Privacy Policy

We collect information in the following categories:

Account Information — Your name, email address, and payment details (processed securely through Stripe) when you register for and maintain a Virlo account.

Usage Data — Information about how you interact with the platform — including features used, searches performed, niches tracked, exports generated, and integrations configured.

Technical Data — Your IP address, browser type and version, operating system, device identifiers, and session timestamps collected automatically when you access the platform.

User-Generated Content — Content you create within Virlo, including custom niche configurations, saved reports, content briefs, and any other assets generated through the platform.

We use the information we collect to:

• Provide, operate, and improve the Virlo platform and its features
• Process payments, manage your subscription, and send billing-related communications
• Send product updates, feature announcements, and important service notices
• Detect, investigate, and prevent abuse, fraud, or unauthorized access to the platform
• Analyze aggregate and anonymized usage patterns to inform product decisions and improve performance
• Respond to support requests and troubleshoot technical issues

We do not sell, rent, or trade your personal data to third parties. We may share your information only in the following limited circumstances:

• Service providers: We share data with trusted third-party vendors — including Stripe for payment processing and cloud infrastructure providers — who are contractually bound by strict data processing agreements and may only use your data to perform services on our behalf.
• Legal requirements: We may disclose your information if required to do so by law, regulation, or valid legal process, or to protect the rights, property, or safety of Virlo, our users, or the public.
• Business transfers: In the event of a merger, acquisition, or sale of all or substantially all assets of Red Lab, LLC, your information may be transferred as part of that transaction. We will notify you via email or prominent in-app notice before your data is transferred and becomes subject to a different privacy policy.

We retain your account data for as long as your account remains active or as needed to provide you with our services. If you close your account, we will delete or anonymize your personal data within 90 days of the account deletion date, except where we are required to retain it for legal or regulatory purposes.

Aggregated, anonymized data derived from your usage may be retained indefinitely for platform analytics purposes, as it can no longer be used to identify you.

You have the following rights with respect to your personal data:

• Access: Request a copy of the personal data we hold about you.
• Correction: Request that we correct inaccurate or incomplete information.
• Deletion: Request that we delete your personal data, subject to certain legal exceptions.
• Portability: Request a machine-readable export of your data where technically feasible.
• Objection / Restriction: Object to or request that we restrict certain types of processing.

To exercise any of these rights, contact us at [email protected]. We will respond to all verified requests within 30 days.

EU and UK Users: If you are located in the European Union or United Kingdom, you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR, including the right to lodge a complaint with your local supervisory authority. Red Lab, LLC processes EU/UK personal data on the legal basis of legitimate interest and consent where applicable.

Virlo uses cookies and similar tracking technologies to operate the platform. We use:

• Essential cookies: Required for authentication, session management, and core platform functionality. These cannot be disabled without breaking the service.
• Analytics cookies: Used to understand how users interact with the platform so we can improve it. Data collected is aggregated and anonymized where possible.

For full details on the cookies we set, their purpose, and how to control them, please see our Cookie Policy.

We take the security of your data seriously. Virlo employs industry-standard measures to protect your information, including:

• Encryption of data in transit using TLS and at rest using AES-256
• Access controls limiting employee access to personal data on a strict need-to-know basis
• Regular security reviews and vulnerability assessments

No system is 100% secure. We cannot guarantee absolute security, and we encourage you to use a strong, unique password for your Virlo account and to notify us immediately at [email protected] if you suspect any unauthorized access or breach.

Virlo is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If we become aware that we have inadvertently collected information from a person under 18, we will delete it promptly. If you believe a minor has provided us with personal data, please contact us at [email protected].

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by:

• Sending an email to the address associated with your account, and/or
• Displaying a prominent notice within the Virlo platform

The updated policy will be effective as of the “Last updated” date shown at the top of this page. Your continued use of Virlo after that date constitutes acceptance of the revised policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please reach out to us at [email protected].