Vilulia Privacy Policy

Last Updated: January 27, 2026

This Privacy Policy explains how Vilulia LLC (“Vilulia,” “we,” “us,” or “our”) collects, uses, discloses, and protects information in connection with our websites, applications, and services (collectively, the “Services”).

1. Information We Collect

1.1 Information You Provide

  • Account Information: name, email, organization, job title, phone number (if provided), and authentication credentials.
  • Customer Content: documents, messages, prompts, case data, exhibits, notes, uploads, and other content you submit to the Services.
  • Support Communications: information you provide when you contact support.

1.2 Information Collected Automatically

  • Usage Data: feature usage, timestamps, interactions, and related telemetry.
  • Device and Log Data: IP address, browser type, device identifiers, operating system, referring URLs, and diagnostic logs.
  • Security Data: authentication events, access logs, audit events, and security-related signals.

1.3 Payment and Payout Information

Payments and payouts are processed by third-party payment processors (such as Stripe). We do not intentionally store full payment card numbers. Our processors may collect and store payment and payout information in accordance with their terms and policies.

1.4 Public Blockchain Metadata (Optional Feature)

If you enable blockchain anchoring features, the Services may record cryptographic hashes and transaction metadata (for example, transaction IDs) to a public blockchain network. Blockchains are public and immutable; any data written to a blockchain cannot be deleted or modified by Vilulia. We do not intend to write Customer Content itself to the blockchain; instead, we write limited metadata (typically a hash) designed to prove integrity.

2. How We Use Information

We use information to:

  • Provide, operate, maintain, and improve the Services.
  • Authenticate users and secure accounts.
  • Deliver requested functionality (including AI-enabled features initiated by authorized users).
  • Monitor, prevent, and address security, abuse, fraud, and technical issues.
  • Communicate with you about the Services, including administrative, billing, and support messages.
  • Enforce our Terms and comply with legal obligations.

3. AI Processing

The Services may use third-party AI providers to process Customer Content only to deliver AI-enabled features requested by authorized users. We do not use Customer Content to train public or general-purpose AI models. We may use aggregated and de-identified metrics (such as performance telemetry and error rates) that do not identify you, your users, or Customer Content to operate and improve the Services.

4. How We Share Information

We may disclose information as follows:

  • Service Providers: to vendors that provide hosting, storage, communications, analytics, security, customer support, and payment processing, under contractual protections consistent with this Policy.
  • Compliance and Safety: to investigate or prevent fraud, abuse, or security incidents, or to protect rights and safety.
  • Legal: when required by law, subpoena, or legal process, or to enforce agreements.
  • Business Transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets (subject to appropriate confidentiality protections).

5. SMS Communications

If you opt in to the Vilulia SMS Notifications Program, we collect and use your phone number to send you automated text messages related to your account and case activity. This includes verification codes, appointment reminders, case updates, document alerts, and payment reminders.

We do not sell, rent, or share your phone number with third parties for their marketing purposes. Your phone number may be shared with our SMS service providers solely for the purpose of delivering messages on our behalf. These providers are contractually obligated to protect your information and use it only for message delivery.

You may withdraw consent at any time by replying STOP to any message, disabling SMS in your account settings, or contacting us at support@vilulia.com. For help, reply HELP or email support@vilulia.com.

6. Data Retention

We retain information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, and as otherwise permitted by law. Retention periods may vary by plan, configuration, and contractual requirements.

7. Security

We maintain commercially reasonable safeguards designed to protect information, including encryption in transit and at rest, access controls, monitoring, and audit logging. No security measure is perfect. You are responsible for securing your credentials, implementing appropriate access controls, and using multi-factor authentication where available.

8. HIPAA

If you are a HIPAA Covered Entity or Business Associate and use the Services to process Protected Health Information (“PHI”), you must execute a Business Associate Agreement (BAA) with Vilulia before uploading PHI. If no BAA is executed, you must not upload PHI to the Services.

9. Your Choices

  • You may update certain account information through the Services.
  • You may opt out of non-essential marketing emails (if any) by using the unsubscribe link in those emails.
  • Account deletion requests may be subject to contractual or legal retention requirements.

10. U.S. State Privacy Rights

Depending on your state of residence and applicable law, you may have certain rights regarding personal information, such as the right to access, correct, delete, or obtain a copy of certain personal information, and to opt out of certain processing. We may require verification and may deny requests as permitted by law. To submit a request, use our privacy request form.

11. International Users

The Services are operated from the United States. If you access the Services from outside the United States, you understand that information may be transferred to, stored, and processed in the United States and other locations where our service providers operate.

12. Children

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13.

13. Changes

We may update this Policy from time to time. The “Last Updated” date above indicates when this Policy was last revised. Continued use of the Services after the effective date of an updated Policy constitutes acceptance.

14. Contact

Privacy inquiries: Submit a Privacy Request
Legal inquiries: Submit a Legal Inquiry

Questions about these terms?

Our legal team is here to help with any questions.

Contact Legal Team

Submit a Privacy Request

Request data access, deletion, or other privacy rights under GDPR/CCPA.

Privacy Request