Privacy Policy Last updated: July 31, 2025
This Privacy Policy describes our policies and procedures on the collection, use, and disclosure of your information when you use our Service, and informs you of your rights under applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 ("GDPR").
We use your personal data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.
For the purpose of this Privacy Policy and the GDPR, the Data Controller is:
Bureaucracy International Group B.V., a company registered in the Netherlands with the Dutch chamber of commerce number: KVK 88274276, located at Sharpevillestraat 3, 2033DS, Haarlem, Nederland. Our VAT number is NL864561702B01. Email: [email protected]
We may collect and process the following data:
Identifying information: name, surname, date of birth, nationality, ID documents, postal address, email, phone number etc.
Migration data: travel history, previous visas, passport, official documents, etc
Financial data: proof of income, bank statements, payslips, etc.
Health data only when strictly necessary for certain migration procedures (e.g., medical tests).
Browsing data: IP address, approximate location, browser, operating system, etc.
Other documents: submitted directly by the client through our platform.
Under the GDPR, we must have a lawful basis to collect and use your personal data. We process your personal data based on one or more of the following legal grounds:
Performance of a contract: When processing is necessary for the performance of a contract with you.
Consent: When you have given us clear consent to process your personal data for a specific purpose (e.g., newsletter subscription).
Legitimate interests: When the processing is necessary for our legitimate interests, provided your rights do not override those interests.
Legal obligation: When we are legally required to process your data.
You have the right to withdraw your consent at any time.
Under the GDPR, if consent is used as the lawful basis for processing, we only process the data of children under the age of 16 with verified parental consent.
• Through online forms on our website.
• Through voluntary submission of documents by the user via our private platform.
• Through direct communication (newsletters, email, phone calls, messaging).
We process your personal data for the following purposes, with your prior consent:
• To provide immigration and legal advisory services: Contact you , manage your requests.
• To prepare and process visa or residence applications: Manage your account, perform the contract.
• To communicate with official agencies or consulates.
• To comply with legal obligations.
• To prevent fraud and protect our services.
• To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information.
Yes, but only when strictly necessary to provide the service:
• Migration authorities, embassies, consulates.
• Technology service providers (under confidentiality agreements).
• Legal advisors or external collaborators under contract (tax advice, health insurance etc) with you permission.
• Third parties for operations services: (translators, copying and printing services,Courier services, postal services).
We will never sell or rent out your personal data.
Data is stored in our own secure platform, hosted on servers that comply with European security standards. We apply appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of the data.
Data will be retained as long as necessary to fulfill the purposes for which it was collected, and subsequently for the legally required timeframes. In general:
• Administrative data: up to 10 years.
• Visa documentation: up to 5 years.
• Health data: only while necessary, then deleted.
You may exercise the following rights:
• Access: know exactly what data we process about you.
• Rectification: correct inaccurate data..
• Erasure: request the deletion of your data.
• Objection: object to the processing of certain data.
• Portability: receive your data in electronic format.
• Restriction: request restricted processing under certain conditions.
To exercise your rights, please contact us at: [email protected]. Include a copy of your ID so we can verify your identity.
The company will take all reasonable steps to ensure that your data is treated securely and in accordance with this privacy policy. No transfer of your personal data will take place to an organisation or country unless adequate controls are in place to ensure the security of your data and other personal information.
If data needs to be transferred outside the European Economic Area (EEA), we will ensure that appropriate safeguards are in place, in accordance with the GDPR, such as standard contractual clauses or other adequacy mechanisms.
Business transactions: If the company is involved in a merger, acquisition or asset sale, you will be asked for your consent in advance to share or transfer your personal information in connection with these transactions.
We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:
Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.
Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.
We use both Session and Persistent Cookies for the purposes set out below:
Necessary or Essential Cookies: Cookies that are essential to provide You with services available through the Website and to enable You to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts.
Notice Acceptance Cookies: Cookies to identify if users have accepted the use of cookies on the Website.
Functionality Cookies: Cookies to allow us to remember choices You make when You use the Website, such as remembering your login details or language preference. The purpose of these Cookies is to provide You with a more personal experience and to avoid You having to re-enter your preferences every time.
Usage Data is collected when using the Service. Usage Data may include information such as Your Device's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.
We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.
We implement technical and organizational security measures to protect data against loss, misuse, unauthorized access, disclosure, or alteration.
The security of Your Personal Data is important to Us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While We strive to use commercially acceptable means to protect Your Personal Data, We cannot guarantee its absolute security.
Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Our service is not intended for anyone under the age of 16. We do not knowingly collect personally identifiable information from anyone under this age. If you are a parent or guardian, you must provide your consent before providing us with any personal data relating to minors.
We may update this policy at any time. We will notify users of any significant changes through our website or via electronic means. Changes to this Privacy Policy are effective when they are posted on this page.
For questions or concerns about this Privacy Policy or how we handle your data, please contact us: [email protected]
You also have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD) or your local data protection authority.