Privacy Policy

1. Information We Collect

Information You Provide

• Account information: name, email address

• Immigration profile data: visa status, country of birth, employment, priority dates, case receipt numbers, dependents

• Chat messages with our AI assistant

• Payment information (processed by Stripe — we do not store card numbers)

Sensitive Personal Information

Under the CCPA as amended by AB 947, immigration and citizenship status are classified as Sensitive Personal Information. We collect and process this data solely to provide our immigration information service.

2. How We Use Your Information

• Provide and improve the service

• Generate personalized scenario evaluations

• Power AI-assisted informational chat

• Send visa bulletin change, processing time, and deadline notifications

• Process payments and comply with legal obligations

We do NOT sell personal information, share immigration data with USCIS/ICE, use your data for advertising, or train AI models on your chats.

3. Your Rights Under CCPA

• Know what personal information we collect and how it is used

• Delete your personal information (with exceptions)

• Correct inaccurate personal information

• Opt out of sale/sharing (we do not sell or share)

• Limit use of Sensitive Personal Information

• Non-discrimination for exercising privacy rights

Contact privacy@immio.ai or use in-app Settings. We respond within 45 days.

4. Data Security

All data encrypted in transit (TLS 1.3) and at rest (AES-256). Database hosted on Supabase (SOC 2 Type 2). Row-level security ensures users only access their own data.

5. Data Retention

• Account and immigration profile: while active; deleted within 30 days of closure

• Chat conversations: 12 months, then auto-deleted

• Payment records: as required by law (typically 7 years)

• Usage analytics: anonymized after 90 days

6. Third-Party Services

Supabase, Anthropic, Stripe, Resend, Sentry, Vercel.

7. Contact

privacy@immio.ai