Privacy policy

PRIVACY POLICY & DATA PROTECTION NOTICE (GateReadyExpress)

Last updated: March 3, 2026

This Privacy Policy explains how GateReadyExpress (“GateReadyExpress,” “we,” “us,” “our”) collects, uses, discloses, and protects personal information when you visit www.GateReadyExpress.com (the “Site”), use our services (the “Services”), or communicate with us. If there is a conflict between our Terms of Service and this Privacy Policy, this Privacy Policy controls with respect to personal information practices.

GateReadyExpress provides administrative and concierge assistance for travel authorization applications (including, where applicable, Canada eTA). We are an independent, privately operated service and are not affiliated with any government authority.

1) Data Controller (Responsible for the processing: Who are we?)

Controller: GateReadyExpress
Address: 1550 Lorylin Avenue, Las Vegas, NV 89119, United States
Email: info@gatereadyexpress.com
Phone: [PHONE]

If you contact us to exercise privacy rights, we may ask for information necessary to verify your identity and protect your data.

2) Purpose of processing (What do we use your data for?)

We process personal information to:

  • Provide, deliver, and manage the Services (including reviewing, preparing, and where applicable submitting travel authorization applications)

  • Communicate with you about your order, application status, updates, and support requests

  • Process payments, prevent fraud, and secure transactions

  • Maintain internal records, comply with tax/accounting obligations, and enforce our Terms

  • Improve the Site and user experience (analytics, performance, debugging)

  • Send service-related messages (transactional emails, confirmations)

  • Send marketing communications where permitted by law and where required, based on your consent (you can opt out at any time)

We do not create user profiles for automated decision-making that produces legal or similarly significant effects. Government authorities make the final decision on any travel authorization application.

3) Personal information we collect or process

Depending on how you use the Services, we may collect or process:

A) Identification & contact details
Name, email, phone number, home address, country of residence, date/place of birth, nationality.

B) Travel application information
Details required to prepare or submit an application (e.g., travel details, passport information such as passport number, issuing country, issue/expiry dates).

C) Potentially sensitive information (only if required for the application or voluntarily provided by you)
Some travel authorization processes may ask questions related to criminal history or health-related information. We only process such information to the extent necessary to provide the Services and as permitted by applicable law.

D) Payment & transaction information
Billing details, payment method, transaction confirmations, and order history. We do not store full payment card numbers; payments are handled by our payment providers.

E) Communications
Messages you send us (email/support), attachments you provide, and notes required to assist you.

F) Device & usage data
IP address, browser type, device identifiers, log data, timestamps, pages viewed, and cookie/analytics data.

4) Sources of personal information

We collect information:

  • Directly from you when you fill forms, place an order, submit application details, or contact us

  • Automatically through cookies and similar technologies when you use the Site

  • From service providers who support the Site and payment processing

  • From partners/third parties only when necessary for service delivery, fraud prevention, legal compliance, or where you direct us to do so

5) Legal basis (Legitimacy of processing: Why do we need your data?)

Where required by applicable law (including GDPR for EEA/UK residents), we rely on:

  • Contract performance: to provide the Services you request/purchase

  • Legal obligations: accounting, tax, compliance, and lawful requests by authorities

  • Legitimate interests: fraud prevention, security, service improvement, customer support, and dispute handling

  • Consent: where required (e.g., certain marketing communications or non-essential cookies)

  • Sensitive data: processed only when necessary for the requested service and as permitted by law (and where required, with explicit consent)

6) Recipients (With whom do we share your data?)

We may share your information with:

  • Government authorities / consular offices when submission or verification is required for your requested application

  • Service providers who help us operate the Site and deliver Services (hosting, email, customer support tools, analytics, security/fraud prevention)

  • Payment processors to process transactions securely

  • Professional advisors (legal/accounting) when necessary for compliance and dispute handling

  • Authorities where required by law, subpoena, court order, or lawful request

  • Business transfers if we undergo a merger, acquisition, restructuring, or sale (with appropriate protections)

We do not sell your passport/application data as a standalone dataset.

7) Shopify and third-party platforms (Relationship with Shopify)

Our store is hosted on Shopify. Shopify may collect and process personal information about your access to and use of the Services to provide and improve the platform functionality (checkout, fraud prevention, analytics, and store operations). Information you submit may be transmitted to Shopify and relevant subprocessors, some of which may be located outside your country. Where applicable, Shopify acts under its own privacy obligations for platform-level processing, and we act as the controller for our store-level processing.

8) International data transfers (Where can we send your data?)

We may transfer, store, or process personal information in countries other than where you live, including the United States and other jurisdictions where our service providers operate, and countries relevant to your requested application (e.g., governmental authorities abroad). Where required by law (e.g., EEA/UK), we rely on recognized transfer mechanisms and appropriate safeguards.

9) Retention (How long do we keep your data?)

We keep personal information only as long as necessary to:

  • Provide the Services and customer support

  • Maintain records required by law (tax/accounting and compliance obligations)

  • Resolve disputes and enforce agreements

When data is no longer needed, we delete or anonymize it, or restrict access (“block”) where required for legal retention.

10) Security (How do we protect your data?)

We use reasonable technical and organizational measures designed to protect personal information, including access controls, encryption in transit where applicable, and security monitoring. No online system is 100% secure, and you should avoid sending highly sensitive information through unsecured channels.

You are responsible for maintaining the confidentiality of any account credentials you create or use.

11) Your rights (What rights can you exercise?)

Depending on your location and applicable law, you may have the right to:

  • Access the personal information we hold about you

  • Correct inaccurate information

  • Request deletion of certain information

  • Restrict or object to certain processing

  • Request portability of your data

  • Withdraw consent where processing is based on consent

  • Opt out of marketing emails at any time (unsubscribe link or contact us)

Targeted advertising / “sale” or “sharing” (where applicable):
If applicable privacy laws treat certain marketing/advertising disclosures as “sale” or “sharing,” you may have the right to opt out. You can request this by contacting us at info@gatereadyexpress.com. If your browser sends a recognized opt-out preference signal (such as Global Privacy Control), we will apply it where legally required and technically feasible.

We will not discriminate against you for exercising privacy rights. We may need to verify your identity before processing your request.

12) Children’s privacy

The Services are not intended for children under the age of majority in your jurisdiction. We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us and we will take appropriate steps to delete it.

13) Cookies and similar technologies

We use cookies and similar technologies for essential site functions, security, performance, and analytics, and where applicable for marketing. Please refer to our Cookie Policy for more information and options to manage cookies.

14) Complaints (Where can you make a claim?)

If you have concerns about our privacy practices, contact us first at info@gatereadyexpress.com and we will try to resolve the issue.
If you are in the EEA/UK, you may also have the right to lodge a complaint with your local data protection supervisory authority.

15) Updates (What changes can be made to this Privacy Policy?)

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or operational needs. We will post the updated version on the Site and revise the “Last updated” date.