Privacy Policy

Last updated: February 23, 2026

1. Who We Are

Impossible To Name ("Platform", "Service", "we", "us", or "our") operates impossibletoname.com and app.impossibletoname.com. We provide visa document preparation tools for individuals relocating to Europe. This Privacy Policy explains how we collect, use, protect, and share your personal information.

2. Information We Collect

Information You Provide Directly

Account Information: Email address, name, and authentication method (Google, Apple, or magic link)
Assessment Data: Citizenship, employment type, income range, family composition, and other eligibility-related answers
Wizard Data: Detailed personal information for form filling, including full name, date of birth, passport details, address, employer information, education history, and family details
Support Communications: Messages sent through our in-app support chat

Information Collected Automatically

Usage Data: Pages viewed, features used, time spent, and navigation patterns
Device Information: Browser type, operating system, screen resolution
Log Data: IP address, access times, referring URLs
Cookies: Session cookies, authentication tokens, and optional analytics cookies

Information We Never Collect

Bank account numbers or financial account credentials
Credit or debit card numbers (Stripe handles payment processing directly)
Tax return contents or payslip details
Biometric data or medical records
Social media passwords or private messages

3. How We Use Your Information

Legal Bases (GDPR)

Contract Performance: Processing your data to deliver the Service you purchased (document preparation, form filling, checklist management).
Consent: Marketing emails, optional partner referrals, and non-essential analytics cookies.
Legitimate Interest: For analytics, fraud prevention, and service improvement.

Specific Uses

Generate visa pathway recommendations based on your assessment
Pre-fill government PDF forms with your provided information
Create personalized document checklists and timelines
Process payments through Stripe
Send transactional emails (documents ready, reminders, renewal notices)
Connect you with relevant partner services at natural workflow touchpoints
Improve our Service based on aggregate usage patterns
Prevent fraud and ensure platform security

4. Data Classification and Security

We classify all data into three tiers with escalating protections:

Tier 1 — Standard Data (Stored in Database)

Full name, date of birth, citizenship, country of residence, passport country and type, addresses, employer details, income information, application pathway, consulate assignment, timeline targets, document checklist statuses, marital status, dependents count, and visa dates.

Tier 2 — Encrypted Data (AES-256-GCM)

Full passport numbers, NIE/NIF numbers, and any government-issued identifiers. These are encrypted at the application layer using AES-256-GCM encryption. Only masked versions (e.g., P******1234) are displayed in the user interface. Decryption occurs exclusively during PDF generation and the decrypted value is never logged or cached.

Tier 3 — Never Stored

Bank account numbers, card numbers, financial credentials, full employer tax IDs, payslip contents, bank statement contents, tax return contents, biometric data, and medical records. These are collected only in your browser for on-screen validation (such as income threshold checks) and are never sent to our servers. If a PDF form field requires Tier 3 data, we leave it blank with instructions for you to complete by hand.

5. How We Protect Your Data

Encryption: Data encrypted in transit (TLS/SSL) and at rest. Tier 2 fields use application-layer AES-256-GCM encryption.
Access Controls: Row-level security in our database ensures users can only access their own data.
Authentication: Passwordless authentication via Google OAuth, Apple OAuth, or email magic link.
Infrastructure: Hosted on Vercel (automatic HTTPS, DDoS protection) with Neon PostgreSQL (encrypted connections via SSL). Cloudflare provides DNS security and edge protection.
Rate Limiting: Arcjet middleware protects against brute force attacks, bot detection, and abuse.
Audit Logging: All sensitive data access events are logged and retained for 36 months.
Security Headers: Content Security Policy, X-Frame-Options, X-Content-Type-Options, and strict Referrer-Policy.

No system is 100% secure. In the event of a data breach affecting your information, we will notify you within 72 hours per GDPR requirements, explain what happened, advise you on protective steps, and report to relevant data protection authorities.

6. Data Sharing

We Do NOT Sell Your Data

We do not sell, rent, or trade your personal information to third parties.

Service Providers

We share data with the following service providers solely to operate the Platform:

Stripe: Payment processing (they receive payment details directly; we only receive confirmation)
Neon: Database hosting (encrypted at rest)
Vercel: Application hosting
Resend: Transactional email delivery
Cloudflare: DNS, CDN, and security services

Affiliate Partners

When you click an affiliate referral link, we may share that you clicked the link for commission tracking purposes. Partners only see what you provide directly to them. We never share your financial data, identity documents, or application information with affiliate partners.

Legal Requirements

We may disclose information if required by court orders, subpoenas, law enforcement requests, legal compliance obligations, or to protect rights and safety.

Business Transfers

If we are acquired or merge with another entity, your data may transfer to the new entity subject to this Privacy Policy or with notice to you.

7. Data Retention

Active Account: Data retained while your account is active.
Inactive Account: Data deleted 2 years after last login.
Completed Applications: You may choose to keep data or request deletion after downloading your documents.
Payment Records: Retained for 7 years per financial regulations.
Audit Logs: Retained for 36 months, then automatically purged.
Support Communications: Retained for 2 years after resolution.

8. Your Rights

All Users

Access your data through your account dashboard
Correct inaccurate information at any time
Delete your account and data by emailing support@impossibletoname.com
Export your data in a portable format (one export request per day)
Opt out of marketing communications

EU/EEA Residents (GDPR)

Right to be informed about data processing
Right to restrict processing
Right to object to processing based on legitimate interest
Right to data portability
Right to lodge a complaint with your local Data Protection Authority
Right to withdraw consent at any time

California Residents (CCPA)

Right to know what personal information is collected
Right to request deletion of personal information
Right to opt out of the sale of personal information (we do not sell data)
Right to non-discrimination for exercising your rights

To exercise any of these rights, email privacy@impossibletoname.com. We will respond within 30 days (or sooner if required by applicable law).

9. Cookies

Essential Cookies (Required)

Session cookies (keep you logged in), security cookies (CSRF protection, fraud prevention), and load balancing cookies. You cannot disable these without breaking core functionality.

Analytics Cookies (Optional)

Privacy-focused analytics via Plausible Analytics or PostHog. These track page views, feature usage, and performance metrics without cross-site tracking or personal identification. You can disable these in your account settings or browser.

Third-Party Cookies

Stripe may set cookies for payment processing and fraud prevention. Affiliate partners may use cookies for conversion tracking when you click referral links.

10. Children's Privacy

Our Service is not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected data from a child under 18, we will delete it promptly.

11. International Data Transfers

Your data may be processed in the United States where our servers are located. For EU/EEA residents, we ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where applicable.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email and/or prominent notice on the Platform. Continued use after changes constitutes acceptance unless you delete your account. We review this policy annually.

13. Contact Us

Privacy Questions: privacy@impossibletoname.com
General Support: support@impossibletoname.com
Website: impossibletoname.com