Legal
Privacy Policy
How myvisaflow.ai handles account data, Visa Pathway information, document metadata, and consent-based sharing decisions.
Last updated: May 2, 2026
Summary
- Data is collected to deliver requested preparation workflows and account features.
- Applicant sharing with agencies or professionals is consent-based and scope-limited.
- Security controls, logging, and retention rules are applied to protect platform operations and users.
- Data deletion requests are supported with verification and lawful retention boundaries.
1. Information we collect
myvisaflow.ai collects information required to provide account access, Visa Pathway preparation tools, support workflows, and payment records.
Collection scope depends on user actions, selected services, and sharing settings.
2. Account and contact information
Account-level data may include name, email, login credentials, role context, and communication preferences needed for account security and product delivery.
3. Intake answers and Visa Pathway data
Intake responses, destination preferences, preparation goals, and pathway-related context may be stored to generate roadmap and checklist outputs requested by users.
4. Uploaded documents and document metadata
Document uploads may include file metadata such as name, type, size, category, and review state to power the document tracker.
Access to uploaded content is controlled by account permissions and consent settings where sharing is enabled.
5. Generated reports and checklist data
Report content, checklist status, and preparation notes are stored to support continuity across sessions and delivery of user-requested outputs.
6. Payment metadata
Payment records may include transaction references, amount, product or service labels, timestamps, and status details needed for billing support and reconciliation.
Payment processor handling is governed by processor terms and applicable compliance obligations.
7. Agency/professional sharing only with consent
Applicant information is private by default and shared only under selected consent scope where product controls support that sharing mode.
Assignment or referral does not automatically grant full document access.
8. Audit logs and security events
Security and audit records may capture access events, sharing changes, support actions, and payment or account events used for platform integrity and incident review.
9. Cookies and analytics
Cookies or analytics tools may be used for session continuity, performance monitoring, and product improvement where implemented.
Where tracking tools are activated, details are updated in this policy and users can request clarification through support.
10. Data retention
Data is retained according to product operations, security needs, payment obligations, and legal requirements.
Retention periods may vary by data category and account state.
11. Data deletion
Users may request deletion or correction of account-related data. Some records may require retention for lawful, audit, fraud-prevention, security, or accounting purposes.
12. Security measures
myvisaflow.ai applies role-aware access controls, secure delivery practices, monitoring, and operational safeguards designed to reduce unauthorized access risks.
13. Third-party processors
Third-party providers may process limited data to support payments, communication delivery, infrastructure operations, or security monitoring.
Processor access is scoped to required service functions.
14. Children and minors
The platform is not directed to young children. If a minor's data is submitted, it should be managed by a responsible adult according to applicable law.
15. Contact
Privacy and data-handling questions can be submitted to support.
Support contact: wecare@myvisaflow.ai
If AI-assisted generation is used in selected features, it is limited to requested preparation outputs and does not constitute legal advice.