---

1. Introduction

This Privacy Policy describes how Mosaic Continuing Education (“Mosaic CE,” “we,” “us,” or “our”) collects, uses, stores, shares, and protects personal information gathered through MosaicCE.net (the “Website”). This policy applies to individuals who register for or use our continuing education services, including licensed insurance professionals who enroll in courses. By accessing or using our Website, you consent to the practices described in this Privacy Policy.

1.1 Scope and Applicability

This Privacy Policy applies to information collected directly through MosaicCE.net, via our LMS, payment systems, customer support channels, and any forms you submit. It does not apply to information collected offline unless explicitly stated.

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide to us when you register, enroll, make payments, or contact support. This may include:

• Full name
• Email address and phone number
• Mailing or billing address
• Professional licensing information (license number, state, provider ID)
• Course enrollment, progress, quiz and exam scores, and completion records
• Payment and billing details (processed by third-party payment processors)

2.2 Technical and Usage Data

We automatically collect technical information about your device and use of the Website, including:

• IP address, approximate geolocation, and network information
• Device type, operating system, browser type, and screen resolution
• Pages visited, time spent on pages, clicks, and other interaction logs
• Cookie and tracking data

2.3 Sensitive Data

We generally do not seek or require sensitive personal data (such as health, racial/ethnic origin, or religious beliefs). If such data is provided inadvertently, we will treat it with additional care and process it only as necessary and with appropriate safeguards, unless otherwise required by law.

3. How We Use Your Information

We use your information for the following primary purposes:

• Eligibility verification: to confirm you meet course prerequisites or licensing requirements.
• Course delivery: to grant access to courses, manage enrollments, and provide course materials.
• Reporting: to report course completions to the Texas Department of Insurance (TDI) and other applicable licensing authorities as required. Completions are submitted within 30 days of completion where applicable.
• Payments and billing: to process transactions, prevent fraud, and manage refunds in accordance with our Refund Policy.
• Support and communication: to respond to inquiries, provide customer support, and send transactional communications such as receipts and regulatory notices.
• Analytics and improvements: to analyze usage and improve the Website, course design, and user experience.
• Legal and regulatory compliance: to comply with legal obligations, defend our rights, and comply with government or regulatory requests.

4. Legal Basis for Processing

Where applicable, our lawful bases for processing your personal information include:

• Contractual necessity: processing required to perform the contract for course enrollment and delivery.
• Legal obligation: processing necessary to comply with laws and reporting obligations (for example, TDI recordkeeping and reporting requirements).
• Legitimate interests: processing for fraud prevention, analytics, network and information security, and improving our services—balanced against your rights and interests.
• Consent: for optional communications or marketing where we ask for your permission (you may withdraw consent at any time).

5. Data Retention and Recordkeeping

5.1 Retention Period

We retain participant records, course completion data, and related information for a minimum of 4 years to comply with Texas Department of Insurance (TDI) requirements and to support audits and regulatory inquiries. Certain transactional records (such as payment receipts and tax records) may be retained longer as required by law.

5.2 Deletion Requests and Limitations

You may request deletion of your personal data; however, deletion requests may be subject to legal, regulatory, or contractual retention obligations. If we cannot comply fully with a deletion request due to regulatory retention rules, we will notify you and retain only the data necessary to meet those obligations.

6. How We Share and Disclose Data

We do not sell your personal information. We may share personal information in the following limited circumstances:

• Regulatory reporting: course completion and participant information reported to TDI or other licensing bodies as required.
• Service providers: third-party vendors who perform services on our behalf (e.g., LMS hosting, payment processors, analytics providers, email and communication services). These providers are bound by contract to process data only as instructed and to maintain confidentiality and security.
• Legal requests: in response to lawful requests by public authorities, regulatory requests, subpoena, or other legal processes.
• Business transfers: in the event of a merger, acquisition, reorganization, or sale of assets, personal data may be transferred as part of the transaction—subject to confidentiality and privacy protections.

7. Cookies, Tracking, and Analytics

7.1 What We Use Cookies For

We use cookies and similar tracking technologies to provide and secure the Website and to improve your user experience. Cookies enable us to:

• Maintain session state and secure login;
• Remember preferences and improve usability;
• Measure site usage and analytics to improve course content and delivery;
• Provide marketing and advertising features where applicable (only if you opt in).

7.2 Managing Cookies

You can control cookie settings through your browser preferences or device settings. Disabling cookies may limit certain features and functionality of the Website.

8. Security Measures

We employ technical and organizational measures designed to protect personal data against unauthorized access, disclosure, alteration, or destruction. Measures include:

• Encrypted transmission (SSL/TLS) for data in transit;
• Access controls and authentication for internal systems;
• Vulnerability management and regular security assessments;
• Secure backups and physical security controls where applicable.

While we use industry-standard protections, no method of transmission or storage is completely secure. We cannot guarantee absolute security.

9. Data Breach Notification

In the event of a security breach that materially affects your personal information, we will notify you and any required regulatory authorities in accordance with applicable law. Notifications will include details about the breach, the data affected, and steps we are taking to investigate and mitigate the issue.

10. International Data Transfers

Your data may be processed or stored in the United States or in other countries where our service providers operate. Where transfers occur to jurisdictions without the same level of data protection, we put in place appropriate safeguards to protect your information consistent with applicable law.

11. Your Rights and Choices

Depending on applicable law, you may have rights with respect to your personal data, including:

• Access: request a copy of personal data we hold about you;
• Correction: request correction of inaccurate or incomplete data;
• Deletion: request deletion of personal data (subject to legal and regulatory retention obligations);
• Objection/Restriction: object to or request restriction of certain processing where applicable;
• Withdraw consent: withdraw consent for marketing communications at any time.

To exercise these rights, contact us at the address below. We may require verification of identity before fulfilling requests to protect your privacy and security.

12. Children and Minors

Our services are not intended for individuals under the age of 13. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal data of a child under 13, we will take steps to delete that information.

13. Third-Party Services and Links

The Website may contain links to third-party sites, plug-ins, or services that are not operated by Mosaic CE. We are not responsible for the privacy practices of third-party sites. Review the privacy policies of those third parties before providing them personal information.

14. Changes to this Privacy Policy

We may modify this Privacy Policy to reflect changes in legal, regulatory, or operational requirements. Material changes will be posted on this page with a revised effective date. We encourage you to review this page periodically.

15. Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or want to make a data request, please contact:

Mosaic Continuing Education (MosaicCE.net)
Email: support@mosaicce.net
Phone: 021-3456-789