Privacy Policy

1. Data Controller

Aura Global Corporation ("we," "our," or "us") is the data controller responsible for your personal data. We are committed to protecting your privacy in compliance with HIPAA (US), GDPR (EU), DPDP Act 2023 (India), and applicable Australian Privacy Act provisions.

2. Information We Collect

We collect information you voluntarily provide through our website:

• • Contact information (name, email, phone number)
• • Practice/organization details
• • Product interest preferences
• • Messages and communications

Important: We do NOT collect any Protected Health Information (PHI) through this website. Our contact forms explicitly prohibit PHI submission.

3. Purpose of Data Collection

• • Responding to your inquiries and demo requests
• • Processing waitlist registrations for the 26% discount campaign
• • Sending product updates and launch notifications (with consent)
• • Improving our website and services

4. Legal Basis for Processing (GDPR)

We process personal data based on: (a) your explicit consent, (b) legitimate business interests, and (c) contractual necessity. You may withdraw consent at any time.

5. Your Rights

Under GDPR, DPDP Act, and applicable laws, you have the right to:

• • Access your personal data
• • Correct inaccurate data
• • Request erasure ("right to be forgotten")
• • Data portability
• • Object to processing
• • Grievance redressal (DPDP Act)

6. Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected, typically no longer than 3 years from last interaction. Waitlist data is retained until 6 months after product launch.

7. Cookies

This website uses only essential cookies (theme preference stored in localStorage). We do not use tracking cookies without explicit consent. If we implement analytics in the future, we will update this policy and provide a cookie consent mechanism.

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including SSL/TLS encryption, secure hosting, and access controls. In the event of a data breach, we will notify affected individuals and relevant authorities (GDPR: within 72 hours; DPDP: as per Data Protection Board requirements).

9. Data Principal Rights (DPDP Act 2023)

Under India's Digital Personal Data Protection Act 2023, you are a "Data Principal" and have the following rights:

• • Right to Access — Request a summary of your personal data and processing activities
• • Right to Correction — Request correction or completion of inaccurate personal data
• • Right to Erasure — Request deletion of your personal data when it is no longer necessary
• • Right to Withdraw Consent — Withdraw previously given consent at any time; withdrawal does not affect lawfulness of prior processing
• • Right to Grievance Redressal — File a complaint with our Data Grievance Officer or the Data Protection Board of India
• • Right to Nominate — Nominate another person to exercise your rights in case of death or incapacity

To exercise any of these rights, contact our Data Grievance Officer (see Section 11) or submit a Data Deletion Request below.

10. Data Deletion Request

You may request deletion of all personal data we hold about you. We will process your request within 30 days and confirm deletion via email. Submit your request using the form below:

11. Data Grievance Officer

In accordance with the DPDP Act 2023, we have appointed a Data Grievance Officer to address your concerns regarding data processing:

If you are not satisfied with our response, you may file a complaint with the Data Protection Board of India as established under the DPDP Act 2023.

12. Contact Us

For privacy-related inquiries, data access/erasure requests, or to exercise your rights:
Email: privacy@auraglobalcorp.com
Aura Global Corporation, India