The system will help simplify border controls and visa issuance, prevent abuse of the visa arrangement, combat identity theft, increase security and determine which country is responsible for processing asylum applications.
If you would like further information about VIS, you can read more on the European Commission's website (external website).
Regulations:
Section 102-102f of the Immigration Act §§ 102-102f [in Norwegian only] (external website)
-
What personal information is registered about you in VIS?
The following personal data about you will be registered in VIS:
- Alphanumeric data about you as an applicant and about the visa you have applied for, and whether the application has been granted, rejected, annulled, withdrawn or extended.
- A photograph of you
- Your fingerprint
- Reference to previous applications, and to others with whom you are travelling in a group.
Regulations:
Article 5 of the VIS Regulation (external website)
Section 102b of the Immigration Act [in Norwegian only] (external website)
-
How long will the information about you be stored in VIS?
The information about you may be stored in VIS for a maximum period of five years.
The five-year period is calculated based on the following criteria:
- The date of expiry of the visa, if a visa has been issued
- The new date of expiry of the visa, if the visa has been extended
- The date of creation of the case file in VIS, if the application has been withdrawn, closed or dropped
- The date of the decision, if the visa has been rejected, annulled, shortened or revoked.
Regulations:
Article 23 of the VIS Regulation (external website)
Section 102c of the Immigration Act [in Norwegian only] (external website)
-
Who has access to your information in VIS?
Visa authorities have access to the information when processing visa applications.
Border control straff and the police have access to the information when they need to check someone's identity, check whether a visa is genuine or check whether someone meets the requirements for entering, staying in or residing in one of the Schengen countries.
Asylum authorities have access to the information when they need to determine which EU/EEA country is responsible for processing an asylum application.
Other national authorities and Europol may request access to the information in special circumstances in order to prevent, detect and investigate terrorism and serious criminal offences.
Regulations:
Article 3 of the VIS Regulation (external website)
Article 6 of the VIS Regulation (external website)
Articles 15-22 of the VIS Regulation (external website)
Rights as registered in VIS
-
Right to access personal data in VIS
You may ask what personal data we have registered about you in VIS. You also have the right to know which Schengen country has provided or registered the information.
To request access, you may fill in and submit this form:
Request for access to information in the Visa Information System (VIS) (pdf, 591 kB)
Send the form together with a copy of a valid ID (e.g. a passport) to UDI by mail or email:
Norwegian Directorate of Immigration
P.O. Box 2098 Vika
NO-0125 Oslo
NorwayE-mail: visumservice@udi.no
Requesting access is free of charge.
Regulations:
Article 38 of the VIS Regulation (external website)
Section 102f of the Immigration Act [in Norwegian only] (external website)
-
Right to correction of personal data in VIS
If you discover that any of the personal data we have registered about you is incorrect or incomplete, you have the right to have it corrected or updated.
You may send us a letter requesting that we correct the personal information about you.
Send the letter to:
Norwegian Directorate of Immigration
P.O. Box 2098 Vika
NO-0125 Oslo
NorwayRequesting a correction is free of charge.
Regulations:
Article 16 of the General Data Protection Regulation (external website)
Article 38 of the VIS Regulation (external website)
Section 102f of the Immigration Act [in Norwegian only] (external website)
-
Right to deletion of personal data in VIS
If you believe that the personal data we have registered about you is incorrect or has been processed unlawfully, you have the right to have your data deleted.
However, there are several exceptions to the right to deletion. There are several reasons why your data is necessary to process.
The right to have personal data deleted does not apply if the processing is necessary for
- compliance with a legal obligation,
- the performance of a task in the public interest,
- the exercise of official authority,
- the establishment, exercise or defence of legal claims, or
- archiving purposes in the public interest, scientific or historical research purposes or statistical purposes
You may send us a letter requesting that we delete the data about you.
Send the letter to:
Norwegian Directorate of Immigration
P.O. Box 2098 Vika
NO-0125 Oslo
NorwayRequesting deletion is free of charge.
Regulations:
Article 17 of the General Data Protection Regulation (external website)
Article 38 of the VIS Regulation (external website)
Section 102f of the Immigration Act [in Norwegian only] (external website)
-
How long does it take to get a response to your request for access, correction or deletion?
As a general rule, UDI will process your request no later than one month after we have received it.
If your request is very complicated, the deadline may be extended by up to two months.
UDI will notify you and provide the reasons for the delay if it takes longer than one month.
You will receive the reply to your request or the reasons for the delay via Digipost. If you do not have Digipost, you will receive it by regular letter post.
Regulations:
Article 12 of the General Data Protection Regulation (external website)
-
Right of appeal
If your request for access, correction or deletion has been rejected, and you believe that UDI does not process your personal data in the manner required by the regulations, you may appeal to the Norwegian Data Protection Authority or take legal action.
How to get in touch:
Regulations:
Article 77 of the General Data Protection Regulation (external website)
Article 79 of the General Data Protection Regulation (external website)
-
Claim compensation
You are entitled to compensation if you have suffered damage as a result of personal data being used or registered in breach of the rules for processing data in VIS.
If you believe that you may be entitled to compensation, the case and claim for compensation must be brought before a court.
How to get in touch:
Regulations:
Article 82 of the General Data Protection Regulation (external website)