How Ralo Protects Your Data
Your mortgage application contains sensitive financial information. We treat data security seriously and apply safeguards designed to protect information submitted through our platform.
How We Protect Your Data
Safeguards by Design
We use layered safeguards designed to protect information submitted through the site and reduce unnecessary exposure.
Protected Connections
Information transmitted through the website is protected using modern transport-security practices.
Secure Infrastructure
We use hosted infrastructure and layered safeguards designed to reduce unauthorized access and service disruption.
Access Controls
Strict role-based access controls ensure only authorized personnel can access your information, and only when necessary.
Audit Logging
Selected access and operational events may be logged and reviewed to support security and troubleshooting.
Regular Security Audits
Security practices should be reviewed regularly so issues can be identified and addressed as systems evolve.
Our Data Practices
Security is not just about encryption. It is also about how we handle your data throughout its lifecycle.
Minimal Data Collection
We only collect information necessary to process your mortgage application and provide our services.
No Data Selling
We do not sell personal information collected through this public website.
Controlled Sharing
Rate quotes are obtained using anonymized loan parameters. Your contact details are shared only when you choose a lender.
Data Retention Limits
We retain your data only as long as necessary for your mortgage process and regulatory requirements.
Right to Deletion
You can request deletion of your personal data at any time, subject to legal and regulatory retention requirements.
Transparent Policies
Our privacy policy clearly explains what we collect, why, and how it is used. No hidden practices.
Compliance & Standards
Control Areas We Focus On
Our security and privacy program focuses on core control areas, including:
- Security: Protection against unauthorized access
- Availability: Systems accessible as committed
- Processing Integrity: Complete and accurate processing
- Confidentiality: Protection of confidential information
- Privacy: Personal information handled appropriately
Security FAQ
What happens if there is a data breach?
We have an incident response plan in place. In the unlikely event of a breach, affected users would be notified promptly as required by law, and we would work with security experts to address the issue and prevent future occurrences.
How do you verify lender security?
We work only with established, licensed lenders who meet our security standards for data handling. Lender relationships are continuously evaluated for compliance with our requirements.
Can I delete my account and data?
Yes. Contact us to request account deletion. We will remove your personal data subject to legal retention requirements (some mortgage-related records must be retained for regulatory purposes).
Security Concerns?
If you have security questions or want to report a vulnerability, please contact our security team.