General
We (the “Company,” “we,” “us,” and similar terms) are committed to legal compliance and to safeguarding privacy and personal data. This Policy explains how users of this website (individually, the “User” or “Customer,” and collectively, “you”)’s information is collected, used, and protected. If you complete payment for our professional services, you become a Customer and are bound by our Terms and Conditions.
We may revise this Policy to reflect legal, operational, or business changes. Updates take effect once posted, so please review it periodically.
Access to and use of this website is intended for adults with legal capacity to contract, in line with the laws of their country of residence and/or birth.
This Policy explains our practices; it is not itself a contract and does not alter your statutory rights.
What counts as personal data?
“Personal data” means any information that identifies you or can reasonably be used to identify you—e.g., name, date/place of birth, contact details, signature, usage data, and technical identifiers such as IP addresses.
Who controls your data?
The Company named in the Terms and Conditions is the data controller for information we collect when you browse the site, complete an Electronic Travel Authorization application, or contact Customer Service, among other interactions.
When does this Policy apply?
This Policy covers personal data we collect from Users and Customers through this website and our support channels.
Our website may link to third-party sites. We do not operate or control those sites and are not responsible for their content or their privacy/cookie practices.
Data we collect
1) Direct interactions
Information you provide in web forms (e.g., travel document applications, contact forms) or when you reach us via chat, mail, or other channels.
2) Automated technologies
Technical/usage data gathered via cookies or similar tools (e.g., IP address, pages viewed, time on site). See our Cookies Policy for details.
3) Payment data
Payment details are requested only after you accept the Terms and Conditions and proceed to checkout. Card data is transmitted securely to certified payment providers for authorization. We do not view or store complete card numbers. Do not send card details through any channel not listed on our site.
We ask only for data that is necessary for the purposes described below. If you voluntarily provide extra information, you consent to us processing it for the stated purpose(s).
You must provide accurate, current, and complete information so we can process your application/support request correctly. We are not responsible for issues caused by false, incomplete, or misleading data outside our control.
If you submit information about third parties (adult or minor), you confirm you have informed them of the purposes and obtained their consent. If you submit a minor’s data, you confirm you are the parent or legal guardian.
Special notes
- If we receive an adult’s data from someone who did not obtain consent, we will inform the data subject and may ask the submitter to confirm consent. The data subject may object to processing; in that case we cannot provide services.
- If we receive a minor’s data from someone other than a parent/guardian, we will take appropriate steps to correct the situation, including cancelling the application if necessary.
How we use personal data
- Service provision: Assist with completing and submitting your Electronic Travel Authorization; verify required documents; request missing/incorrect information when needed.
- Status updates & communications: Send operational messages, government-driven updates, and final outcomes (approval/denial). Request additional data if authorities require it.
- Support & requests: Respond to queries, claims, cancellations, and refund requests.
- Administration: Payment verification (including fraud checks), billing, and accounting.
- Legal compliance: Respond to lawful requests from courts, police, or authorities.
- Website & service improvement: Analyze site usage to enhance user experience and service quality.
- Security & fraud monitoring: Prevent, detect, and investigate fraudulent or unlawful activity.
Legal bases for processing
We process personal data only where a valid legal basis applies:
- Contract performance: To provide the services you requested (application checks, submission, updates, result notifications, support).
- Consent: For specific interactions (e.g., responding to information requests). You may withdraw consent at any time.
- Legal obligations: To meet statutory requirements or respond to lawful authority requests.
- Legitimate interests: Payment verification; handling potential claims; improving website performance and service quality; preventing fraud and ensuring site integrity.
Retention
We keep personal data only as long as needed for the purposes stated and, afterward, retain it securely blocked for the period necessary to: comply with legal duties; resolve disputes or claims; complete fraud/incident investigations; or retain cookie data (unless consent is withdrawn). When no longer required, data is securely deleted.
If you withdraw consent for a consent-based purpose, we will cease that processing and delete the data where appropriate.
Sharing personal data
We may share data with:
- Destination government authorities that decide on travel document approvals/denials.
- Payment service providers (and your bank/card issuer in chargeback disputes) for payment processing and fraud checks.
- Technology providers hosting our systems or supplying tools/support.
- Competent authorities when legally required.
- Legal/claim handlers to protect our legitimate interests if a dispute arises.
Some recipients may be located outside the European Economic Area. In such cases, we transfer data only to countries with adequate protection or implement appropriate safeguards required by data-protection law to keep your data secure and protect your rights.
How we protect data
We maintain technical and organizational measures to ensure confidentiality, integrity, and availability of personal data and to prevent unauthorized access, loss, or damage. Our personnel and service providers with access to data receive appropriate guidance/training regarding their obligations.
While we work to secure data transmitted through our site, you should also take precautions (e.g., never share card details via unsolicited messages or unlisted channels).
Your rights
You may exercise the following, where applicable: access, rectification, erasure, restriction, objection, and data portability. Send a request to mdac@entryclearance.org or use the Contact Form.
You can adjust your browser’s privacy settings to manage cookies or use “Do Not Track” tools.
We will respond within one (1) month; this may be extended by up to two (2) additional months for complex or multiple requests, in which case we will notify you of the extension and reasons.
You also have the right to lodge a complaint with your competent supervisory authority if you believe your rights have not been respected.
Contact
Questions about this Privacy Policy or our data practices? Contact mdac@entryclearance.org or use the Contact Form on the website.