Privacy Policy
Last updated: June 18, 2026
This Privacy Policy explains what information Autura collects, how we use it, and the rights you have over it. We aim to keep this short and clear. If you have European customers — or you are one — this policy is written with GDPR in mind.
1. What we collect
When you create an account and use Autura, we collect:
- Account information — your name, email address, and (optionally) a profile picture or display name.
- Business information and onboarding answers — everything you enter about your business during onboarding, including your website, brand voice, products, customers, goals, differentiators, objections, margins, and any other details you provide.
- Product activity — the priority actions you mark complete, messages you send to the AI co-pilot, and the plans, audits, and reports we generate for you.
- Payment information — handled by Stripe. See section 3 below.
- Basic technical data — log data such as IP address, browser, and timestamps, used to keep the service secure and working.
2. How we use your data
We use your data to:
- Generate your personalized strategy, 12-month plan, competitor analysis, SEO audit, content ideas, and priority actions.
- Power the AI co-pilot so it can answer questions in the context of your business.
- Operate, support, secure, and improve the product.
- Send you essential account and transactional emails (for example, login or receipt emails).
We do not sell your personal data, and we do not use it for advertising.
3. Payments (Stripe)
Payments are processed by Stripe. When you buy Autura, your card details are entered directly into Stripe's payment form and handled by Stripe under their own terms and privacy policy. We never see or store your full card number, CVV, or expiry date. We only receive limited information from Stripe, such as confirmation of payment, the last 4 digits of the card, the country, and a transaction ID — so we can issue receipts and provide support.
4. AI processing (third-party AI provider)
Autura uses a third-party AI model/API to generate your strategy, plan, and co-pilot replies. To do this, the business information you submit during onboarding (and the questions you ask the co-pilot) is sent to this AI provider as part of the prompt so that the output can be personalized for you.
This means the business data you enter may be processed by that AI provider on our behalf. You should avoid pasting highly sensitive information (such as customer personal data, payment data, or confidential third-party information) into onboarding or the co-pilot.
5. Where your data is stored
Account information, business profile data, and generated content are stored on our managed backend infrastructure. Servers and processing take place in the European Union (EU), specifically within infrastructure operated by providers subject to EU data protection law. If data is transferred outside the EU/EEA, we rely on appropriate safeguards (such as Standard Contractual Clauses) where required by law.
6. Who we share data with
We only share data with the third-party services we need in order to run Autura:
- Stripe — to process your payment.
- Our AI provider — to generate your plan and co-pilot replies (see section 4).
- Hosting and database providers — to store and serve your account and content.
These providers act as our processors and may only use your data to provide their service to us. We do not sell or rent your data to anyone.
7. How long we keep your data
We keep your account and business data for as long as your account is active, so that you can keep using your plan and co-pilot. If you delete your account, we delete your personal data and generated content within a reasonable period (typically within 30 days), except where we are legally required to keep certain records (for example, invoices and tax records, which we keep for the period required by applicable law).
8. Your rights (GDPR)
If you are in the EU/EEA (or in another region with similar protections), you have the right to:
- Access the personal data we hold about you.
- Correct data that is wrong or incomplete.
- Delete your data ("right to be forgotten").
- Export a copy of your data (data portability).
- Object to or restrict certain processing.
- Withdraw consent where processing is based on consent.
- Complain to your local data protection authority.
To exercise any of these rights, contact us using the email below.
9. Security
We use industry-standard practices to protect your data, including encrypted connections (HTTPS) and access controls on our backend. No system is 100% secure, but we take reasonable steps to keep your information safe.
10. Changes
If we make material changes to this Privacy Policy, we will announce them inside the dashboard or by email before they take effect.
11. Contact
For any privacy-related question, or to exercise your rights above, email us at hello.autura@gmail.com.