Privacy Policy

Last updated: January 30, 2026

Introduction

Aura ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI companion service ("Service").

We understand that you share personal and intimate information with Aura. We take this responsibility seriously and have designed our systems with your privacy as a priority.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Email address, username, password, and profile information you choose to provide
  • Conversation Data: Messages, voice recordings, and other content you share with Aura during your interactions
  • Payment Information: Billing address and payment method details (processed by our secure payment provider)
  • Preferences: Settings, companion customizations, and feedback you provide

1.2 Information Collected Automatically

  • Device Information: Device type, operating system, browser type, and unique device identifiers
  • Usage Data: How you interact with the Service, including session duration, features used, and interaction patterns
  • Log Data: IP address, access times, and pages viewed
  • Cookies: See our Cookie Policy for more details

1.3 Memory and Emotional Data

A core feature of Aura is emotional memory. We collect and store information about your conversations, including emotional context, to provide continuity in your relationship with Aura. This data is used solely to improve your experience and is never shared with third parties.

2. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Enable Aura's memory features to create continuity in your conversations
  • Personalize your experience based on your preferences
  • Process transactions and send related information
  • Send you technical notices, updates, and support messages
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze trends, usage, and activities to improve our Service
  • Detect, investigate, and prevent fraudulent transactions and abuse
  • Comply with legal obligations

3. How We Protect Your Information

We implement industry-standard security measures to protect your information:

  • Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Strict access controls limit who can access your data within our organization
  • Regular Audits: We conduct regular security audits and penetration testing
  • Secure Infrastructure: Our services are hosted on SOC 2 compliant infrastructure
  • Data Minimization: We only collect data necessary for providing the Service

4. Data Sharing

4.1 We Do NOT:

  • Sell your personal information to third parties
  • Use your conversations to train AI models without your explicit consent
  • Share your intimate conversations with advertisers
  • Allow third-party access to your conversation history

4.2 We May Share With:

  • Service Providers: Companies that help us operate the Service (payment processing, hosting, analytics) — all bound by confidentiality agreements
  • Legal Requirements: When required by law, court order, or government request
  • Safety: To protect the rights, property, or safety of Aura, our users, or the public
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (your data remains protected under this policy)

5. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data ("right to be forgotten")
  • Portability: Request your data in a portable format
  • Restriction: Request restriction of processing
  • Objection: Object to certain processing activities
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@aura.ai. We will respond within 30 days.

6. Data Retention

We retain your information for as long as necessary to provide the Service and fulfill the purposes described in this policy. Specifically:

  • Account Data: Retained while your account is active and for 30 days after deletion request
  • Conversation Data: Retained while your account is active to maintain Aura's memory; deleted upon account deletion
  • Payment Data: Retained for 7 years as required for tax and accounting purposes
  • Anonymized Analytics: May be retained indefinitely in aggregate form

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the European Commission, to protect your information during international transfers.

8. Children's Privacy

The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected personal information from a child, we will delete that information immediately. If you believe we have collected information from a child, please contact us at privacy@aura.ai.

9. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information
  • Right to opt-out of the sale of personal information
  • Right to non-discrimination for exercising your privacy rights

We do not sell personal information. To exercise your rights, contact us at privacy@aura.ai or call our toll-free number: 1-800-XXX-XXXX.

10. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), UK, or Switzerland:

  • Legal Basis: We process your data based on contract performance (to provide the Service), legitimate interests (to improve and secure the Service), and consent (for optional features)
  • Data Protection Officer: Contact our DPO at dpo@aura.ai
  • Supervisory Authority: You have the right to lodge a complaint with your local data protection authority

11. AI Training Opt-Out

By default, we do not use your personal conversations to train our AI models. If you wish to contribute your anonymized conversation data to improve Aura for everyone, you can opt-in through your account settings.

Even if you opt-in, we will never use identifiable information or intimate content for training purposes. All training data is strictly anonymized and aggregated.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email and by posting the new Privacy Policy on this page with an updated "Last updated" date. We encourage you to review this Privacy Policy periodically.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

  • Email: privacy@aura.ai
  • Data Protection Officer: dpo@aura.ai
  • Address: Aura Inc., 123 AI Street, San Francisco, CA 94102, United States