal provisions in force at all times require us to keep such information for longer periods of time (e.g. for compliance with tax, accounting, police obligations, etc.).

By accessing and using GlobeID Services, you enter into an agreement for provision of such services with GlobeID. The legal ground for processing this data is Article 6 (1) b) GDPR (performance of contract or pre-contractual relations). The purposes to process your personal data provision of relevant GlobeID Services to you.

We may collect information about your computer, including where available your IP address, operating system of your access device and browser type of your computer, for our system administration and to report aggregate information to our advertisers. This is statistical data about our users’ browsing actions (i.e. use of our website) and patterns, and does not identify you or any individual.

Cookies

Our website uses “Cookies” to distinguish you from other users of our website. A Cookie is a small text file implanted by us and most other website operators (or an advertiser on this site) on the hard disk of your computer when you visit the site. Cookies can collect information about users of our site like you, such as your names, address, e-mail details, phone-numbers, passwords and your user preferences. While cookies and the information they obtain may not identify a living individual on their own, they may be able to do so in combination with other information held by us or a third party. This helps us to provide you with a good experience when you browse our website and also allows us to improve our site.

The types of cookies used are highlighted on browsing to our website for the first time. The website uses session cookies for site navigation purposes. These cookies expire and are deleted at the end of a browsing session.

When you visit our website you are informed through a cookie banner placed at the bottom of our website that we collect cookies.

GlobeID only activates by default those cookies necessary for the proper functioning of the website. The installed cookie plugin allows the user to configure completely autonomously what type of cookies he/she wants to be activated on our website.

For more information, we advise you to visit our Cookie Policy section.

Marketing

GlobeID may use your data for marketing purposes, i.e. in order to inform you of its services which may, according to your past preferences, be of interest to you. These communications shall strictly adhere to applicable legal regulations.

Advertising and marketing materials of the Contracting or other parties shall be sent to you only if you opted in for these communications during the registration process, via e-mail or otherwise.

Your decision about direct marketing may be withheld in accordance with the opt-out rules described in each marketing-mail or other form of communication. Opting out can be done via changing the settings of your User account or by directly contacting GlobeID (please see contact details below). Should you opt out, GlobeID shall retain only such data necessary for provision of services in accordance with the rules set out in this policy.

Data retention

We comply with all Irish data protection legislation and the GDPR normative. By submitting your personal data, you agree to the transfer, storing or processing of this data as regulated by the appropriate EU authorities. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy. If you require any further clarification of the storage of your data please email us at legal@globeid.net.

All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site or your account, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.

Unfortunately, the transmission of or sending by you of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted or sent by you to our site; any transmission or sending by you is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access i.e. access to your data by a person who should not have such access.

Data Security

GlobeID shall ensure that your personal data is stored securely. Therefore, it has introduced adequate physical, technical and organizational measures and plans to protect and secure all information collected via services of GlobeID.

The aim is to eliminate unauthorized or unlawful processing of your personal data, or accidental, unauthorized or unlawful access, use, transferring, processing, copying, transmitting, alteration, loss or damage of your personal data. Despite all efforts and meeting all rules set out by applicable legal regulations, it is not possible to guarantee the security of your data, if it is transferred or transmitted in an unsecured way.

GlobeID protects your data in particular in the following ways:

  • Using cryptography, where necessary
  • Using password protection, where necessary
  • Restricting access to your personal data (i.e. access to your personal data is granted only to those employees or personnel of GlobeID for whom the access is indispensable for the purposes described herein).

These measures do not deprive you from your duties to undertake proper steps in order to secure your own personal data. You should, inter alia, regularly change your passwords. On the other hand, you should not, inter alia, use predictable usernames and/or passwords, share your password with other persons, or grant access to your user account and/or disclose your personal data to other persons. GlobeID will never ask you for your password in any unsolicited communication. Please notify our data protection officer immediately of any unauthorized use of your account credentials or any other suspected breach of security.

Our clients have at their disposal a data protection agreement that summarizes rights, obligations and measures implemented. You can also access our DPA

Uses made of the information

We use information held about you in the following ways:

  • To ensure that content from our site is presented in the most effective manner for you and for your computer.
  • To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.
  • To carry out our obligations or duties arising from any contracts or subscriptions entered into between you and us.
  • To allow you to participate in interactive features of our service, when you choose to do so.
  • To notify you about changes to our services.

We may also use your data, or permit selected third parties to use your data, to provide you with information about goods and services which may be of interest to you and we or they may contact you about these by post or telephone.

If you are an existing customer, we will only contact you by electronic means (e-mail or SMS) with information about our own products and services similar to those which were the subject of a previous subscription by you or sale to you. You will be given the opportunity to “opt out” and if you do so we will not send you any further such electronic communication.

If you are a new customer, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have specifically consented to this.

We do not disclose information about identifiable individuals to our advertisers, but we may provide them with aggregate information about our users (for example, we may inform them that 100 users in Ireland have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target (for example, users in Ireland). We may make use of the personal data we have collected from you to enable us to comply with our advertisers’ wishes by displaying their advertisement to that target audience.

Our partners

We use only the best available platforms, including Amazon Web Services and Stripe, who are at the forefront of data and payment security. Here at GlobeID, we are dedicated to staying current with industry best-practices and we strive to be leaders when it comes to data protection and security.

Disclosure of your information

We may disclose your personal information to any member of our group of companies, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in the Irish Companies Act 2014 (as amended from time to time).

We may disclose your personal information to third parties:

  • In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets, although that prospective seller or buyer would be requested not to disclose such personal data.
  • If GlobeID Limited or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
  • If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property, or safety of GlobeID Limited, our customers, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.

 

 

Your rights

Where EU General Data Protection Regulation 2016/679 (“GDPR”) applies to the processing of your personal data you are entitled under the GDPR to the following rights:

Right of access

You are entitled to be informed inter alia about what personal data MEWS processes about you, for what purposes, who are the recipients of your personal data.

Right to rectification

You have a right for any of your incomplete, inaccurate or out-of-date personal data to be rectified.

Right to erasure (‘right to be forgotten’)

You are entitled to erasure of personal data that we have collected and processed about you.

Right to restriction of processing

In given cases such as when we process inaccurate personal data about you or you deem the processing as no longer necessary you may ask for a restriction of the processing.

Right to data portability

You have a right to receive personal data you provide us with in a structured, commonly used and machine-readable format and have it transmitted to another controller where technically feasible.

Right to object

You are entitled to object, on grounds relating to your particular situation, at any time to processing of personal data that concerns you and is carried out in public interest or for the purposes of legitimate interests pursued by GlobeID, including profiling.

The exercise of your rights may be limited shall GlobeID be obliged to keep any of your personal data for the purpose of compliance with legal obligations, for the establishment, exercise or defense of legal claims or any other compelling reasons as provided by the relevant data protection law.

Furthermore:

You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at legal@globeid.net.

Our site may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.

Access to Information

The Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act. Any access request may be subject to a fee of 5 EUR to meet our costs in providing you with details of the information we hold about you.

Changes to our Privacy Policy

Any changes we may make to our privacy policy in the future will be posted on this page and, where appropriate, notified to you by e-mail.

Contact

Questions, comments and requests regarding this privacy policy are welcomed and should be addressed to legal@globeid.net.

We are GlobeID Limited a company incorporated in Ireland under company number 559612 and have our registered office at The Black Church, St. Mary’s Place, Dublin 7.

Passportscan