top of page

Privacy Policy

Effective Date:February 3, 2025

This Privacy Policy applies to AllVisa World Ltd (referred to as "we," "us," or "our") and our trading name AllVisa. It governs the collection, use, and sharing of personal data for users of our websites, mobile apps, and services directly linked to this policy. We are committed to safeguarding your privacy and ensuring transparency about how we handle your data in accordance with applicable privacy laws.


This Privacy Policy is designed to inform you about:

  1. GDPR Compliance & User Consent

    • Consent

    • Legal Basis for Processing

  2. Personal Data We Collect

  3. How We Use Personal Data

  4. How We May Disclose and Transfer Personal Data

  5. Cookies and Tracking

  6. Your Rights Regarding Your Personal Data

  7. Security of Your Personal Data

  8. Children’s Data and Parental Consent

  9. Modifications

  10. How to Contact Us



  1. GDPR Compliance

Under the GDPR, individuals also have specific rights regarding their personal data, including the right to access, rectify, or erase their information. A detailed explanation of these rights and how to exercise them can be found in the section Your Rights Regarding Your Personal Information.

  • For users in the European Union: We adhere to the General Data Protection Regulation (Regulation (EU) 2016/679), also known as the GDPR.

  • For users in the United Kingdom: We comply with the UK GDPR, as outlined in the Data Protection Act 2018.

These regulations are designed to safeguard your fundamental rights to privacy and ensure the security of your personal data.


1.1 Consent

Under GDPR, your consent serves as a legal basis for processing your personal data. By using our Site and Services, you agree to:

  • The collection, use, and sharing of your personal data as outlined in this Privacy Policy.

You have the right to withdraw your consent at any time. Please note that withdrawing your consent does not affect the lawfulness of data processing that occurred prior to your withdrawal. To withdraw your consent, please contact us via email at dpo@allvisa.co.uk.


1.2 Legal Basis for Processing

In compliance with GDPR, we process personal data only when a valid legal basis exists, as outlined in Article 6 of the regulation. Depending on the context, we may rely on one or more of the following legal bases:

  • Consent: You have provided explicit consent for the processing of your data for one or more specified purposes.

  • Contractual Necessity: Processing is necessary to perform a contract you have with us or to take steps at your request prior to entering into a contract.

  • Legal Obligation: Processing is required to comply with legal obligations (e.g., visa application requirements).

  • Legitimate Interests: Processing is necessary for our legitimate interests or those of a third party, provided they do not override your fundamental rights and freedoms.


  1. Personal Data We Collect

We only collect data that is necessary to achieve the purposes set out in this Privacy Policy. We will not collect any additional data beyond the information listed below without notifying you in advance.

 

2.1 Data Collected Automatically

When you visit and use our Site, we may automatically collect and store the following information:

  • IP address

  • Location

  • Clicked links

  • Content viewed

 

2.2 Data Collected in a Non-Automatic Way

We may also collect the following data when you perform certain functions on our websites, apps, and/or services ("Services"). This may include personal details such as:

  • Your name

  • Address

  • Telephone number

  • Date of birth

  • Marital status

  • Government-issued IDs (e.g., birth certificates, driver’s licence, passport numbers or images)

  • Employment history

  • Educational background

  • Tax status

  • Employee number

  • Job title and function

  • Expatriate status

  • Email address

  • Payment and transaction information


This information may be collected directly from you (e.g., through consumer surveys) or, with your consent or as permitted by applicable law, from other parties such as:

  • Your travel agent

  • Family, friends, or travel companions

  • Government agencies

  • Trip providers (e.g., accommodations, transportation services, attractions and tour providers, travel insurance companies, or other booking companies)

  • Your employer


When necessary for the Services, we may also collect specific personal documents such as passport copies, educational documents, visa copies, birth certificates, and other relevant documents.

 

2.3 Sensitive Personal Information Collected

If we are managing your visa or immigration affairs, additional information may be required based on the application forms of the destination country. These supplementary details may encompass personal and family information, educational background, employment history, travel history, and financial records. If mandated by the visa or governmental authorities, additional sensitive information might include:

  • Ethnicity

  • Race

  • Religion

  • Trade union membership

  • Health-related information

  • Details about criminal history (where permitted by law)

 


  1. How We Use Personal Data

We use your personal data to provide and improve our services, fulfil legal and contractual obligations, and enhance your overall experience with us. The ways in which we may use your personal data depend on the specific services you request and your interactions with us or your agents. For example, we may use your personal information to:

  • Creating an Account: You may choose to create an account on selected Services, such as our websites and apps. The personal information we collect during this process typically includes, at a minimum, your name and contact details.

  • Service Provision, Including Visa Services: When you or your agent requests services or makes a purchase from us, such as visa services, we collect personal information like your name, contact details, and payment information. Payment details are processed securely through our payment processor and are not stored by us. The specific personal information required for visa services may vary depending on the requirements of the destination country.

  • Communication with You: When you subscribe to newsletters or engage with us in other forms of communication, we collect personal data, including your name, contact details, and the nature of your enquiry. We may also use your email address to send reminders regarding expiring visas, passports, or immigration status. If you no longer wish to receive such communications, you may opt out by clicking on the unsubscribe link in the email. Please note that calls to our call centre may be recorded for quality assurance, security, and training purposes.

  • Booking and Travel Services: When you enquire about or book services with us, we process your personal information to provide suitable options, complete your booking, and offer additional support. This may include sharing your information with service providers, such as airlines, hotels, or tour operators, to facilitate your request.

  • Photo Uploads: When using our Services for visa applications or other travel-related purposes, we may need to collect an image of you. These images will be used solely for the purpose of facilitating the provision of our services.

  • Posting on Our Services or Social Media Pages: You may choose to post, or give us permission to post, your photos, reviews, ideas, or other content on our Services or specified social media pages.

  • Service Management: To manage our services, understand how customers use them (such as pages viewed and actions taken), and maintain security. This includes activities like inventory management, debugging, and enforcing our policies. We also use your data to comply with regulatory and legal obligations, and to protect you, us, and others from fraud or security incidents.

  • Research and Development:To improve our services and products, better understand customer demographics, and enhance customer experience. We may analyse user data to identify popular service areas and areas for improvement.

  • Legal Compliance:To meet legal or regulatory obligations, including responding to court orders, cooperating with law enforcement, and handling legal proceedings.

  • Protection of You, Us, and Others:To protect individuals and organizations from fraud, security breaches, or other incidents where necessary. This may involve using data to detect and prevent fraud or respond to security threats.

  • Collaboration with Trip Providers:To deliver services in partnership with airlines, hotels, schools, associations, and other travel-related providers. Please review the privacy policies of our partners for their data practices.

  • Follow-Up Services:In cases where ongoing or additional services are required (e.g., visa extensions, permanent residency), we use previously collected data to provide these follow-up services.

  • Other Uses: For purposes that we notify you of or that you consent to, as outlined when you engage with specific services.


  1. How We May Disclose and Transfer Personal Data

We may disclose your personal data to third parties in the course of providing our services and conducting our business operations. These parties may include our affiliates, vendors, service providers, government entities, and business partners. Below is a breakdown of who we may disclose your information to and the purposes for which it may be disclosed:

  • Affiliates and Subsidiaries: We may disclose your information to our affiliates and subsidiaries to facilitate the provision of services. This includes processing bookings, managing visa applications, completing document legalisation, and assisting with immigration procedures. In some cases, this may involve disclosing sensitive data to visa application centres, logistics companies, translators, or solicitors. We also disclose information to improve our products, services, customer support, and identify business opportunities.

  • Vendors and Service Provider: We may disclose your personal data to external vendors and service providers who perform functions on our behalf, such as IT support, help desk services, data processing, analytics, and communication services. For instance, if you upload images for visa or travel-related purposes, these may be disclosed to vendors who specialise in processing such documents or images.

  • Government Entities: To provide services such as visa applications, immigration assistance, or logistics, we may be required to disclose your data to government authorities. This could include disclosing sensitive personal data when required by the destination country for purposes such as issuing visas or performing background checks. In certain cases, your information may be disclosed to law enforcement or regulatory agencies to comply with legal obligations.

  • Business Partners and Third Parties: We may disclose personal data to business partners or third parties to enhance our services, improve customer engagement, and evaluate the effectiveness of our marketing, advertising, and business operations. For example, third parties may assist us with research and analytics to better understand user preferences and improve our offerings.

    Additionally, personal data may be disclosed to third-party providers to offer specific features, respond to customer inquiries, or manage marketing campaigns.

  • Trip Providers: To assist with booking travel arrangements, such as flights, accommodations, and tours, we may disclose your information to travel service providers. This also extends to providers who issue official invitations necessary for visa applications or those conducting background checks as required by the destination country.

  • Travel Companions: If you are travelling with others, we may disclose relevant information to travel companions such as friends or family to support and facilitate group travel services.

  • To Others as Required by Law: We may disclose your personal data to third parties if required by applicable laws or legal obligations. This includes regulatory bodies, government agencies, law enforcement authorities, or other entities as necessary to comply with legal processes. This may also apply to cases such as contests, sweepstakes, or other events where information is disclosed in compliance with legal requirements.

  • External Links: If you follow a hyperlink from our site to an external website, please note that we are not responsible for, nor do we have control over, the privacy practices of these third-party sites. We encourage you to review their privacy policies before disclosing any personal data.


We may also disclose your personal information in the following circumstances:


  • Business Transfers: In the event of a merger, acquisition, investment, bankruptcy, or asset transfer involving us or our affiliates, personal information may be disclosed to or transferred to the other company. Prior to such transactions, personal data may also be disclosed to lenders, auditors, attorneys, and consultants as necessary.

  • Compliance and Legal Obligations: To comply with legal obligations or respond to lawful requests, such as subpoenas, court orders, or regulatory requirements, including national security or law enforcement demands.

  • Protection of Rights: To protect our services, enforce our rights, or safeguard the rights, property, or safety of others. This includes preventing, detecting, and responding to fraud, unauthorised activities, and potential security threats. Personal data may also be disclosed for litigation, legal claims, or internal compliance purposes.

  • Aggregate and Deidentified Information: We may use and disclose aggregate or deidentified information (information that cannot be linked back to an individual) to third parties for purposes such as research, analytics, quality control, and service development.

  • Other Disclosures: In any other instances where disclosure is required or permitted by law, or where you have provided explicit consent, we will notify you when appropriate.


  1. Cookies and Tracking

We use cookies and other similar tracking technologies to automatically collect personal information about your browsing activity, type of device, and similar information within our services. We use this personal information to:

  • Analyse and Improve User Experience: Understand how you access, use, and interact with our website and services to improve usability and functionality.

  • Detect and Resolve Issues: Identify, diagnose, and fix bugs or errors within our services to ensure smooth performance.

  • Optimise Security and Performance: Assess, protect, secure, and enhance the overall effectiveness and security of our services.

  • Targeted Advertising and Marketing: Serve personalised ads and measure the effectiveness of our marketing campaigns using tracking data to present content and promotions that align with your preferences.

  • Personalise Content: Tailor the content and features we present to you, making your experience more relevant.

  • Aggregate and Analyse Data: Collect aggregated personal information to analyse trends, administer our services, and gather demographic insights to better understand and serve our users.


Types of Cookies We Use


  • Functional Cookies: Essential for the operation of our site, these cookies help us remember your preferences (e.g., language settings, login details) for future visits.

  • Analytical Cookies: Help us improve the design and functionality of our site by collecting data on how users interact with it. For example, they track which pages you visit, how long you stay, and what content you engage with.

  • Targeting Cookies: Collect information about how you use our site and your preferences. These cookies allow us to personalise content and advertisements to make your experience more relevant.

  • Third-Party Google Analytics: We use Google Analytics to evaluate how visitors interact with our website. This tool helps us gather data such as the pages you visit, how long you stay on the site, and how you found our website. Google Analytics uses cookies to collect this information, which helps us improve our services. For more information about Google’s data practices, please review their Privacy Policy. You can opt out of Google Analytics using the Opt-out Browser Add-on.


Do Not Track Notice

"Do Not Track" ("DNT") is a privacy setting available in some web browsers that allows you to prevent websites from tracking your activities. We do not track users over time or across third-party websites, and we do not respond to browser-initiated DNT signals.


  1. Your Rights Regarding Your Personal Data

Under the UK General Data Protection Regulation (UK GDPR) and other applicable data protection laws (including the EU GDPR), you have a range of rights regarding the personal data we hold about you. These rights are designed to give you greater control over your personal data. Below is a detailed summary of your rights and how you can exercise them.


Lawful Basis for Processing Your Personal Data

We collect and process personal data based on the following lawful bases:

  1. Contractual Obligations: To fulfil our obligations under a contract with you (e.g., processing orders, delivering services).

  2. Consent: Where required, we rely on your explicit consent to process certain types of personal data. You may withdraw consent at any time.

  3. Legal Obligations: To comply with applicable laws and regulations.

  4. Legitimate Interests: For activities such as fraud prevention, improving our services, or protecting our legal rights, where such interests do not override your fundamental rights and freedoms.


Your Rights


Right to Access Your Personal Data: You have the right to request access to the personal data we hold about you. This includes information on how we process your data, the categories of data involved, and any third parties with whom we have shared it.


Right to Rectification: If you believe that the personal data we hold about you is inaccurate or incomplete, you have the right to request its correction or amendment. To exercise this right, please contact us with details of the specific information you believe should be rectified. We will review your request and make the necessary changes promptly, ensuring your data is accurate and up to date.


Right to Erasure (Right to Be Forgotten): You have the right to request that we erase your personal data under certain circumstances, such as:

  • The data is no longer necessary for the purposes for which it was collected.

  • You withdraw consent and there is no other lawful basis for processing.

  • You object to processing, and there are no overriding legitimate grounds.

Please note that this right is subject to exceptions, such as when we are required to retain data for legal or regulatory purposes. If you wish to exercise this right, visit: https://www.allvisa.co.uk/right-to-erasure.


Right to Restrict Processing: You have the right to request that we restrict processing of your personal data under certain conditions, including:

  • If you contest the accuracy of the data and we need to verify it.

  • If the processing is unlawful and you request restriction instead of erasure.


Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format. You also have the right to transmit your personal data to another organisation.


Right to Object to Processing: You have the right to object, on grounds relating to your particular situation, to how we process your personal information, unless we demonstrate compelling legitimate grounds for continuing such processing. You also have the right to object to any automated decision-making (such as user profiling).


Right to Withdraw Consent: Where we rely on your consent to process your personal data, you may withdraw this consent at any time. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal. If you wish to withdraw consent, you may contact us at dpo@allvisa.co.uk.


How to Exercise Your Rights


To exercise any of your rights, please contact us at dpo@yourcompany.com or by using the following form [Link to Form]. When making a request:

  • Specify the right you wish to exercise.

  • Provide sufficient information for us to identify you and the data concerned.

We will acknowledge receipt of your request and respond within one month. For complex requests, we may extend this period by up to two additional months, but we will inform you of any delays.


Limitations and Exceptions


Please note that some of these rights are subject to exceptions. For example, we may not be able to comply with an erasure request if we are required to retain the information for legal purposes. Similarly, certain rights may not apply in certain contexts (e.g., if fulfilling your request would adversely affect the rights of others). If we are unable to fulfil your request, we will explain the reasons why.


Complaints


If you are not satisfied with how we have handled your request or believe we have not complied with data protection laws, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) (for UK-based individuals) or the relevant supervisory authority in the region where you are based. You can contact the ICO directly at: https://www.ico.org.uk/concerns.


  1. Security of Your Personal Data

We have implemented a range of technical and organisational safeguards to protect the personal information we collect from loss, misuse, and unauthorised access, disclosure, alteration, or destruction. These measures include encryption, access control, and secure storage practices to maintain the confidentiality and integrity of your data.

However, it is important to note that no security system is completely foolproof. While we take reasonable steps to protect your personal data, we cannot guarantee absolute security, particularly in the face of evolving online threats.

To further protect your personal information, we recommend that you take certain precautions. For instance, choose a strong, unique password that is specific to our Services and avoid reusing the same password across multiple websites or services. Do not share your password with others, and ensure it is stored securely. If you believe that your password or account has been compromised, please reset your password immediately and notify us at dpo@allvisa.co.uk. By taking these steps, you can help protect your personal data from unauthorised access.


How We Store and Protect Personal Data


Data Retention: We store your personal data only for as long as necessary to fulfil the purposes outlined in this Privacy Policy or as required by applicable laws. User data is typically retained for thirty days unless a longer retention period is required for legal or business reasons. If we need to retain your data for a longer period, we will notify you and explain the reasons for the extended retention.

Data Protection: We are committed to safeguarding your personal data and have implemented a variety of security measures, including:


  • Physical safeguards to secure data storage and prevent unauthorised access.

  • Technical safeguards, such as encryption, firewalls, and secure access protocols, to protect your data online.

  • Administrative safeguards to ensure access to personal data is restricted to authorised personnel only and is handled in accordance with our data protection policies.


  1. Children’s Data and Parental Consent

We do not knowingly collect personal information from children under the age of 16. If your child wishes to use our services or provide personal data to us, their parent or legal guardian must submit the application on their behalf. By submitting personal data on behalf of a child, parents or guardians confirm they are providing verifiable consent for the collection and use of their child’s information as outlined in this Privacy Policy.

Parents or guardians may be required to provide additional information or confirm their consent through email or other means to verify that consent has been provided.

If you are a parent or guardian and believe we have inadvertently collected personal data from your child, please contact us immediately at dpo@allvisa.co.uk. We will promptly take appropriate action to delete the data. If we are able to verify that we have collected such data, we will delete it as soon as possible.


  1. Modifications

We may update this Privacy Policy from time to time to reflect changes in our practices or comply with legal requirements. Any amendments will be reflected in the "Effective Date" at the top of this policy. We encourage users to periodically review this Privacy Policy to stay informed. In some cases, we may notify you via email of significant changes.


  1. How to Contact Us

If you have any questions, concerns, or complaints about our Privacy Policy, data practices, or the way we handle your personal data, please contact us using any of the methods below:

  • By Email: dpo@allvisa.co.uk

  • By Mail:

    Attn: Data Protection Team

    AllVisaWorld Limited

    Battersea Power Station, 18, Circus Rd South

    London, SW11 8BZ, United Kingdom

  • By Phone: +44 (0) 20 3023 0571 


We are committed to addressing your inquiries promptly and in accordance with applicable data protection laws.


Services
Contact 
+44 (0) 20 3023 0571 
Battersea Power Station, 18, Circus Road South, London. SW11 8BZ
  • TikTok
  • Instagram
  • LinkedIn
Monday - Friday: 9:00 - 17:00 
no background_edited.png
© 2024-2025 Allvisa.co.uk, ltd. All rights reserved.
Allvisa is the trading style of AllVisaWorld Limited Registered in England & Wales. Registration No. 15703539
bottom of page