logo xid
HomeWhy XID?KeeperCleverClever}AIContact

PRIVACY NOTICE

XID - Digital Services, S.A. de C.V.

I. IDENTITY AND ADDRESS OF THE DATA CONTROLLER.

XID – Digital Services, S.A. de C.V. (here in after “XID – Digital Services”), with address at Insurgentes Sur No. 318, Colonia Roma Norte, Alcaldía Cuauhtémoc, Mexico City, C.P. 06700, is the Data Controller of the personal data provided. This Comprehensive Privacy Notice is made available to you so that you are informed about how we collect, use, store, transfer, and generally process your personal data in accordance with the principles of lawfulness, consent, information, quality, purpose, loyalty, proportionality, and responsibility, as well as the duties of security and confidentiality, pursuant to the Federal Law on the Protection of Personal Data Held by Private Parties (LFPDPPP) and other applicable regulations.

XID – Digital Services will collect the personal data to be processed; therefore, the information you provide must be truthful and complete. The Data Subject shall always be responsible for the accuracy of the provided data.

II. PERSONAL DATA AND PURPOSES FOR WHICH THEY ARE COLLECTED.

To fulfill the purposes set out in this Privacy Notice, XID – Digital Services may collect and process your personal data under the following categories:

CategoryPrimary PurposesSecondary Purposes
Identification/contact data: first name, last name or company name, personal email, location, phone number
  • Identification of individuals or representatives of legal entities.
  • Conduct interviews and/or technical or job skill assessments.
  • Evaluate and manage your application for potential vacancies within the organization.
  • Fulfill obligations arising from a potential hiring process.
  • Create candidate records and databases in accordance with internal recruitment and selection policies.
  • Respond to your inquiries and comments, stay in contact with you, or establish a legal relationship.
  • Verify your identity according to the company’s talent and marketing procedures.
  • Conduct surveys, investigations, and follow-ups related to your complaints or claims.
  • Contact you for any matter related to our services or this Privacy Notice.
  • For potential future contact.
  • To inform you of new product launches or changes to products, goods, services, promotions, and/or offers based on your interests, including communications via email, phone calls, SMS, and other physical and/or electronic means.
  • Send notifications about activities and events.
  • Send advertising and marketing-related communications, including telemarketing.
  • Develop studies and/or programs necessary to understand market habits.
  • Conduct periodic evaluations of our products and services to improve their quality.
  • Request additional data to complete a transaction.
  • Improve our products, services, and advertising.
  • Improve the relevance of the results provided by our services.
  • Keep your information on record for consideration in future job openings.
  • Send communications about job opportunities within the organization.
Job data: position to be filled.
  • Evaluate and manage your application for potential vacancies within the organization.
  • Fulfill obligations arising from a potential hiring process.
  • Create candidate records and databases in accordance with internal recruitment and selection policies.
Billing data: Tax ID (RFC), tax address, use of Tax Situation Certificate, and related information required for tax compliance.
  • For compliance with tax obligations (32-D).
Browsing data: cookies
  • Enable the website’s technical functionality and provide a personalized browsing experience.
  • Monitor and analyze usage patterns, traffic, and browsing behavior to improve our content, products, services, and features.
  • Generate statistics, market research, and analysis for internal improvement and business decision-making.

The personal data we collect must be provided directly by the Data Subject or by someone authorized to represent a legal entity, or through the electronic and authentication means provided by XID – Digital Services, subject to express consent for the processing of such personal data.

SENSITIVE PERSONAL DATA

XID – Digital Services does not collect or process sensitive personal data.

III. Options and means offered by the data controller to limit the use or disclosure of data

If you do not wish your Personal Data to be used for the aforementioned secondary purposes, please contact us via email at legal@xid.xyz. If we do not receive a request within five days after making this notice available, we will assume that you have consented to the use of your Personal Data for such purposes.

The Data Subject may revoke consent for the processing of their Personal Data, with no retroactive effect, in all cases where such revocation does not prevent compliance with obligations arising from a current legal relationship. The revocation procedure shall follow the same steps outlined in the preceding section.

IV. TRANSFER OF PERSONAL DATA

XID – Digital Services will not transfer Personal Data for the purposes stated above, except when required by a competent authority, based on legal grounds provided under articles 9 and 36 of the LFPDPPP.

V. RIGHTS REGARDING YOUR PERSONAL DATA

You or your legal representative may exercise your ARCO rights and/or revoke your consent for the processing of your Personal Data, unless otherwise stated in the Law. To understand the procedures and requirements, please contact our Data Protection Department via email: legal@xid.xyz. Your request must include the following:

  • Full name and address or other means to communicate the response, along with official documents to prove your identity or legal representation;
  • Any other document that helps locate the Personal Data;
  • A clear and precise description of the Personal Data and the rights you wish to exercise. This can be included in the email body or attached as a signed document.

XID – Digital Services will respond to the request unless an exception under the Law applies and the applicant meets the requirements of Article 29.

Once submitted, XID – Digital Services will respond within 20 business days. If the request is valid, it will be fulfilled within 15 business days from the date the response is communicated. If information is incorrect or insufficient, or lacks required documentation, we will request clarification within 5 business days. You will have 10 business days to respond, or the request will be considered not submitted.

The Data Subject is responsible for keeping their Personal Data updated. The Data Subject guarantees the accuracy, validity, and authenticity of the data provided and agrees to notify any changes.

If your ARCO request is to access your Personal Data, XID – Digital Services will provide copies and/or electronic documents. Consent can also be revoked through the procedures mentioned above.

XID – Digital Services may deny the exercise of ARCO rights in cases provided by Articles 25 and 33 of the LFPDPPP.

VI. CHANGES TO THE PRIVACY NOTICE

XID – Digital Services may inform data subjects at any time about changes or updates to this Privacy Notice. Such changes will be communicated via our website www.xid.xyz, under the Privacy Notice section.

It is important that you check for updates to this Privacy Notice regularly. By continuing to use our services after updates are published, you accept the new terms.

VII. CONTACT

For any clarification regarding the processing of your Personal Data or your rights as a Data Subject, please consult our Privacy Notice at: www.xid.xyz

Our Data Protection Department is also available to provide additional information or address questions regarding privacy and personal data protection. You may contact us via email at www.xid.xyz during business hours from Monday to Friday, 09:00 to 18:00.

VIII. COMPLAINTS TO THE COMPETENT AUTHORITY

If you believe your right to personal data protection has been violated, or if you feel your complaint was not properly handled, you may contact the Secretariat of Anti-Corruption and Good Government to exercise your rights. For more information, visit: https://www.gob.mx/buengobierno/documentos/proteccion-de-datos-personales-nuevo

Effective date:

August 01, 2025. Mexico City.