Please read this Privacy Notice carefully as it regulates how we will process your personal data (for example, its collection, use, disclosure, protection, and conservation) when using any of our services such as credit granting, and are valid for both the Co-Financiera website and mobile application ("Co-Financiera App" or "App"). This Privacy Notice provides information about your rights as the owner of such data. This Privacy Notice may be modified unilaterally by IPF without prior notification, so we recommend that you review it periodically, either on our website or in the Co-Financiera App.
This Privacy Notice applies to both the website and the Co-Financiera App and forms an integral part of the Terms and Conditions of use of the website and the App as well as the Credit Opening Agreement entered into between IPF and each of its clients. All terms that begin with a capital letter in this document are defined terms and shall have the same meaning as given to them in the aforementioned Terms and Conditions or in the Credit Opening Agreement and shall be applicable to both their singular and plural forms unless given a different meaning in this document.
In accordance with the Federal Law on Protection of Personal Data Held by Private Parties ("Data Protection Law") and its regulations, this Privacy Notice, whose content is consented to by using the website or Co-Financiera App and/or contracting IPF's services. This Privacy Notice is applicable in the United Mexican States and in the rest of the world to the extent that it does not contravene the provisions of the legislation of the State in which you reside. However, the collection, use, storage, processing, transfer, and protection of your personal data will be carried out in accordance with and in strict compliance with the provisions of the Data Protection Law.
Under no circumstances will IPF be responsible for the Privacy Policy of websites to which it refers through a banner (advertising piece) or link located within our website or Co-Financiera App.
The entity Responsible for collecting your personal data is IPF Digital México, S.A. de C.V., a company incorporated in the United Mexican States with address at Av. Insurgentes 1271-201 Col. Extremadura Insurgentes, C.P. 03740, Mexico City, phone number: (55)70-99-11-11, email: hello@Co-Financiera.mx or privacy@Co-Financiera.mx We have also appointed a data protection officer (DPO) who is responsible for monitoring that your data is processed securely. You can contact the DPO at email privacydad@Co-Financiera.mx
If you have any questions or requests regarding personal data, you can contact IPF at the phone number and email addresses indicated in the previous section.
IPF will only have access to the data that you voluntarily and directly provide to us through emails, calls, through the Co-Financiera App, or other digital contact means, including the use of the website or our official social networks or through any other electronic means.
For you to use our services, we need to process the following categories of personal data: Information that you provide us – you provide data in the credit application(s) or other forms that you have completed on the website or Co-Financiera App or through phone, email, or other means of communication. Additionally, we consult our internal databases based on previous agreements if they exist and we are authorized to legitimately store such data.
Based on the principle of storage limitation and in accordance with the Personal Data Protection Law, we store your data only for the time necessary to comply with the contractual obligations of our agreements or for the time required by applicable legislation. This means that when your data is no longer necessary, it will be made anonymous or deleted once our business relationship ends. Storage periods may vary depending on the products you have contracted with us.
We may disclose your data to other people under the following categories:
IPF Group We transmit your personal data within the IPF Group, for internal administrative purposes, provision of services in accordance with the provisions on data protection and to ensure that you can access your credit through the Co-Financiera App and website.
Partners - Providers We may share your information with some partners who help us provide services. We share the data only to the extent necessary. When applicable, we might share the following categories:
• Hosting providers to store your data securely.
• Technology providers to provide our services.
• Banks or financial institutions that provide financial services.
• Postal service, communication service providers, and call centers to send communications and provide customer service.
• Credit bureau for compliance with IPF's obligations as a responsible lender.
• Advertising partners and analysis providers to understand how you interact with our services and to send offers.
• Collection agencies to manage and collect debts related to our products.
• Companies that buy our portfolio.
• Other people related to the provision of services that allow us to provide you services.
In such cases, these companies/persons will be considered as Processor(s) or Controller(s) according to the definition established in the Data Protection Law and as applicable.
Authorities In some cases, we are legally obligated to disclose information to authorities. This is done only to comply with legally defined obligations.
We inform you that your personal data will be shared with the following companies for the purposes indicated below:
| Companies or individuals acting as information recipients | Nationality | Purpose of transfer |
|---|---|---|
| Provident México, S.A. de C.V. ("Provident") | Mexico | To allow the assessment of potential clients' solvency to offer them (subject to positive evaluation result and their policies) a credit product. |
| Trans Union de México, S.A. ("Credit Bureau") | Mexico | To comply with legal obligations with this company. |
| With IPF's controller, subsidiaries or affiliates, or any other IPF group company or with whom it has a legally permitted commercial agreement. In all cases, such entities must operate under the same processes and policies as IPF. | Mexico and outside Mexico | To provide you with the offered product or service. |
| When the transfer is necessary by virtue of an agreement entered into or to be entered into in your interest by IPF and a third party, including IPF providers that offer a product or service or that are necessary to offer you a service or product. Such third party(ies) will be Processor(s) or Controller(s) according to the Data Protection Law as applicable. For example (including but not limited to) the following: | Mexico and outside Mexico | --- |
| Vech Soluciones en Transporte S.A.P.I de C.V. | Mexico | To confirm, among other things, that the employment information you provided us is correct/real. We are using this tool to protect you and have an extra filter to ensure that it is you who is requesting the credit, and in this sense use an extra tool to reduce the number of identity theft cases occurring in Mexico. |
| Companies that buy our portfolio | Mexico and outside Mexico | In some cases, IPF may decide to sell its portfolio to focus its efforts on offering you better service. If this is the case, we will inform you who will be the person buying such portfolio and all important information in this regard. |
| Belvo | Mexico | To review certain information related to bank accounts. Such information (if applicable) would be provided by you directly to the provider and, if you authorize such provider, we will limit ourselves to confirming/using such information through such provider. This information serves, among other things, to make the disbursement to the correct account and avoid errors, for example, typographical ones. |
| When the transfer is necessary to maintain or comply with obligations derived from a legal obligation between IPF and you. In the other cases established in the Data Protection Law, for which your consent is not necessary. | Mexico and outside Mexico | --- |
We inform you that for the indicated transfers, if you do not express objection to such transfers, we will understand that consent has been granted. In any case, you have ARCO rights, the way in which such rights can be exercised is described in the following sections.
• We use your personal data to subscribe to the credit agreement or to carry out actions at your request before entering into the contract. The data is necessary for creating a legal relationship. If the required data is not provided, the credit agreement cannot be signed nor can our services be used.
• We use your data to ensure access to the website or Co-Financiera App.
• To provide you with the services you contract through the website or Co-Financiera App
• Before agreeing to the credit contract with us, you must fill out an application. Using the data you have shared with us in the application and with the data we collect from other sources, our system will make a credit decision and generate a proposal for you. The proposal will determine the terms of the credit agreement and with this we will generate a statistical analysis and credit risk management. Therefore, if you do not provide the required data in the application, we cannot present you with our credit proposal
• To manage and modify existing credit agreements, for example, modifying the credit limit, we will collect and use your data about your payment behavior.
• We will use your data to make collections.
• We will also send you communications and documents related to your credit agreement, using your contact information, either doing it directly or using postal and communication service providers.
• If you fail to comply with the financial obligations agreed in our credit agreement, we have the right to enforce these unfulfilled obligations, as well as to share any necessary information with our collection agencies to collect the amounts owed to us and act to the extent permitted by law. After a payment becomes due, we or our partners will send you reminders; if you do not respond to our reminders, we have the obligation to disclose such behavior to the Credit Bureau.
• We may contact you by email or phone, in which case we record the communication and keep the recordings. We use the recordings to verify transactions, investigations, and claims.
• We may also file or assign a claim regarding unfulfilled obligations and share information with our authorized debt collection service provider(s).
• We process your personal data to comply with our legal obligations defined in the Data Protection Law, consumer credit, consumer protection, money laundering prevention, and other applicable legislation. The mentioned purposes are necessary for our legal relationship. Failure to provide legally required data will not allow us (among others) to grant you the requested credit. We perform the following processes (among others): to know your credit behavior, we will consult the Credit Bureau, for which we will transfer your personal data to them. Such transfer of personal data is necessary for the provision of our services.
• To prevent money laundering and terrorist financing, we will collect personal information such as contact data, and due diligence information and documentation. We cross-check some of this data with certain databases (both public and private) and use the collected data to verify your identity and apply other due diligence measures required by law.
• We will use IP addresses in case illegal practices are carried out or a breach of this privacy notice and/or Terms and Conditions is detected or suspected.
• We have audit, tax, accounting obligations, etc. To comply with them, we disclose some data to financial advisors, auditors, and other service providers, provided they guarantee the confidentiality of your personal data and it is done to the extent permitted by law.
• To comply with the requirements of Mexican government institutions.
We may have to comply with other obligations arising from the law and process the necessary data to comply with such obligations. Such personal data will always be processed strictly for compliance with the legal obligation.
• We use your personal data for the following purposes that do not generate a legal relationship:
• To send you promotional messages related to our products and services.
• To contact you through any means such as telephone, text message, any instant messaging means, email, among others, in order to provide assistance and guidance for credit applications and any other service and/or procedure available to our clients.
• To manage systems and usage issues of the website or Co-Financiera App. We will use IP addresses to track your session or behavior on the website or Co-Financiera App in order to determine eligibility and compatibility for marketing campaigns and advertising analysis.
To process your usage data, preferences, and devices to develop new products and services and optimize existing products by trying to analyze how you interact with and use our services.
• For the creation of measurable solutions based on data mining integrated by various data sources and variables.
• To provide value-added services.
• If you do not meet the risk and credit solvency requirements established by us, your personal data may be sent to IPF Group entities so that they can study our clients' profiles for them to make a possible credit offer.
The purposes mentioned in this section are not necessary to maintain our legal relationship with you, but they are important to keep you informed about our services, as well as to monitor and improve their quality. Therefore, you have the right to object or revoke your authorization for us to stop using your personal data for these purposes, in accordance with the ARCO procedure indicated in the following sections.
• Occasionally, we may collect and process your data with your consent.
Your consent is voluntary and limited to specific purposes as defined in the consent. You can withdraw your consent at any time free of charge by modifying your profile preferences in the preferences section in the Co-Financiera App or by contacting our customer service. Please consider that if you withdraw your consent this will not affect the legality of the processing that was given to your personal data prior to withdrawing or modifying your consent.
If you wish to stop receiving messages related to marketing, advertising, and promotions, you can request it by sending an email to privacy@Co-Financiera.mx or calling the number: (55)70-99-11-11
In accordance with the provisions of the Data Protection Law and its Regulations, we guarantee the privacy of information and will limit its use, storage, and dissemination through proper physical or electronic protection to comply with the purposes established for the processing of personal data. The person designated by IPF to verify requests for the exercise of ARCO rights (access, rectification, cancellation, or opposition) is the Data Protection Officer (DPO), whom you can contact in case of any questions or requests regarding your personal data through the email and phone number mentioned above. All your personal data is processed in accordance with current and applicable legislation in Mexico. Therefore, we inform you that you have the right to access, rectify, cancel, or oppose the treatment we give to your personal data, as well as revoke the authorization granted for their treatment. You can exercise these rights by sending a request to the Data Protection Officer (DPO) at: privacy@Co-Financiera.mx. Your request (in free writing)* should contain at least the following information: • name and surnames, electronic or physical address to communicate the response to your request; • documents that prove your identity, or if applicable, your representation; • a clear description of the personal data over which you intend to exercise ARCO rights; and • any other document that facilitates the location of such personal data. *Or, you can request our specific format for exercising ARCO rights. Your request will be processed within the period established by the Data Protection Law, through the DPO and their team will inform you via email or by any other means you have provided the result of your request.
We use cookies on the website and Co-Financiera App, javascript, and other technologies through which it is possible to monitor your behavior as a user and track the places you have visited within the website and/or Co-Financiera App. Clarifying that a cookie cannot read data or information from your hard drive, nor read cookies created by other sites or web pages. The personal data we obtain through these tracking technologies are the following: customer identification data, data related to navigation within the website and/or Co-Financiera App. The purpose of tracking is to recognize you for access to privileges on the website and/or Co-Financiera App, as well as to track usage. Users who do not accept cookies from the website or Co-Financiera App might not have access to some of its sections. We use the data we obtain from these tracking technologies for the following: • Adjustment of website or Co-Financiera App functionality, based on the use of the site or App by its visitors; • Collection of visit statistics (number of visitors, time spent on page or App, etc.); • Remember your devices and settings during and between your visits; • Fix website or Co-Financiera App speed/security; • Review site usage and improve the quality of services provided; • Protect customer data by preventing fraudulent activities; • Adjusting displayed advertising information.
We keep this privacy notice under review and may modify it from time to time (mainly to comply with the law and data protection practices). Such modification and/or update will be made automatically on the website and/or in the Co-Financiera App and/or through an independent notification (for example, by email). Therefore, this privacy notice will be in effect indefinitely, until any modification, change, or update is made to it, and it is adjusted to the provisions of the Personal Data Law. You accept that when any modification to this Privacy Notice is notified through any of the means mentioned above, or when you continue using the website or the Co-Financiera App or contracting IPF's services and products, you accept and expressly submit to the modifications made, which will take full effect on the date of their publication on the website or the Co-Financiera App, except in those cases where, by provision of the Personal Data Law, your express consent is required.