VirtuLOsoSign in

Privacy Policy

Effective date: June 1, 2026

1. Overview

Maureen Cook, LLC ("we," "us," "our"), the company behind VirtuLOso, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share information when you use VirtuLOso, our mortgage training platform (the "Service").

2. Information We Collect

Information you provide:

  • Account information: name, email address, company name, role
  • Billing information: processed entirely by Stripe — we never store card numbers
  • Training content: your responses during AI simulation sessions and quizzes

Information collected automatically:

  • Usage data: pages visited, features used, session timestamps
  • Performance analytics via PostHog (aggregated, not sold)
  • Standard server logs (IP address, browser type, referrer)

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To process payments and manage subscriptions
  • To send transactional emails (invites, password resets, activity nudges)
  • To generate training scores and team progress reports visible to your admin
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

We do not use your data to train AI models that are shared externally. Simulation session data is used solely to generate your personal scores and feedback.

4. How We Share Your Information

We do not sell your personal information. We share data only with:

  • Supabase — database and authentication (hosted in the US)
  • Anthropic — powers AI simulation sessions (data processed per Anthropic's API terms; not used for model training without consent)
  • Stripe — payment processing (subject to Stripe's Privacy Policy)
  • Resend — transactional email delivery
  • Vercel — hosting and infrastructure
  • Your company admin — your training scores, XP, activity, and certification status are visible to admins and managers within your organization

5. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 30 days, except where retention is required by law.

6. Security

We implement industry-standard security measures including TLS encryption in transit, encrypted storage at rest, row-level security on our database, and role-based access controls. No system is perfectly secure; we will notify you promptly in the event of a breach affecting your data.

7. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict certain processing
  • Receive a copy of your data in a portable format

To exercise these rights, email us at privacy@virtuloso.com.

8. Cookies

We use essential cookies to maintain your authenticated session. We use PostHog for product analytics, which may set cookies to track usage patterns across sessions. You can disable non-essential cookies in your browser settings; this may affect functionality.

9. Children's Privacy

The Service is intended for business users and is not directed at children under 18. We do not knowingly collect personal information from minors.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you by email or in-app notice before material changes take effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.

11. Contact

Questions or concerns about your privacy? Contact us at privacy@virtuloso.com.