Last updated: 29.1.2026

This Privacy Policy explains how FingerprintsEU s.r.o. ("FingerprintsEU", "we", "us", or "our") collects, uses, stores, and protects personal data, including biometric data, in connection with our fingerprinting and identity verification services.

We are committed to protecting your privacy and processing personal data in compliance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and applicable Czech data protection laws.

1. Data Controller

FingerprintsEU s.r.o.
Registered Office: Prague, Czech Republic
Email: info@fingerprintsEU.com
Phone: +420 720 337 481

FingerprintsEU is the data controller for personal data processed in connection with our services.

2. Personal Data We Collect

We collect only the data necessary to provide fingerprinting and related services.

2.1 Identification Data

• Full name
• Date of birth
• Place of birth (if required)
• Nationality (if required)
• Government-issued ID details (type, number, issuing authority, expiration date)

2.2 Contact Data

• Email address
• Phone number

2.3 Biometric Data

• Fingerprint images or scans

Biometric data is considered a special category of personal data under GDPR and is handled with enhanced security and limited access.

2.4 Transaction Data

• Appointment details
• Payment status (FingerprintsEU does not store full payment card numbers)

3. Purpose and Legal Basis for Processing

We process personal data for the following purposes:

• Identity verification - Legal obligation / legitimate interest
• Fingerprint collection and submission - Explicit consent (Art. 9(2)(a) GDPR)
• Submission to FBI, RCMP, or other authorities - Performance of a contract
• Appointment management and communication - Performance of a contract
• Compliance with legal obligations - Legal obligation
• Fraud prevention and security - Legitimate interest

Where required, we obtain explicit written consent prior to collecting biometric data.

4. How We Use Fingerprints

• Fingerprints are collected only for the purpose selected by the client
• Fingerprints are transmitted securely to the designated authority (e.g., FBI or RCMP)
• Fingerprints are not used for profiling, marketing, or automated decision-making
• Fingerprints are not shared with any third party except the requesting authority or where legally required

5. Data Retention

We retain personal data only for as long as necessary:

• Fingerprint data: retained only until successful transmission or completion of the service, unless legally required otherwise
• Identification and appointment data: retained as required by Czech accounting, tax, and regulatory laws
• Communication records: retained for a limited period for customer support and dispute resolution

Retention periods are reviewed regularly.

6. Data Sharing and International Transfers

6.1 Data Recipients

Personal data may be shared with:
• Government authorities (e.g., FBI, RCMP)
• Secure IT and hosting providers located in the EU
• Payment processors
• Legal or regulatory authorities where required by law

6.2 International Transfers

Where personal data is transferred outside the European Economic Area (EEA), including to the United States or Canada, we ensure appropriate safeguards are in place, such as:
• Adequacy decisions
• Standard Contractual Clauses (SCCs)
• Secure encrypted transmission channels

7. Data Security

We implement appropriate technical and organizational measures to protect personal data, including:
• Restricted access to biometric data
• Secure storage and encrypted transmission
• Staff confidentiality obligations and training
• Physical security of fingerprinting equipment

Despite our best efforts, no system can be guaranteed to be 100% secure.

8. Your Rights Under GDPR

You have the right to:
• Access your personal data
• Rectify inaccurate or incomplete data
• Request erasure ("right to be forgotten"), where applicable
• Restrict or object to processing
• Withdraw consent at any time (without affecting prior lawful processing)
• Data portability, where applicable
• Lodge a complaint with a supervisory authority

In the Czech Republic, the supervisory authority is the Office for Personal Data Protection (ÚOOÚ).

9. Mandatory vs. Optional Data

Providing certain personal and biometric data is mandatory to perform fingerprinting services. Failure to provide required data may result in inability to deliver the requested service.

10. Automated Decision-Making

FingerprintsEU does not engage in automated decision-making or profiling within the meaning of Article 22 GDPR.

11. Cookies and Website Data

If applicable, our website may use essential cookies necessary for functionality. Any additional cookies are governed by a separate Cookie Policy.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The version in effect at the time of service applies.

13. Contact Us

For privacy-related questions or to exercise your rights:
FingerprintsEU
Email: info@fingerprintsEU.com
Phone: +420 720 337 481

By using FingerprintsEU services, you acknowledge that you have read and understood this Privacy Policy.