VisaAgent
Legal & Compliance

Privacy Policy

Effective Date: March 12, 2026

1. Introduction

Welcome to VisaAgent ("we," "our," "us"). We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our AI-powered visa and immigration platform (the "Service").

VisaAgent is based in Ireland, with current product focus on Ireland and UK immigration routes, and provides services worldwide. This policy is designed to comply with the EU General Data Protection Regulation (EU GDPR), UK GDPR, and the Irish Data Protection Act 2018.

2. Information We Collect

We may collect and process the following data about you:

  • Identity & Contact Data: Name, email address, password (encrypted), and origin country.
  • Immigration Data: Information regarding your visa history, employment status, family status, and specific application details required to provide accurate AI guidance.
  • Technical Data: IP address, browser type, time zone setting, operating system, and platform.
  • Usage Data: Information about how you use our website and AI chat services.

3. How We Use Your Data

Under the GDPR, we must have a lawful basis to process your personal data. We rely on:

  • Contractual Necessity: To register your account, provide the AI visa guidance services, and manage our relationship with you.
  • Consent: When you check the GDPR consent boxes during registration, allowing us to process sensitive immigration-related information.
  • Legitimate Interests: To improve our AI models, enhance platform security, and analyze user trends (data is anonymized where possible).

AI Processing and EU AI Act Status (As of March 12, 2026)

  • The EU AI Act entered into force on August 1, 2024 and applies in phases.
  • By March 12, 2026, initial obligations are already in force, including rules on prohibited AI practices and AI literacy.
  • Additional obligations for high-risk systems apply from August 2, 2026.
  • VisaAgent provides informational guidance only and does not make automated decisions with legal or similarly significant effects for visa outcomes.
  • We do not use your personal immigration data to train public foundation models.

4. Data Storage and International Transfers

Your data is stored securely in the EU Region (eu-west-1) via our cloud provider (Supabase), ensuring compliance with strict European data localization standards.

If data is transferred outside the EEA, we ensure a similar degree of protection is afforded to it by using Standard Contractual Clauses (SCCs) or by relying on an adequacy decision from the European Commission.

5. Data Retention

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. Upon account deletion, all personal immigration data and uploaded documents are permanently erased from our active databases within 30 days.

6. Your Legal Rights

Under applicable data protection law, including EU GDPR where relevant, you have the right to:

  • Request access to your personal data (commonly known as a "data subject access request").
  • Request correction of the personal data that we hold about you.
  • Request erasure of your personal data ("Right to be Forgotten").
  • Object to processing of your personal data where we are relying on a legitimate interest.
  • Request restriction of processing of your personal data.
  • Request data portability to yourself or a third party.
  • Withdraw consent at any time where we are relying on consent to process your personal data.

7. Cookies and Similar Technologies

We use strictly necessary cookies for core functionality and session security. Non-essential analytics scripts are loaded only after explicit consent.

You can review categories and update your choices anytime using the Cookie settings control on the site. For full details, see our Cookie Policy.

8. Security Measures

VisaAgent employs enterprise-grade security, including strict Row Level Security (RLS) policies on our PostgreSQL databases, encryption in transit (TLS 1.3), and encrypted passwords to prevent unauthorized access or disclosure of your sensitive immigration data.

9. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your legal rights, please contact our Data Protection Officer at:

privacy@visaagent.ai

You also have the right to make a complaint at any time to Ireland's Data Protection Commission (DPC) at www.dataprotection.ie.

Cookies and tracking choices

We use strictly necessary cookies for login and security. Analytics and marketing cookies are optional and load only after your consent.

Read details in our Cookie Policy and Privacy Policy.

Strictly necessary cookies

Required for core site functionality.

Always on

Analytics cookies

Help us improve content and conversion journeys.