How VisaEvo keeps your data secure
Immigration documents are sensitive. Here's exactly how VisaEvo stores, encrypts, and protects your information.
Key takeaways
- 01All data is encrypted in transit with TLS (HTTPS) and at rest with AES-256 (or equivalent) by our infrastructure providers.
- 02Your checklist and progress are stored locally in your browser by default; cloud backup is optional and opt-in.
- 03Row Level Security ensures users can only ever access their own data, and passwords are hashed — never stored in plain text.
- 04Payments run through Stripe (PCI DSS Level 1); VisaEvo never stores your full card number. We never sell your data.
Security controls
The specific measures that protect your account, documents, and payments.
Encryption in transit & at rest
Every connection uses TLS (HTTPS). Data stored by our infrastructure providers is encrypted at rest using AES-256 or equivalent.
Hashed passwords
Passwords are hashed using industry-standard algorithms. We never have access to your plain-text password.
Row Level Security
Database access is governed by Row Level Security policies, so you can only ever read and write your own data.
Local-first by default
Your checklist and progress live in your browser's IndexedDB storage. Nothing leaves your device unless you enable cloud backup.
Payments via Stripe
Card details are collected and processed directly by Stripe, which is PCI DSS Level 1 certified. We never store your full card number.
AI without training on your data
AI prompts are sent to Anthropic's API to generate responses. Anthropic does not use API inputs to train its models.
Restricted production access
Access to production systems is limited to what's necessary and is monitored. Technical logs are purged after up to 90 days.
No data selling
We do not sell or rent your personal data, and we never use your documents to train models or for advertising.
While we implement industry-standard security measures, no method of electronic storage or transmission is 100% secure, and we cannot guarantee absolute security.
Data protection & your rights
VisaEvo complies with the UK GDPR, EU GDPR, and the Data Protection Act 2018. For the full picture of what we collect, where it's stored, how long we keep it, and how to request deletion, see our GDPR & data protection page and our Privacy Policy. Security questions can be sent to privacy@visaevo.com.
Frequently asked questions
Common questions about how VisaEvo stores and protects your data.
Don't let a missing document delay your visa.
Be ready when you apply. Organise documents, check the financial requirement, and build checklists from gov.uk guidance.
- Free forever tier
- No credit card required
- Pay once, lifetime access
- 30-day money-back guarantee
VisaEvo is self-service software. We do not provide immigration advice. You are responsible for your own application decisions.