Privacy Policy

Introduction

Welcome to DoVisa by Remake.gg OÜ ("DoVisa," "we," "us," or "our"). This Privacy Policy describes how we collect, use, and disclose information we collect from our website, mobile application, and related services (collectively, the "Services").

Before using the Services or providing us with information, please carefully review this Policy. By accessing or using any part of the Services, you acknowledge and agree to the terms of this Privacy Policy.

Information We Collect

We collect information in various ways: when you provide it directly, when it's collected automatically through your use of our Services, or from third parties.

Information You Provide Directly

We collect information when you:

• Register for an account or use our Services
• Apply for travel visas
• Contact us with inquiries or for support
• Respond to surveys or request certain features
• Make purchases or payments
• Subscribe to newsletters or updates

Types of Information Collected

The information you provide may include:

• Personal Identifiers: Name, email address, phone number, date of birth, gender
• Travel Information: Travel dates, port of arrival, reason for travel, destination
• Location Data: Address, city and country of birth, citizenship
• Identity Documents: Passport information (number, issue and expiration dates, photo, place of issue), social security number
• Family Information: Names of family members and relatives
• Professional Details: Occupation, employer name and information
• Religious Information: Religious beliefs (where required for visa applications)
• Financial Information: Payment card details, billing information (processed securely through our payment processors)
• Profile Information: Optional profile photo and preferences

Information Collected Automatically

When you access our Services, we automatically collect:

• Device Information: Model, operating system, unique device identifiers (IMEI, UDID), mobile carrier
• Network Information: IP address, general location information (inferred from IP), TCP/IP address
• Browser Information: Browser type, version, language settings
• Usage Data: Pages viewed, features used, time spent, referring/exit pages, click data, date and time stamps
• Navigation Data: Mouse movements, scrolling patterns (keystroke data is not collected)

Cookies and Tracking Technologies

We use cookies, web beacons, tracking pixels, and similar technologies to enhance your experience and collect information about your usage of our Services.

A cookie is a small text file stored on your device that helps us: (i) recognize your device; (ii) store your preferences; (iii) understand which pages you visit; (iv) deliver personalized content; (v) perform analytics; and (vi) assist with security functions.

Information from Third Parties

We may obtain information about you from:

• Social Media: If you access our Services through Facebook, Google, or other social platforms, we may receive your profile information, email, photos, and friends list
• Payment Processors: Transaction and verification information from payment service providers
• Government Authorities: Visa status updates and verification information from consulates and immigration authorities
• Analytics Providers: Aggregated usage statistics and demographic information

We may combine information collected from different sources and use it in accordance with this Policy.

How We Use Your Information

We use collected information for the following purposes:

• Service Provision: To provide, maintain, and improve our Services
• Visa Processing: To process visa applications and communicate with government authorities
• Account Management: To create and manage your account
• Payment Processing: To process transactions and prevent fraud
• Customer Support: To respond to inquiries and provide assistance via email, chat, or phone
• Communications: To send transactional emails, notifications, and (with consent) marketing materials
• Personalization: To personalize your experience and deliver relevant content
• Analytics: To monitor usage, improve features, and develop new products
• Security: To detect, prevent, and address fraud, abuse, and security issues
• Legal Compliance: To comply with legal obligations and enforce our terms

We may aggregate and de-identify information for research, marketing, and other purposes. Aggregated data is not considered personal information and may be used or shared without restriction.

Information Sharing

Service Providers

We share information with third-party vendors who perform services on our behalf:

• Payment Processors: For secure payment processing
• Cloud Hosting: Amazon Web Services EMEA SARL for data storage and processing
• Analytics: Google Analytics and similar services
• Communication: Email service providers and SMS gateways
• Visa Agents: Local visa processing companies who visit embassies on your behalf
• Courier Services: FedEx, UPS, or local courier companies for document delivery

Government Authorities

We share your passport and application information with relevant government authorities, consulates, and immigration offices to process your visa applications.

Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction.

Legal Requirements

We may disclose information when required by law or when necessary to:

• Comply with legal obligations or valid legal requests
• Protect and defend our rights or property
• Prevent fraud or security incidents
• Protect the safety of users or the public

With Your Consent

We may share your information with third parties when you provide explicit consent.

Analytics and Advertising

We use Google Analytics to understand how users interact with our Services. Google Analytics uses cookies to collect data such as time on site, pages visited, and traffic sources. To opt out of Google Analytics, install the Google Analytics Opt-out Browser Add-on.

We integrate third-party advertising technologies that deliver relevant ads based on your browsing behavior. These technologies may collect information about your visits to our website and other sites. You can opt out of personalized advertising through:

• Network Advertising Initiative (NAI) Opt-Out
• Digital Advertising Alliance (DAA) Opt-Out
• Google Ads Settings

Your Choices

Account Information

You can access, update, or delete your account information through your account settings.

Marketing Communications

You can opt out of marketing emails by clicking "unsubscribe" in any marketing email. Note that we may still send transactional communications (e.g., visa status updates).

Cookies

Manage cookies through your browser settings or use the opt-out links provided in this Policy.

Data Protection

Data Retention

We retain your information for as long as necessary to provide our Services or until you delete your account. We also retain information as required by law, including:

• Visa application records: Up to 7 years (for legal compliance)
• Payment records: As required by tax and financial regulations
• Account information: Until account deletion, plus legally required retention periods

Data Security

We implement robust security measures to protect your information:

• Encryption: 256-Bit AES encryption for data at rest and TLS/SSL for data in transit
• PCI-DSS Compliance: Payment processing meets PCI-DSS standards
• ISO 27001: Information security management certified
• Access Controls: Strict authentication and authorization protocols
• Regular Audits: Ongoing security assessments and penetration testing
• Secure Infrastructure: Hosted on Amazon Web Services with enterprise-grade security

International Data Transfers

Remake.gg OÜ is based in Estonia, but we use service providers located in various countries, including the United States. By using our Services, you consent to the transfer of your information to countries that may have different data protection laws than your country of residence.

When transferring data internationally, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from minors under 18. If you are under 18, please do not use our Services or provide any information to us.

If you believe a child has provided us with personal information, please contact us at [email protected], and we will delete that information.

Links to Third-Party Sites

Our Services may contain links to third-party websites not operated or controlled by DoVisa. We are not responsible for the privacy practices of these third-party sites. We encourage you to review the privacy policies of any site you visit.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by posting the updated Policy on this page and updating the "Last updated" date. Your continued use of the Services after changes become effective constitutes acceptance of the updated Policy.

Your Privacy Rights

European Economic Area (EEA) and UK Residents

Remake.gg OÜ is the data controller for the personal information we process under this Policy.

Legal Basis for Processing

We process your personal data based on:

• Contractual Necessity: To fulfill our obligations under our Terms of Service and provide visa services
• Consent: Where you have provided explicit consent (which you may withdraw at any time)
• Legitimate Interests: For business purposes such as improving services, fraud prevention, and security
• Legal Compliance: To comply with legal obligations and regulatory requirements

Your GDPR Rights

Under GDPR, you have the right to:

• Access: Request a copy of your personal data
• Rectification: Correct inaccurate or incomplete data
• Erasure: Request deletion of your personal data ("right to be forgotten")
• Restriction: Request limited processing of your data
• Data Portability: Receive your data in a structured, machine-readable format
• Object: Object to processing based on legitimate interests or direct marketing
• Withdraw Consent: Withdraw consent at any time (without affecting prior processing)

Supervisory Authority

You have the right to lodge a complaint with the Estonian Data Protection Inspectorate or your local data protection authority. However, we encourage you to contact us first.

California Residents (CCPA)

Information We Collect

In the past 12 months, we have collected the following categories of personal information:

• Identifiers (name, email, phone number)
• Commercial information (transaction data, purchase history)
• Financial data (payment card information)
• Internet/network activity (IP address, browsing behavior)
• Professional information (occupation, employer)
• Inference data (preferences, characteristics)
• Protected classifications (race, ethnicity, religion)
• Sensitive personal information (Social Security number, passport number, account credentials)

Your CCPA Rights

California residents have the right to:

• Know: Request information about the categories and specific pieces of personal information we collect
• Delete: Request deletion of your personal information
• Correct: Request correction of inaccurate information
• Opt-Out: Opt out of the "sale" or "sharing" of personal information
• Limit: Limit use of sensitive personal information (where applicable)
• Non-Discrimination: Not receive discriminatory treatment for exercising your rights

Data Categories, Recipients, and Purposes

The following table provides details about the categories of personal information we collect, who we share it with, why we use it, and whether we "sell" or "share" it:

Sale or Sharing of Personal Information

We do not "sell" personal information in the traditional sense. However, our use of advertising technologies may constitute "sharing" under CCPA. You can opt out using the links in the "Online Analytics and Tailored Advertising" section.

We do not knowingly sell or share personal information of minors under 16.

Other U.S. State Residents

Residents of other states with comprehensive privacy laws (including Virginia, Colorado, Connecticut, Utah, Maryland, Nebraska, and New Jersey) may have similar rights to those described above for California residents.

To exercise your rights, please contact us using the information in the "Contact Us" section.

Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us: