Last revision of this policy: November  2021

The following terms: “Global ID”, “we”, “us”, “our” or the “Company” are references to Global ID SA, the controller, and to companies held by Global ID Group.

 

Global ID attaches great importance to the protection and respect of your privacy.

When you use one of our products or services, or visit our websites, we may collect your personal data. This document describes when and why we collect them, how we use them, with whom we share them, the processing we do on them, and the measures we take to ensure their safety. Please read this policy carefully to find out what your rights are and what means are available to you to exercise them.

1. Who are we?

The main objective of Global ID is to bring to market an innovative new technology to reliably authenticate people using biometric finger vein multi-views. This new patented technology addresses the main drawbacks of many current biometric technologies, namely lack of consent and privacy, reliability, robustness, and scalability. With Global ID technology, consumers and citizen no longer need to disclose non-pertinent personal data to authenticate themselves. Just one finger will do, and only with their consent. Data controller Global ID SA
EPFL Innovation Park Building C 1015 Lausanne

2. What personal data do we collect?

2.1. The data we collect from you

We collect information about you when you contact us or send us an application for a job position. These data are for example:

  1. Your name, first name, address, and email address

We need this personal information to provide you with the service requested. This data is not kept longer than the purpose for which they have been collected. This information is locally processed in Switzerland within our infrastructure and office boundaries.

2.2 Data we collect from other sources

Global ID does not collect information from sources other than you. We might work with a company that needs our technology to authenticate users and we might temporarily have access to their user’s personal data while setting up the system on behalf of that company. However, we will not collect personal  information, nor disclose it nor share it. 

3. What data do we process about your devices?

When you visit our website globalid.swiss using your mobile devices or from a computer, we collect and store navigation information (cookies) on the internal storage space of such devices. We then reuse this data to improve website user experience or to perform visitor statistics. The different data we collect can be, for example:

  1. Device IP address and location data
  2. Type of device
  3. Eventual link used to access our website
  4. Eventual device settings such as language, locale, date and time formats, to adapt our services

You will be able to choose whether or not to store this information by accepting cookies or not.

3.1 The different types of cookies we use

Cookies are small amounts of information stored in files by your device’s browser itself. Cookies are accessible and stored by the websites you visit, and by companies that display their advertisements on websites, so that they can recognize the browser. Websites can only access the cookies they have stored on your computer.

By using our website, you consent to the use of cookies.

Our websites or web applications use cookies for the following purposes:

  1. Site Usage: to help us recognize your browser as that of a previous visitor and to record the preferences you determined during your previous visit to the Site. For example, we may record your login information so that you do not have to log in each time you visit the Site;
  2. Social networks: to check if you are connected to third party services (Facebook, Twitter, Google+…);
  3. Targeting: to allow us to target (basic enrichment) later or in real time the Internet user who navigates on our Site;

Audience measurement: to track statistical data on Site usage (i.e., users’ use of the Site and to improve the Site’s services) and to help us measure and study the effectiveness of our interactive online content, features, advertising and other communications.

3.2 Your choices regarding cookies and web beacons

You have the option of configuring your browser to accept all cookies, reject all cookies, notify you when a cookie is issued, its validity period and content, and allow you to refuse to save it on your device, and delete your cookies periodically.

You can set your Internet browser to disable cookies. Please note, however, that if you disable cookies, your username and password will no longer be saved for use on any website. For more information on how to delete and control cookies stored on your computer, visit https://www.aboutcookies.org/

Your consent to the use of cookies will be requested when you access our sites. You will be able to set them up and adjust them to your preferences.

More information regarding cookie management is given in our cookie policy. 

4. How do we process your information?

While involve in testing our product or while setting up the system we might collect information in order:

  1. to provide our services
  2. to improve our services;
  3. to develop new services and/or products;
  4. to gather information for scientific research;
  5. to provide evidence to support scientific initiatives;
  6. for the publication of articles or similar communications, including scientific and marketing articles; and
  7. for statistics, performance analysis.

Your personal data may only be used with your expressed consent, which must be collected in advance.

Insofar as we process your personal data on the basis of your consent, you have the right to withdraw your consent at any time. However, the withdrawal of your consent does not compromise the lawfulness of the processing operation before your consent is withdrawn.

If you are unable to legally establish contractual links with Global ID SA or another company of the Global ID Group or to give your consent to the eventual processing of your personal data, any personal data would  only be processed if this is necessary to safeguard your vital interests or if requested by authorities.

Personal data collected by Global ID SA and other companies in the Global ID Group will only be kept for as long as necessary until we have achieved the purposes for which they were collected. To ensure that we do not keep them longer than necessary, we periodically review and delete our files in accordance with these objectives.

5. Who has access to your information?

Global ID employees and consultants: to improve our services, user experience, security and the proper performance of the contract between you and Global ID.

Third party service providers working for us: we are authorized to share your personal information with our third-party service providers, agents and subcontractors and other associated organizations for the purpose of performing tasks and providing services on our behalf. When we use third party service providers, however, we only disclose personal information necessary to provide the relevant services and we enter into a written agreement (including in electronic form) in accordance with Swiss and EU law requiring them to ensure the security of your information and not to use it for their own purposes, except with your expressed consent.

Third-party product suppliers with whom we work: we work closely with various third-party suppliers to provide you with quality and reliable products and services designed to meet your needs. When you are interested in one or more of these products or when you purchase them, the third-party supplier of the product(s) concerned will use the information about you to inform you and fulfil its obligations under any contract you have concluded with it. In some cases, he or she will act as the controller of the processing of your personal information. That is why we recommend that you read their Privacy Policy. These third-party product providers may share your information with us, and we will use it in accordance with this Privacy Policy.

We are also authorized to disclose your personal information to a third party if we are required to disclose or share your personal data in order to comply with a legal obligation, to apply or enforce our terms of use or to protect the rights, property or safety of our customers. However, we will take all appropriate measures to ensure that your privacy rights remain protected.

6. How we secure your information?

6.1 The security of your data at Global ID

When you provide us with personal information about yourself, we take steps to ensure its security. All the information you send us is encrypted using TLS and a 256-bit security key.

Despite all the measures taken to guarantee the security of your information, we draw your attention to the fact that there is no such thing as zero risk. We do our best to protect your information, but we cannot guarantee 100% flawless security. Safety is effective when all parties follow good practices. You are responsible for keeping your login information and any other access data to our services confidential.

7. Transferring your information outside Europe

We do not transfer any data outside Europe to any third party. When you contact us or apply for a position in our company, the personal data you share with us is stored on our servers which are hosted on a cloud provider located in Europe. The cloud provider does not have access to our infrastructure and cannot access your data.

8. What are your rights regarding your personal data?

8.1 Your rights

The general data protection regulations grant you rights over your personal or biometry data. Your rights are applicable subject to local data protection laws. Depending on the applicable laws and, more particularly, if you are located in the European Economic Area, these rights may include:

  1. The right of access: access to your Personal Data that we hold;
  2. The right of rectification: The rectification of inaccurate Personal Data and, taking into account the purpose of the processing of Personal Data, to ensure that they are complete;
  3. The right to erase (the right to forget): the erasure/deletion of your Personal Data, to the extent that applicable data protection laws allow it;
  4. The right to limit processing: the limitation of our processing of your Personal Data, to the extent permitted by law (right to limit processing);
  5. The transfer of your Personal Data to another controller, if possible;
  6. The right of opposition: the opposition to any processing of your Personal data or data related to your personal data based on our legitimate interests. When we process your Personal Data for commercial prospecting purposes or share them with third parties for their own commercial prospecting purposes, you have the right to object to this processing at any time without having to invoke any particular reason;
  7. Automated decision: The right for the data subject not to be the subject of a decision based exclusively on automated processing, including profiling, which produces legal effects. No automated decisions are currently being implemented on our websites, services or products; and
  8. The right to withdraw your consent: to the extent that we base the collection, processing and sharing of your personal data on your consent, you may withdraw your consent at any time, without compromising the lawfulness of the processing based on the consent given before the withdrawal. Global ID will act on withdrawals of consent as soon as we can and will not penalise individuals who wish to withdraw consent. However, the withdrawal of your consent may have as a consequence that Global ID or the relevant affiliate of the Global ID Group will not be in a position to provide you with its services

8.2 How to exercise your rights?

To exercise your rights, please contact us using the information in the “Contact us” section below. We try to respond to all legitimate requests within one month and will contact you if we need additional information from you to satisfy your request. However, the deadline may be longer than one month, if we have a high demand. In such a case, you will be informed within one month of receiving your request. If your request concerns one of our third-party product suppliers, we recommend that you submit this request directly to that supplier.

You also have the right to file a complaint with the competent supervisory authority in the country where you reside if you believe that we have not complied with the requirements of the data protection regulations.

8.3 How can you change your data and how we process it?

For more information, please contact us using the information in the “Contact Us” section below.

9. Review of the Privacy Policy

We regularly review this privacy policy and may update it at any time to better protect you. Any future changes or additions to the processing of personal data described in this document concerning you will only be applicable to you with your express consent.

10. Contact Us

Any questions regarding this privacy policy and our privacy practices should be sent to our Data Protection Officer by e-mail dpo@globalid.swiss.