Tomato Visa
Tomato Visa

Privacy Policy

Last updated: April 2025

1. Introduction

Tomato Visa (“we”, “us”, or “our”) is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, who we share it with, and what rights you have. By using our Service you agree to the practices described in this Policy.

2. Data We Collect

Information you provide directly:

  • Visa portal credentials — your username/email and password for the US visa appointment scheduling website, and your three security question answers. These are required for our automated system to log into the scheduling portal on your behalf.
  • Contact information — your email address, used to send you appointment confirmations and service updates.
  • Appointment preferences — preferred embassy city, visa type, desired appointment date range, and group size.
Information collected automatically:
  • IP address — used for rate limiting and security monitoring.
  • Usage logs — API request logs, error events, and system events, retained for up to 90 days.
Payment information:
  • Payment is processed by Stripe. We never see or store your full credit card number. We receive a Stripe payment intent ID and payment status. See Stripe's Privacy Policy.

3. How We Use Your Data

We use your information solely to:

  • Log into your visa scheduling portal and book appointments on your behalf.
  • Send you email notifications about your appointment status.
  • Process payments and handle refund requests.
  • Prevent fraud and enforce our Terms of Service.
  • Comply with applicable legal obligations.
We do not use your data for advertising, marketing to third parties, or any purpose unrelated to operating the Service.

4. Third-Party Service Providers

We share your data with trusted third parties only as necessary to operate the Service:

  • Amazon Web Services (AWS) — cloud infrastructure for data storage (DynamoDB) and computing. Data is stored in the US-West-2 (Oregon) region. AWS is SOC 2 / ISO 27001 certified.
  • Stripe — payment processing. Stripe is PCI DSS Level 1 certified.
  • 2Captcha — CAPTCHA solving service. When the visa scheduling website presents an image CAPTCHA during automated login, a screenshot of that CAPTCHA image (not your full screen or any personal data) is sent to 2Captcha for resolution. No credentials or personal identifying information are transmitted. See 2Captcha's Privacy Policy.
We do not sell your data. We do not share it with any parties other than those listed above.

5. Credential Storage and Security

Your visa portal credentials (password and security answers) are stored in encrypted form in our database. We use industry-standard encryption and access controls. However, no system is 100% secure. You provide credentials at your own risk, and you are encouraged to change your visa portal password after your appointment is secured.

Access to stored credentials is strictly limited to the automated booking system and is not accessible to human employees except in the case of a verified security incident investigation.

6. Data Retention

  • Credentials and appointment data — retained for 30 days after your order is completed (appointment booked or refunded), then permanently deleted.
  • Payment records — payment intent IDs retained for 7 years as required by financial regulations.
  • Server logs — retained for 90 days, then purged.

7. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access — request a copy of the personal data we hold about you.
  • Deletion — request that we delete your data. We will comply unless retention is required by law.
  • Correction — request correction of inaccurate data.
  • Portability — receive your data in a machine-readable format.
  • Opt-out of sale — we do not sell your data, so this right is automatically honored.
To exercise any of these rights, contact us at support@tomatovisa.io. We will respond within 30 days.

8. Cookies

We use only strictly necessary cookies (session storage for payment state). We do not use tracking, advertising, or analytics cookies. No cookie consent banner is required as we do not use non-essential cookies.

9. Children's Privacy

The Service is not directed to individuals under 18 years of age. We do not knowingly collect data from minors. If you believe a minor has provided us with personal data, contact us immediately at support@tomatovisa.io.

10. International Data Transfers

Our servers are located in the United States. If you access the Service from outside the US, your information will be transferred to and processed in the US. By using the Service, you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the “Last updated” date. Continued use of the Service after changes constitutes acceptance of the revised Policy.

12. Contact Us

For privacy-related questions or to exercise your rights, contact: support@tomatovisa.io.