Privacy Notice

CRIF VisionNet Limited is committed to protecting your privacy, which is why we have set out this privacy notice describing the personal data that we might process about you, why we process it, where we might get your personal data from, and how we handle it. If cookies are your particular interest, you will find our separate cookie notice here. This notice also sets out how you can engage with us and how you can contact the Data Protection Commission, if you have any concerns about your personal data.

Who We Are and How to Contact Us

Our Data Processing Activities

CRIF Vision-net Ltd ("We") processes personal data both as a Data Controller, for our own purposes, and as a Data Processor on behalf of other entities.

1: Data Controller Activities

Provision of Services

CRIF VisionNet Limited is an aggregator of business information in order to provide services to those striving to fulfil compliance requirements, reduce business risk and make informed business decisions. It does so through its vision-net.ie and solocheck.ie websites.

We provide information services, consumer reporting and cyber risk solutions to a broad range of clients, particularly in the financial services sectors (including insurance companies), which allow them to, amongst other things:

• Understand the individuals running limited companies, Friendly Societies and owners of registered business names in order to manage the risk of dealing with them (for example for Anti-Money Laundering and 'Know Your Customer' purposes which are regulatory requirements on companies offering certain services)
• Ascertain the financial and corporate histories of individuals with whom they have engaged
• Understand who owns registered properties

For many of these services, the personal data that we process is provided to us by third parties, rather than directly by you, the data subject.

Running Our Business

In the normal course of running our business we process the personal data of employees of our clients, suppliers and other third parties. This includes business contact details such as names, email addresses and phone numbers which may have been provided to us indirectly by your employer or our business partners rather than directly by you. These entities should provide their employees and associates with an appropriate information notice to cover how we process their data. In addition, we process personal data of our own employees, in which role we are a joint Data Controller with our parent company CRIF SpA, via M. Fantin, 1-3, 40131 Bologna, Italy.

Promoting Our Services

Finally, we process personal data of persons to whom we wish to promote our services. This will include business contact data which we may have collected directly from you either in the course of provisioning you for our services, or from this website or an industry information service.

2: Data Processor Activities

We act as a Data Processor in the provision of a number of services and in these roles, we process the data provided to us by the respective Data Controllers, and act solely on the instructions of the Data Controller:

• For financial services companies who wish us to check nominated individuals which they need to screen for sanctions and other regulations to which they are subject.
• Providing a gateway that can simultaneously check the Central Credit Register and the Irish Credit Bureau's databases.
• Providing identity verification services (IDVerify) for our clients and providing storage for related documentation in a service we call DigitalHub.
• Providing access to an Open Banking solution (NEOS) that analyses a client's payment transaction data for credit evaluation purposes.