Privacy Policy

I. IDENTIFICATION OF THE RESPONSIBLE

Infosyst de México S.A de CV, hace de su conocimiento que sus datos personales recabados, que se recaben o se generen con motivo de la relación jurídica que se tenga celebrada, o que en su caso, se celebre, se verificará tratamiento sobre los mismos de acuerdo con las siguientes categorías:

II. PERSONAL DATA COLLECTED

CATEGORIES OF PERSONAL DATA:

• Asset and financial data.
• Identification data.
• Physical, fingerprint, calligraphic, ocular and biometric image data.
• Employment data, occupation and hobbies.
• Academic data.
• Transit and immigration data.
• Data on administrative procedures followed in the form of trials and/or jurisdictional procedures.

CATEGORIES OF SENSITIVE PERSONAL DATA:

• Health data.
• Physical characteristics.
• Personal habits.

III. MEANS OF OBTAINING PERSONAL DATA

The Data indicated according to the Categories and subcategories mentioned above, are obtained:

1. Directly, through any of our offices and/or branches through officials and employees authorized to do so, through remote means, whether electronic or physical, through our website, email address or our contact center. telephone.
2. Indirectly, through transfers that are made through authorized natural or legal persons, through a publicly accessible source, and in general, that have been obtained by virtue of having been generated due to the legal relationship that we have entered into. , or that, if applicable, is celebrated.

IV. PURPOSES

Likewise, the aforementioned Personal Data will be processed for all purposes linked to the aforementioned legal relationship and the obligations derived from it. Additionally and specifically, depending on the type of owner, the purposes will also be:

Visitantes en general, por razones de seguridad y vigilancia: Cuando sea necesario para protección de los bienes muebles e inmuebles donde reside el domicilio y las oficinas del responsable, así como para proteger también a las personas y sus pertenencias, cuando acceden a dichas oficinas.

Recursos Humanos (Candidatos, empleados y ex empleados) Se utilizarán para todos los fines vinculados con la relación laboral, en especial para selección, para verificar referencias de empleos anteriores, reclutamiento, bolsa de trabajo, capacitación, evaluación y medición de habilidades y competencias, así como definición de acciones de desarrollo, y el pago de prestaciones laborales.

Clientes (Proponentes, contratantes, asegurados, beneficiarios y proveedores de recursos). Se utilizarán para todos los fines relacionados con el cumplimiento de nuestras obligaciones de conformidad con lo establecido en la Ley sobre el Contrato de Seguro, para evaluar su solicitud de seguro, suscripción, emisión, tramitación, investigación, verificación, validación y confirmación de los datos para la cotización y ofrecimiento de programas de aseguramiento previamente solicitados; del mismo modo, dar trámite a sus reclamaciones de siniestros derivados de dichos programas; cobrar, administrar, mantener o renovar la póliza de seguro, para estudios estadísticos, cuyo tratamiento podrá ser de manera indistinta mediante sus propios medios y recursos; así como, remisión de dichos datos a otras Instituciones de Seguros o encargados, con el fin de que estén en posibilidad de evaluar el riesgo de cualquier propuesta de aseguramiento o bien calificar la procedencia del beneficio solicitado en caso de siniestro, o cualquier derecho sobre el servicio contratado.

V. SECONDARY PURPOSES OF THE TREATMENT

Likewise, the data collected will have purposes that do not give rise to the legal relationship "Secondary Purposes"), which are made up of: the offer and promotion of goods, products and services, as well as commercial prospecting, in which case said data will be deemed accepted. treatment until you proceed to inform us otherwise through the revocation of consent.

If you do not agree to the processing of your data for secondary purposes, you may express your refusal by following any of the following mechanisms:

• If you provide your data personally; in your own handwriting, indicating in the format provided at that time, that you do not agree to said treatment.
• If you provide your data directly, following the mechanisms indicated in the contact methods themselves.
• If you provide your data indirectly, through the email privacidad@infosyst.mx through which you have five days from the consultation of this notice, so that, if applicable, the owner expresses his or her refusal to process the data. or the aforementioned Secondary Purposes, leaving aside the exercise of your rights of access, rectification, cancellation and opposition, providing the information requested in section VII of this notice.

VI. SAW. TRANSFERS OF PERSONAL DATA

Likewise, you acknowledge the transfer of your data that may be carried out, if applicable: to entities that are directly or indirectly part of Infosyst SA de CV, its subsidiaries and affiliates; as well as to people and entities other than the above, of those data that derive from the legal relationship and that are necessary or give rise to it, specifically that are part of the following sectors:

A) Private Entities:

A.1 Financieras, Aseguradoras, Afianzadoras, profesionales médicos, hospitales, laboratorios, farmacias, empresas de asistencia y asesoría jurídica; asociaciones gremiales y de fines estadísticos, cuya finalidad consiste en dar cabal cumplimiento a los servicios contratados por los clientes, así como seleccionar los riesgos o bien verificar la procedencia de una reclamación derivada de un siniestro.

B) Public Sector Entities:

B.1 Autoridades financieras, mexicanas y extranjeras, con la finalidad de dar cumplimiento a nuestras obligaciones derivadas de leyes o tratados internacionales como institución de seguros, obligaciones tributarias, así como para el cumplimiento de notificaciones o requerimientos oficiales.

B.2 Autoridades judiciales, mexicanas y extranjeras, con la finalidad de dar cumplimiento a notificaciones, requerimientos u oficios de carácter judicial; IMSS, con la finalidad de dar cumplimiento a obligaciones contenidas en la legislación de seguridad social.

Likewise, you acknowledge that, under no circumstances or circumstances, your sensitive, patrimonial or financial data, which do not derive from the legal relationship or which are not necessary or do not give rise to it, are shared. In addition to the above, in the event that treatment is required for one or more Secondary Purposes not reported in this Notice, the same will be communicated to you by modifying the privacy notice herein, which will be placed at your disposal. available again in the appropriate time and manner.

Non-public personal information delivered in our capacity as Controller is treated with due confidentiality and will not be sold or transferred to third parties.

If any transfer is made that requires your express consent, it will be obtained.

VII. REQUEST FOR ACCESS, RECTIFICATION, CANCELLATION OR OPPOSITION OF PERSONAL DATA (ARCO RIGHTS) AND REVOCATION OF CONSENT.

The exercise of the rights of access, rectification, cancellation, opposition, and revocation of consent must be done in writing at the address mentioned in section I of this notice or, where appropriate, through the email address privacy@infosyst .com.mx, which is attended and managed by the Information Security area. You may proceed as indicated in the previous paragraph, through the following procedure:

1) Requirements:

1. Full name of the Owner.
2. Copy of document that proves your identity (valid voter ID, Passport, FM3), which you must attach to the application email.
3. Means to provide you with the response (home address or other means).
4. Clear and precise description of the personal data with respect to which you seek to exercise your ARCO rights.
5. ARCO right to exercise and detailed description of the request.

2) Deadlines:

1. You will be informed within a maximum of 5 business days after receiving the acceptance or denial of your request.
2. A response to your request will be provided within a maximum of 20 business days after receipt.
3. You will have a maximum of 5 business days after receiving a response to your request to cancel it.

3) Means of Response:

1. For rights of Rectification, Cancellation or Opposition
   1. By email.
   2. By mail to an address you provide us.
2. For Access rights:
   1. Physical delivery at commercial office upon identification of the Owner.

For your part, you can revoke consent by the following:

1) Requirements:

1. Full name of the Owner.
2. Copy of document that proves your identity (valid voter ID, Passport, FM3), which you must attach to the application email.
3. Means to provide you with the response (home address or other means).
4. Clear and precise description of the personal data with respect to which you seek to exercise revocation.

2) Deadlines:

1. You will be informed no later than 5 days after receiving the acceptance or denial of your request.
2. A response to your request will be provided within a maximum of 20 days after receipt.
3. You will have a maximum of 5 days after receiving a response to your request to cancel it.

3) Means of Response:

1. By email.
2. By mail to an address you provide us.

VIII. OPTIONS TO LIMIT THE USE OR DISCLOSURE OF YOUR PERSONAL DATA.

To limit the use and disclosure of your data, we will maintain policies, procedures and controls for the security and confidentiality of the information, which can be consulted on the page www.infosyst.com.mx/privacidad

Likewise, independently of the procedures for the exercise of the rights of access, rectification, cancellation and opposition, as well as the revocation of consent, you may limit the use and disclosure of your personal data, by registering your data in the Registry. Public of Users of Financial Services referred to in the Law for the Protection and Defense of Users of Financial Services, whose access link we put at your disposal www.condusef.gob.mx

Regarding the use of so-called "cookies", "web beacons" or other similar technologies, which through remote or local means, electronic, optical communication or other technology, which allow the collection of your personal data automatically and simultaneously At the time when you as the owner make contact with the indicated media, you are categorically informed that they are completely disabled in those media in which Infosyst SA de CV makes contact with you.

Likewise, the contracts with our internet providers establish a prohibition on the use of said technology to collect data automatically, as indicated in the previous paragraph.

IX. MODIFICATIONS TO THE PRIVACY NOTICE

This Notice, as well as its modifications, will be available to you on the page www.infosyst.com.mx/privacidadthrough communications posted in our offices and branches or informed through any means of communication that we have with you.

Finalmente, para el caso de haber proporcionado datos personales, sensibles, patrimoniales o financieros de otros titulares a través de su conducto, del mismo modo usted acepta y reconoce la obligación de hacerles de su conocimiento el presente Aviso de Privacidad a dichos titulares o bien indicar los lugares en donde se encuentra a su disposición el referido aviso, así como de informarles que ha proporcionado tales datos a Infosyst. En caso de ser aplicable, igualmente usted acepta y reconoce que estará obligado a proporcionar su propio aviso.