GDPR Policy
This GDPR Policy describes how indianvisaonline.co.uk (“we,” “our,” or “us”) collects, uses, and protects personal data in compliance with the General Data Protection Regulation (GDPR).
1. Data Collection
We collect personal data from you when you use our website www.indianvisaonlie.co.uk and our
visa and OCI services. The types of personal data we collect may include:
- Name
- Contact information (email address, phone number)
- Passport details
- Date of birth
- Nationality
- Address
- Payment information (credit/debit card details)
- Other information you provide voluntarily
2. Legal Basis for Processing
We collect and process personal data based on the following legal bases:
- Performance of a contract: To fulfill our obligations under the contract for visa and OCI
services. - Consent: When you provide consent for specific processing activities, such as receiving
updates and promotional offers. - Legal obligation: To comply with legal and regulatory requirements related to visa and OCI processing.
3. Data Security
We implement appropriate technical and organizational measures to protect personal data from
unauthorized access, disclosure, alteration, or destruction. Access to personal data is restricted to
authorized personnel only.
4. Data Retention
We retain personal data for the period necessary to fulfill the purposes outlined in this GDPR Policy,
unless a longer retention period is required or permitted by law.
5. Data Subject Rights
Under the GDPR, you have the following rights regarding your personal data:
- Right to access: You have the right to request access to your personal data and information
about how it is processed. - Right to rectification: You have the right to request correction of inaccurate or incomplete
personal data. - Right to erasure: You have the right to request deletion of your personal data under certain
circumstances. - Right to restrict processing: You have the right to request restriction of processing of your
personal data under certain circumstances. - Right to data portability: You have the right to receive your personal data in a structured,
commonly used, and machine-readable format. - Right to object: You have the right to object to the processing of your personal data under
certain circumstances.
6. Data Transfers
We may transfer personal data to countries outside the European Economic Area (EEA) if necessary
for the provision of visa and OCI services. We ensure that appropriate safeguards are in place to
protect the data, such as Standard Contractual Clauses or adequacy decisions.
7. Data Breach Notification
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we
will notify you and the relevant supervisory authority within 72 hours of becoming aware of the
breach.
8. Contact Information
If you have any questions or concerns about our GDPR Policy or our data processing practices, please
contact us at [email protected].