American Travel Agency← Home

Privacy Policy

Last updated: 13 May 2026

This Privacy Policy describes how American Travel Agency ("we", "us", "our") collects, uses, stores, shares and protects your personal information when you use our website, mobile applications (iOS and Android) and related services (collectively, the "Service").

1. Data we collect

  • Account data — name, email, phone number, password (hashed).
  • Identity & visa data — passport number, nationality, date of birth, photographs of identity documents, civil status, employment details and any information required by the destination country's embassy.
  • Application data — destination country, visa type, travel dates, supporting documents you upload (bank statements, invitation letters, etc.).
  • Payment data — amount, method (mobile money / cash / card), transaction reference, proof-of-payment uploads. Card details are processed by our payment provider; we do not store full card numbers.
  • Device & usage data — IP address, device model, operating system, app version, crash logs, in-app actions.
  • Communications — messages you send via WhatsApp, email, in-app chat or in person.

2. How we use your data

  • To create and manage your account and verify your identity.
  • To prepare, submit and track visa applications on your behalf.
  • To process payments and issue receipts.
  • To communicate with you about your application status and appointments.
  • To detect fraud, abuse and to comply with legal obligations.
  • To improve the Service (analytics, crash reports).

3. Legal basis

We process your data on the basis of (a) the contract between you and us to provide visa assistance, (b) your explicit consent for sensitive data such as identity documents, (c) our legitimate interests in operating and securing the Service, and (d) compliance with legal obligations.

4. Sharing

We share your data only with:

  • Embassies, consulates and visa application centres of your destination country.
  • Payment processors (e.g. mobile money operators, card processors) strictly to complete a payment you initiated.
  • Cloud and infrastructure providers that host the Service under data-processing agreements.
  • Authorities when required by law (court order, regulatory request).

We never sell your personal data and we do not share it for third-party advertising.

5. Storage & security

  • Documents are stored in private storage buckets and are accessed only via short-lived signed URLs.
  • All traffic is encrypted in transit (HTTPS/TLS).
  • Database access is protected by Row-Level Security: you can only access your own records.
  • Passwords are hashed; we never see your plain-text password.

6. Retention

We keep application and payment records for as long as required by tax, accounting and immigration regulations (typically up to 10 years). You can request earlier deletion of your account; see "Your rights" and our Account Deletion page.

7. Your rights

You may request access, correction, export or deletion of your personal data, withdraw consent, or object to processing. Contact us at support@americantravelagency.example.

8. Children

The Service is not directed at children under 13. Minors using our service for a visa application must be represented by a parent or legal guardian.

9. International transfers

Your data may be transferred to embassies and processors located outside your country of residence. We rely on contractual safeguards equivalent to those recognised by GDPR / standard contractual clauses.

10. Mobile app permissions

  • Camera & photos — to capture and upload identity documents.
  • Storage — to attach files to your application.
  • Notifications — to alert you about status changes and appointments.
  • Internet — required to use the Service.

11. Changes

We may update this policy. The "Last updated" date at the top reflects the latest revision. Material changes will be communicated in the app.

12. Contact

American Travel Agency

Email: support@americantravelagency.example
Phone: