Privacy Policy

 

Last updated: January 2026

Sorato (“we”, “us”, “our”) operates the website sorato.io.
We provide two lines of services: Sorato Relocation and Sorato Digital.

This Privacy Policy explains:

  • What personal data we collect

  • Why we collect it

  • How we store and protect it

  • Who we share it with

  • Your rights and choices

We comply with applicable data protection laws including:

  • GDPR (EU) if you are an EU citizen or resident

  • Morocco Law 09-08 regulating personal data protection

If you have questions, contact: calina@sorato.io

1 — Data Processing for Sorato Relocation Services

Sorato Relocation Services  assists individuals and families with immigration, visa, and settlement services.

1.1. Data We Collect

We may collect and process:

Identity documents

  • Passport, National ID, Residence cards

  • Birth certificates

  • Civil status records

Personal information

  • Full name

  • Date/place of birth

  • Nationality

  • Marital status

  • Occupation

Contact information

  • Email address

  • Phone number

  • Residential address

Immigration documentation

  • Visa applications

  • Letters of invitation

  • Consular forms

  • Employment or school documents

  • Health certificates (if required for immigration)

  • Police records / criminal background checks (when required by authorities)

Financial / Administrative documents

  • Bank statements (only if required by consulate)

  • Tax or social security documents (if required)

We only request documents when required for immigration or legal processes.

We do not collect biometric data beyond what is present in your documents.

1.2. How We Use This Data

We use relocation data to:

  • Prepare immigration and visa files

  • Communicate with consulates, embassies, or government authorities

  • Provide settlement support (housing, utilities, schools)

  • Communicate with you regarding your case

  • Maintain internal records as required by law

1.3. Legal Basis

Depending on your situation, processing is based on:

  • Performance of a contract (service agreement)

  • Legal obligation (consular or governmental requirements)

  • Consent (when uploading documents)

  • Legitimate interest (internal verification and service improvement)

1.4. Sharing of Data

We may share relocation data only with:

  • Consulates / embassies / immigration authorities

  • Legal representatives or notaries (if you instruct us to)

  • Service providers necessary to deliver the service (e.g., certified translators)

We do not sell or rent your data.

1.5. Retention

We keep relocation files for the minimum necessary period, typically:

  • 12 months after case closure, unless legal retention is required.

  • You may request earlier deletion unless legal obligations prevent it.

1.6. Storage & Security

We store documents digitally using encrypted storage.

Paper copies are secured and destroyed after digitization and/or submission.

2. Data Processing for Sorato Digital

Sorato Digital provides operational consulting to e-commerce merchants (B2B).

2.1. Data We Collect

We may collect:

Business information

  • Company name

  • Business category

  • Website / Social media

Contact details

  • Name

  • Work email

  • Work phone/WhatsApp

Operational information (with consent)

  • Courier usage

  • COD processes

  • Returns processes

  • Customer support practices

Technical analytics

  • Cookies (optional)

  • Page visits

  • Device/browser type

We do not collect personal identity documents for Sorato Digital.

2.2. How We Use This Data

We use digital data to:

  • Communicate with clients

  • Understand operational workflows

  • Conduct audits and prepare reports

  • Provide recommendations and deliverables

  • Improve our services

  • Manage invoicing and CRM

2.3. Legal Basis

Processing is based on:

  • Performance of a contract (when working together)

  • Legitimate interest (business communication)

  • Consent (newsletter, cookies, optional forms)

2.4. Sharing of Data

We may share B2B data with:

  • Contractors or specialists working under confidentiality

  • Software tools for CRM or email management (e.g., HubSpot, Notion, etc.)

We do not sell or rent business data.

2.5. Retention

B2B data is retained for:

  • Up to 24 months after last contact, or

  • Until you request deletion

3. Cookies & Analytics

Our website may use:

  • Basic performance cookies

  • Analytics tools (e.g., Google Analytics)

You will be able to:

  • Accept all cookies

  • Reject non-essential cookies

Essential cookies may run for site functioning.

4. International Transfers

If you are in the EU, your data may be transferred outside the EU.

We ensure safeguards through:

  • Standard contractual clauses

  • Encryption

  • Reputable cloud providers

5. Your rights

Depending on your location, you may have rights to:

  • Access your data

  • Correct your data

  • Request deletion

  • Restrict processing

  • Withdraw consent

  • Request a copy (data portability)

To exercise these rights, contact: calina@sorato.io

6. Children’s Data

Sorato does not knowingly process children’s data unless required for relocation services (e.g., dependents in visa cases), and only with parental consent.

Sorato Digital does not target or serve minors.

7. Updates to this Policy  

We may update this policy to reflect legal or service changes.
Changes will be dated at the top of the page.

8 Contact

If you have any questions about this Privacy Policy or how your data is handled, please contact us at:
Sorato International Group
Email: calina@sorato.io
Phone: +212 06 31 39 60 93