Skip to content
Aura 4

Pending counsel review · do not rely on this draft

This document is a working draft prepared by the product team. It is not a binding legal agreement until reviewed and approved by our counsel.

For the current operating draft, email legal@aura4.example.

Legal · draft

Privacy Policy

Last updated · 2026-05-28 (draft)

1. Introduction

[TO BE FILLED IN BY COUNSEL] Who we are, what this notice covers, who it applies to, and how to contact our DPO.

2. Data we collect

[TO BE FILLED IN BY COUNSEL] Account data, workspace content, usage telemetry, device identifiers, and cookies. State which categories are mandatory vs optional.

3. How we use your data

[TO BE FILLED IN BY COUNSEL] Purposes and legal bases (contract, legitimate interest, consent) for each processing activity.

4. Sharing and subprocessors

[TO BE FILLED IN BY COUNSEL] Subprocessor list mirrors /security § Subprocessors — keep them in sync.

5. Retention

[TO BE FILLED IN BY COUNSEL] How long we keep different categories of data, and the deletion process on account closure.

6. Your rights

[TO BE FILLED IN BY COUNSEL] GDPR, CCPA, and other applicable rights — access, deletion, portability, objection — with the request channel.

7. International transfers

[TO BE FILLED IN BY COUNSEL] SCCs, residency choices (US / EU), and the safeguards for data leaving the EEA.

8. Changes to this notice

[TO BE FILLED IN BY COUNSEL] How we notify customers of material changes (30 days for Enterprise customers per the DPA).

9. Contact

[TO BE FILLED IN BY COUNSEL] Legal contact address, DPO email, and supervisory authority signposting for EU customers.