TUSK Privacy Policy

Operating entity: Virtual World Computing, LLC (Santa Barbara, California, USA)

Properties covered: tuskcentral.ai (the first and primary TUSK domain), hello.tuskcentral.ai, support.tuskcentral.ai, new.tusksearch.com, tusksearch.com, tuskbrowser.com, the TUSK browser extensions and mobile apps, and any subdomains operated by Virtual World Computing, LLC (collectively, "TUSK" or the "Service"). Effective date: May 20, 2026 Prior version effective date: February 18, 2026 (legacy tusksearch.com/privacy-policy and tuskbrowser.com/privacy-policy/) Version: v1.0


§1 — Introduction and scope

This Privacy Policy describes how Virtual World Computing, LLC ("VWC," "we," "our," "us") collects, uses, shares, and protects personal information when you use TUSK. By using TUSK, you confirm that you have read this Privacy Policy and that you understand how we handle your personal information.

Geographic scope. TUSK is offered to residents of the United States (including its territories) and to residents of Canada other than residents of the Province of Quebec (collectively, the "Available Markets"). TUSK is not offered to, and is not directed at, residents of the Province of Quebec or residents of any country outside the Available Markets, including but not limited to the European Union, the United Kingdom, the European Economic Area, Switzerland, the People's Republic of China (including Hong Kong and Macau), the Russian Federation, or any country subject to comprehensive U.S. sanctions. We use technical controls — including country-level and Canadian region-level geo-restriction — to restrict access from outside the Available Markets, and we do not knowingly process personal information of residents of any excluded jurisdiction, including Quebec.

Age scope. TUSK is offered only to individuals who are 18 years of age or older. We do not knowingly collect personal information from anyone under 18. See §8 (Children).

Local law controls. Section 10.4 of this Policy references the Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada. That description is an operational summary prepared by U.S. counsel. It is not a complete statement of Canadian privacy law, and if PIPEDA or the law of your Canadian province of residence (other than Quebec) gives you rights or protections beyond what we describe here, that law applies.

If you have questions about your rights, you may contact us or, if you are a Canadian resident outside Quebec, the Office of the Privacy Commissioner of Canada (priv.gc.ca).

What this Policy covers. All properties and surfaces operated by VWC under the TUSK brand, including the TUSK web search and news application, the Tusk Central AI multi-model gateway, the TUSK browser extensions, and the TUSK mobile and desktop applications.

What this Policy does not cover. Third-party websites, applications, services, or AI models that you access through TUSK (including the upstream model providers identified in §6), nor advertisements or content you click through to from TUSK. Those third parties operate under their own privacy policies.


§2 — Categories of personal information we collect

This section uses the personal-information categories set out in California Civil Code §1798.140 so that the same descriptions also satisfy the disclosure expectations of other U.S. state privacy laws and of Canadian PIPEDA.

2.1 Identifiers

2.2 Customer records and commercial information

2.3 Internet and electronic activity

2.4 Geolocation

We do not collect precise device location for any purpose other than the opt-in feature described above.

2.5 Audio capture and sensory information

2.6 Inferences

We do not build inferential profiles about you that would extract conclusions, characteristics, preferences, attitudes, intelligence, abilities, or aptitudes from your activity on TUSK. We do not use Tusk Central AI, search history, or news-feed activity to produce decisions about you that would have legal or similarly significant effects.

See §2.9 for de-identified and aggregated data, which is not personal information.

2.7 Free-text input

A note about free-text fields. Search queries, AI prompts, support tickets (Zendesk), and Videoask responses all accept free-text input from you. You should avoid putting unnecessary sensitive personal information (such as health, financial account numbers, government identifiers, sexual orientation or behavior, religious beliefs, political opinions, immigration or criminal status, biometric or genetic information, or trade-union membership) into any free-text field unless it is necessary for the request. This is especially important for search queries and Tusk Central AI prompts, the content of which is shared with advertising partners to support context-based advertising (see §6.3). We retain free-text content under §9.

2.8 Sensitive personal information

To the extent you choose to volunteer the categories listed in §2.7 above into a free-text field, that content may constitute "sensitive personal information" under California, Connecticut, Virginia, Colorado, and other U.S. state privacy laws, or comparable categories under Canadian PIPEDA.

We treat sensitive personal information with the same retention, access, and security controls described in this Policy. We do not use it for purposes other than the purpose for which you submitted it, except that, to the extent sensitive personal information appears in a search query or Tusk Central AI prompt, it may be shared with advertising partners as part of the query or prompt content described in §6.3. You can avoid this by not volunteering sensitive personal information in free-text fields. California residents have a right to limit our use and disclosure of sensitive personal information, and all users may opt out of the sale or sharing of personal information (including by sending a Global Privacy Control signal); see §7 and §10.

2.9 De-identified and aggregated data

We also collect and process de-identified and aggregated data — that is, data from which personal identifiers have been removed (de-identified) or data that has been combined across many users so that it does not identify any individual user (aggregated). Examples:

De-identified and aggregated data is not personal information under California Civil Code §1798.140 or under comparable definitions in Canadian privacy law, and the data subject rights described in §10 do not apply to it. We do not attempt to re-identify de-identified data; we keep it in de-identified form; we use it only in de-identified or aggregated form; and we contractually require the processors we use for these purposes not to re-identify it.


§3 — How we collect personal information

We collect personal information from three sources:


§4 — Purposes of processing and lawful basis

Purpose Categories used Lawful basis
Provide the core Service (search, news, Tusk Central AI) 2.1, 2.3, 2.4, 2.7 Performance of contract; legitimate interest
Authenticate you and secure your account 2.1, 2.3 Performance of contract
Process payments and credit purchases 2.2 Performance of contract; legal obligation (tax)
Send transactional and account communications 2.1 Performance of contract
Detect and prevent fraud, abuse, and security incidents All Legitimate interest; legal obligation
Comply with legal obligations 2.2, 2.3 Legal obligation
Defend legal claims All Legitimate interest; legal obligation
Send the TUSK newsletter (only if you subscribe) 2.1 Consent
Operate ad-supported access 2.1, 2.3, 2.4, 2.6 Legitimate interest; consent where required
Improve the Service through aggregate analytics and product testing 2.3, 2.6 Legitimate interest; consent for non-essential analytics
Understand product use through Microsoft Clarity session replay 2.3 Consent (gated)

§5 — How TUSK uses AI, and what that means for your information

5.1 What Tusk Central AI is

Tusk Central AI is a multi-model gateway that lets you choose an underlying AI model and submit a free-text prompt. Tusk Central AI accepts only text input and returns only text output. There is no image, audio, or video generation. There is no agent loop, no autonomous action, no tool use, and no persistent memory across sessions.

5.2 You are interacting with AI

Tusk Central AI is an artificial intelligence system. You should always assume that an AI generated the output you receive from Tusk Central AI, and that the output may be inaccurate, incomplete, biased, or fabricated. You should independently verify anything important.

5.3 We do not train models on your inputs

VWC does not train, fine-tune, or otherwise customize any AI model. We do not use your prompts, your outputs, your feedback, or any other content you provide to train any AI model — our own or anyone else's.

5.4 What happens to your prompt

When you submit a prompt to Tusk Central AI:

  1. The prompt is sent from TUSK's infrastructure (AWS, U.S.) to OpenRouter (U.S.).
  2. OpenRouter routes the prompt to the upstream model provider you selected.
  3. The output is returned through the same path.
  4. The prompt and output are stored in TUSK infrastructure for the retention period in §9 and are accessible to a small number of authorized engineers for debugging and abuse-detection only.
  5. OpenRouter does not retain your prompt or output (prompt logging is disabled in TUSK's OpenRouter configuration).
  6. Your prompt is processed by the upstream provider you selected, subject to that provider's own data-handling terms (see §6.4).

Separately from the model-processing path above, the content of your search queries and Tusk Central AI prompts is shared with advertising partners to support context-based advertising, as described in §6.3. You can opt out of this sharing as described in §7 and §10.

5.5 Known limitations of AI output

AI outputs may be wrong. They may be biased. They may invent facts, citations, or sources ("hallucinate"). They may reflect the biases of the data on which the underlying model was trained. They are not a substitute for professional advice. You should not rely on Tusk Central AI output for medical, legal, financial, tax, psychological, safety-critical, or other consequential decisions. The Terms of Service include a no-reliance clause that you should read.


§6 — Recipients, processors, subprocessors, and AI providers

We disclose your personal information only as described below. We do not sell your personal information for money, but some sharing of personal information with advertising partners may meet the broad definitions of "sale" or "share" used in California, Connecticut, Virginia, Colorado, and other state privacy laws — see §6.5 and §10.

6.1 Service providers and processors

Provider Role Region
Amazon Web Services (AWS) Cloud hosting U.S.
OpenRouter AI model gateway routing U.S.
Stripe Payment processing U.S.
Beehiiv Newsletter delivery U.S.
Zendesk Customer support ticketing U.S.
Videoask Asynchronous support video U.S.
Datadog Application performance monitoring U.S.
Grafana Cloud Infrastructure monitoring U.S.
Langfuse LLM observability U.S.
Microsoft Clarity Session replay (consent-gated) U.S.
Google Analytics 4 Aggregate analytics (consent-gated, IP anonymized) U.S.
Umami Privacy-first analytics U.S.
NewsWhip News aggregation content licensing U.S./EU

We have a Data Processing Addendum (DPA) — or an equivalent contractual data-handling commitment — in place with each of the providers listed above.

6.2 OAuth providers

If you sign in with Google, Apple, or Discord, we receive only your account identifier and email address. We do not receive your password and we do not receive any data from those services beyond the authentication signal you authorize.

6.3 Advertising partners

TUSK shows advertising. Where you have consented (or where you have not opted out, in jurisdictions whose laws use opt-out), TUSK may share with advertising partners certain identifiers (IP address, device or advertising identifier, page-context information). Search queries and Tusk Central AI prompt content are shared with advertising partners.

A current list of advertising partners is maintained at https://tuskcentral.ai/ad-partners and is updated when partners change.

6.4 Upstream AI model providers

When you submit a prompt to Tusk Central AI and select a particular model, the prompt content and the resulting output are processed by the upstream provider that operates that model. Each provider has its own privacy and data-handling policy; the table below summarizes the providers TUSK currently routes to and links to each provider's relevant policy.

Provider Region Standard API training posture Provider policy
Anthropic U.S. Does not train on API inputs Privacy Policy / API Data FAQ
OpenAI U.S. Does not train on API inputs API Data Controls
Google (Gemini API) U.S. Does not train on paid API inputs Gemini API Additional Terms
Meta U.S. Provider-specific terms Llama API Privacy Policy
xAI U.S. Provider-specific terms xAI Privacy Policy
Perplexity U.S. Provider-specific terms Perplexity Privacy Policy
Cohere U.S. Provider-specific terms Cohere Privacy Policy
Mistral France Provider-specific terms Mistral Privacy Policy
MoonshotAI (Kimi) U.S. Provider-specific terms Kimi OpenPlatform Privacy Policy
DeepSeek U.S. Provider-specific terms DeepSeek Privacy Policy
MiniMax U.S. Provider-specific terms MiniMax Platform Privacy Policy

When you select a model whose provider operates outside the United States, your prompt is transferred internationally to that provider for processing. See §11 (International transfers).

6.5 "Sale" and "share" under U.S. state privacy law

Some sharing of identifiers, online activity, and search-query and prompt content with advertising partners (§6.3) constitutes a "sale" or "share" under California's CPRA, "targeted advertising" under Connecticut, Virginia, Colorado, and other state privacy laws, and equivalent terms under additional state laws. We disclose this sharing here, we honor opt-outs (see §10), and we honor Global Privacy Control signals on browsers that send them.

6.6 Other recipients

We may also disclose personal information:

We do not disclose personal information to data brokers.


§7 — Cookies, SDKs, and tracking technologies

7.1 Scope

This section describes the cookies, similar storage technologies (such as local storage, session storage, IndexedDB), pixels, beacons, and software development kits (SDKs) used by TUSK.

7.2 Categorization

We classify all tracking technologies into four categories. Strictly necessary technologies do not require your consent. Functional, analytics, and advertising technologies are loaded only after you grant consent (or, in U.S. states whose law uses opt-out, only until you opt out).

Category Description Consent model
Strictly necessary Necessary for the Service to function. No consent required.
Functional Remember settings (language, region, theme). Consent (opt-in) where required; opt-out otherwise.
Analytics Aggregate measurement of Service use, including session replay by Microsoft Clarity. Consent (opt-in).
Advertising Used by advertising partners to deliver and measure advertising. Consent (opt-in) where required; opt-out via "Do Not Sell or Share".

7.3 Inventory

The inventory below is current as of the effective date of this Policy. Engineering maintains a live, machine-generated inventory, reviewed quarterly.

7.3.1 Strictly necessary

Name / Technology Provider Purpose Duration
Session cookie TUSK Authenticates the session Session
tusk_csrf TUSK CSRF token Session
tusk_geo TUSK Cached geographic eligibility 24 hours
tusk_ai_disclosure_ack TUSK Records acknowledgment of the AI disclosure (see Terms §5.1) 365 days
cf_clearance, cf_bm, and similar Cloudflare Bot mitigation Cloudflare default
Stripe payment cookies Stripe Payment-flow security Stripe default

7.3.2 Functional

Name / Technology Provider Purpose Duration
tusk_lang TUSK Remembers language preference 365 days
tusk_theme TUSK Remembers light/dark theme 365 days

7.3.3 Analytics

Name / Technology Provider Purpose Duration
_ga, _ga_* Google Analytics 4 Aggregate analytics with IP anonymization up to 13 months
umami Umami Privacy-first aggregate analytics up to 30 days
Microsoft Clarity SDK Microsoft Session replay; masked fields; sensitive-page exclusions 30 days
Datadog Datadog LLM observability 15 days
Langfuse Langfuse LLM observability 30 days

7.3.4 Advertising

Name / Technology Provider Purpose Duration
Google ad cookies Google (AdSense / AdX) Advertising targeting and measurement Google default
Koah Labs cookies Koah Labs Advertising delivery and measurement per provider
RevContent cookies RevContent Native advertising delivery and measurement per provider

The current list of advertising partners is published at https://tuskcentral.ai/ad-partners and is updated when partners change.

7.4 Microsoft Clarity — additional disclosure

Microsoft Clarity records interactions on TUSK pages, including mouse movements, clicks, scrolls, and a visualization of the page as you saw it. Clarity is configured to mask all input fields by default, to exclude pages we have identified as sensitive (account settings, payment flows, support-ticket content), and to redact text that the SDK identifies as potentially sensitive. Clarity loads only after you accept analytics cookies. Microsoft processes the data as a separate service provider; the Microsoft privacy policy is at https://clarity.microsoft.com/privacy.

7.5 How to manage your preferences

You can manage your tracking preferences in three ways:

  1. Consent banner. When you first visit TUSK, a consent banner offers "Accept all", "Reject non-essential", and "Customize". You can re-open the banner from a "Cookie Preferences" link in the footer of every page.
  2. Global Privacy Control. If your browser sends a Global Privacy Control (GPC) signal, we treat it as (a) a request to opt out of "sale" and "share" of personal information (CCPA/CPRA and equivalent state laws), and (b) where applicable, a request to limit the use of sensitive personal information.
  3. "Do Not Sell or Share" link. A persistent footer link leads to a one-click opt-out for the advertising category.

Browser-level controls are also available: you can block or delete cookies through your browser settings. Blocking strictly necessary cookies will break the Service.

7.6 State-specific opt-out mechanics

Residents of states whose laws use the "right to opt out of sale or share" model have that right as set out in §10. California residents specifically have the right to limit the use and disclosure of sensitive personal information. We honor a correctly transmitted GPC signal as a valid opt-out.

7.7 Canadian residents (outside Quebec)

Canadian residents outside Quebec are presented with a consent banner that requires opt-in for non-essential cookies and similar technologies. The lawful basis for analytics and advertising cookies is your consent, which you can withdraw at any time through the consent banner.


§8 — Children

8.1 TUSK is for adults

TUSK is offered only to individuals who are 18 years of age or older. We do not direct TUSK at, and do not knowingly accept users from, anyone under 18.

The 18+ age floor applies in all Available Markets and is independent of the lower minimum ages used by other services. TUSK uses 18 as a single, simple, conservative age threshold.

8.2 How we enforce the age floor

We rely on: a clear age-restriction notice in the Terms of Service and registration flow; an age self-attestation at account creation; app-store age ratings of 17+ / mature; commitments from payment-card and OAuth providers that apply minimum-age controls; and removal of any account we discover belongs to a person under 18.

We do not perform age verification by scan, document check, or biometric estimation. The 18+ floor is enforced by self-attestation, which is the industry standard for adults-only services.

8.3 If we learn we have collected personal information from someone under 18

If we discover or are informed that we hold personal information about someone under 18, we will: delete the information promptly; close the account; notify the parent or guardian if we have a means to contact them; and not retain the information beyond what is necessary to confirm deletion.

Parents or guardians who believe their child has used TUSK may contact support@tuskcentral.zendesk.com. We will respond within 14 days and act within 30 days after confirming the matter.


§9 — Retention

We retain personal information only as long as we need it for the purpose for which we collected it, with the periods set out below. After the retention period, we delete the information or de-identify it.

Category Retention
Search queries 30 days
Tusk Central AI prompts and outputs 30 days
Server access logs (IP) 30 days
Microsoft Clarity recordings 30 days
Langfuse traces 30 days
Datadog telemetry 15 days
Account data Active life of account, plus 30 days after a deletion request is verified
Newsletter subscriber data (Beehiiv) Active subscription, plus 30 days after unsubscribe
Stripe transaction records 7 years (legal floor — IRS / GAAP retention)
Backups 30 days
Support tickets (Zendesk) 2 years from resolution

We may retain personal information beyond these periods where we are legally required to, where we need it to defend legal claims, or where you have asked us to keep it.


§10 — Your rights

You have rights over your personal information. The specific rights you have, and the way you exercise them, depend on the jurisdiction you live in.

10.1 Rights available across all Available Markets

Subject to verification of your identity and to limited exceptions in the laws of each jurisdiction, you may request access to the personal information we hold about you; request correction of inaccurate personal information; request deletion of your personal information; request a copy of your personal information in a portable format; and withdraw any consent you have given.

To exercise any of these rights, use the form at https://support.tuskcentral.ai/hc/en-us/requests/new or write to the address in §17. We will verify your request and respond within the timeframe required by your jurisdiction's law (and in any event within 45 days).

10.2 California residents (CCPA/CPRA)

In addition to the rights in §10.1, you have the right to know the specific pieces of personal information we have collected, the categories of sources, the business or commercial purposes, and the categories of third parties with whom we have shared the information; the right to opt out of the sale or sharing of your personal information (use the "Do Not Sell or Share My Personal Information" link in the footer or send a GPC signal); the right to limit the use and disclosure of sensitive personal information (use the "Limit the Use of My Sensitive Personal Information" link in the footer); and the right to non-discrimination for exercising these rights.

We process consumer requests within 45 days, with a possible 45-day extension. You can authorize an agent to make a request on your behalf with a written authorization.

10.3 Other U.S. state residents

Residents of Connecticut, Virginia, Colorado, Texas, Utah, Oregon, Montana, Iowa, Tennessee, Indiana, New Jersey, Delaware, New Hampshire, Maryland, Minnesota, and other states with comprehensive consumer privacy laws have rights comparable to those in §10.1, plus the right to opt out of targeted advertising, sale, and (in most states) profiling for decisions producing legal or similarly significant effects. We do not engage in profiling of that kind, but the opt-out is available through the "Do Not Sell or Share" link in the footer.

State-specific notes:

10.4 Canadian residents (PIPEDA) — outside Quebec

This Policy is offered to Canadian residents outside the Province of Quebec. TUSK is not offered to Quebec residents, and we use country-level and Canadian region-level geo-restriction to block access from Quebec.

Canadian residents outside Quebec have the right to access, correct, and request deletion of personal information; to withdraw consent; to challenge our compliance with PIPEDA; and to file a complaint with the Office of the Privacy Commissioner of Canada at priv.gc.ca. Provincial privacy commissioners in British Columbia, Alberta, and other provinces may also have jurisdiction over complaints relating to organizations operating in their province.


§11 — International transfers

Our infrastructure is hosted in the United States. If you are a Canadian resident outside Quebec, your personal information is transferred to the United States for processing. Some of your personal information may also be transferred to additional countries when you select an upstream AI model that operates outside the United States (see §6.4). The destination countries currently include France (Mistral).

The transfer mechanism for Canadian users (outside Quebec) is cross-border transfer permitted under PIPEDA with notice and contractual safeguards. We use vendor DPAs and this Privacy Policy as notice.

If a destination country's legal regime materially changes — for example, if a new sanctions, export-control, or data-localization regime applies to a route in this section — we will update this Policy and, where required, notify users.


§12 — Security

We protect personal information using industry-standard technical and organizational measures, including encryption in transit (TLS 1.2 or higher) and at rest (AES-256), role-based access control, multi-factor authentication for administrative access, structured logging, separated production and non-production environments, and a formal incident-response process. We retain personal information only for the periods stated in §9, which limits the impact of any single incident.

We cannot, and do not, guarantee that any information system is impenetrable. If a security incident affects your personal information, we will notify you in accordance with §13 and applicable law.


§13 — Breach notification

If we determine that a security incident has affected your personal information, we will notify you and the relevant authorities in accordance with the laws of your jurisdiction. The applicable timelines include:


§14 — Marketing communications

We send marketing communications only to people who subscribe to the TUSK newsletter (Beehiiv). The newsletter is opt-in. Each newsletter contains a one-click unsubscribe link. We do not send marketing SMS messages.

We honor CAN-SPAM (U.S.) and Canada's Anti-Spam Legislation (CASL).


§15 — Copyright and DMCA

If you believe content available through TUSK infringes your copyright, send a notice to our DMCA Designated Agent. The procedure and contact details are in §8.5 of the Terms of Service.


§16 — Changes to this Policy

We will post the updated Privacy Policy with a new effective date. For material changes, we will notify you by email (if you have an account or have subscribed) or through an in-product banner at least 30 days in advance. Continued use of the Service after the effective date of an updated Privacy Policy constitutes your acknowledgment of the updated terms.

We maintain a public changelog at https://tuskcentral.ai/privacy-policy showing every material change to this Policy.


§17 — Contact us

Postal address (and address of the operating entity):
Virtual World Computing, LLC
5383 Hollister Avenue, Suite 120
Santa Barbara, CA 93111, USA

General privacy contact: support@tuskcentral.zendesk.com

California consumer privacy requests: https://privacy.ca.gov/ or support@tuskcentral.zendesk.com

Canadian privacy contact (outside Quebec): support@tuskcentral.zendesk.com


§18 — Changelog

Date Version Change
May 20, 2026 1.0 Published. Unified Privacy Policy covering tuskcentral.ai (the primary domain), hello.tuskcentral.ai, support.tuskcentral.ai, new.tusksearch.com, tusksearch.com, tuskbrowser.com, and the TUSK browser, mobile, and desktop applications. TUSK is offered to residents of the United States (including its territories) and Canada other than the Province of Quebec; see §1 (Geographic scope). Supersedes the prior tusksearch.com/privacy-policy and tuskbrowser.com/privacy-policy/ (each effective February 18, 2026).

End of Privacy Policy v1.0.