🔒 Privacy Policy for Aura
Last Updated: January 2025
📌1. Introduction
Aura ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with Aura mobile application.
📊2. Information We Collect
2.1 Information You Provide
- Account Information: Email address (for authentication and account recovery)
- Chat Data: Your conversations with the AI assistant
- Uploaded Files: Images and documents you share with the AI for analysis
- Profile Data: Any profile information you choose to provide
2.2 Information Collected Automatically
- Usage Data: App usage statistics, features used, interaction patterns
- Device Information: Device type, OS version, app version
- Advertising ID:
- Android: Google Advertising ID (AAID)
- iOS: Apple's Identifier for Advertisers (IDFA)
- Crash Reports: Error logs and crash data for debugging (if enabled)
- Analytics Data: How you interact with the app
2.3 Cookies and Tracking Technologies
We use cookies and similar technologies (such as pixels, beacons) for:
- Storing your preferences
- Analytics and app improvement
- Advertising personalization
- Session management
🎯3. How We Use Your Information
We use your information to:
- Provide AI chat assistance and core app functionality
- Store and manage your conversation history
- Process uploaded images for AI analysis
- Improve our services and user experience
- Deliver and personalize advertisements
- Send service updates and support communications
- Analyze usage patterns and optimize performance
- Comply with legal obligations
🔗4. Third-Party Services and Data Sharing
We partner with the following services that process your data:
4.1 Google Services
-
Google Firebase: Authentication, database storage, crash reporting
Privacy Policy → -
Google Gemini AI: AI response generation (processed on secure backend)
Privacy Policy → -
Google Analytics: App usage analytics
Privacy Policy →
4.2 Google AdMob - Advertising
⚠️ Important: Personalized Advertising
Service: We display personalized ads through Google AdMob
Data Shared:
- Anonymized usage data
- Your Advertising ID (AAID/IDFA)
- Approximate location (region-level)
- Ad interaction data
Purpose: Showing relevant, personalized advertisements
User Control: You can limit ad personalization through:
- Our app's consent settings
- Device-level ad settings
- Google Ad Settings →
Learn More:
4.3 Cloudinary - Image Hosting
- Service: Image hosting and processing
- Data: Images you upload are processed and stored securely
- Privacy Policy →
4.4 Other Third Parties
Any other third-party services we use have their own privacy policies, which we encourage you to review.
⚖️5. Legal Basis for Processing (for GDPR)
We process your personal data based on:
- Consent: For personalized ads and optional analytics
- Contract: To provide the app and services you requested
- Legitimate Interests: To improve security, analytics, and user experience
- Legal Obligation: To comply with applicable laws
🔐6. Data Storage and Security
- Encryption in Transit: All data transmitted using HTTPS/TLS encryption
- Data Storage:
- Chat history stored in Firebase Firestore with encryption
- Images stored on Cloudinary's secure servers
- API keys never exposed in the app
- Access Control: Limited access to personal data by authorized personnel only
- Retention: Data retained as long as your account is active
👤7. Your Privacy Rights
7.1 For All Users
You have the right to:
- Access: View all your stored data
- Delete: Delete your account and all associated data via Settings → Delete Account
- Export: Request a copy of your data
- Rectify: Correct inaccurate data
7.2 For European Economic Area (EEA) Users - GDPR
You have additional rights including:
- Data Portability: Request your data in a portable format
- Restrict Processing: Limit how we use your data
- Object: Object to certain types of processing
- Right to be Forgotten: Delete your data (with certain exceptions)
- Lodge a Complaint: With your local data protection authority
7.3 For California (US) Users - CCPA
You have the right to:
- Know: What personal information we collect
- Delete: Request deletion of your personal information
- Opt-Out: Limit sharing of your information
- Non-Discrimination: We won't discriminate for exercising your rights
7.4 For Brazil Users - LGPD
You have rights similar to GDPR, including:
- Right to access, correct, and delete your data
- Right to refuse automated decision-making
- Right to lodge complaints with authorities
To exercise any of these rights, contact us at: mrizkyfirdaus0503@gmail.com
📅8. Data Retention
- Active Accounts: Data retained while your account is active
- Account Deletion: Upon deletion:
- All conversations permanently deleted
- Uploaded images removed from servers
- Email and authentication data deleted
- May take up to 30 days to fully purge all backups
- Analytics Data: Retained per Google's retention policies (typically 90 days for raw data, 7 years for aggregated data)
🌍9. International Data Transfer
Your data may be processed in countries outside your region, including the United States. We implement:
- Standard Contractual Clauses (SCC): For EEA to non-EEA transfers
- Appropriate Safeguards: To ensure data remains protected
By using Aura, you consent to your data being transferred internationally.
👶11. Children's Privacy (COPPA)
Aura is not intended for children under 13. We do not knowingly collect personal information from children under 13. If we discover we've collected data from a child under 13, we will delete it immediately.
For users 13-18: Parental consent is recommended before using services involving personalized ads.
🚨12. Data Breach Notification
If a security breach affects your personal information, we will:
- Notify affected users without unreasonable delay
- Provide information about the breach and steps we're taking
- Comply with all applicable data protection laws
📢13. Your Advertising Choices
13.1 Limit Ad Personalization
- In-App: Use our consent management interface
- Device Settings:
- Android: Settings → Google → Manage your Google Account → Data & Privacy → Ad Personalization
- iOS: Settings → Privacy → Apple Advertising → Personalized Ads
- Opt-Out Websites: optout.networkadvertising.org →
13.2 Global Privacy Control (GPC)
If you enable GPC signals on your device, we respect these preferences for reduced personalization.
🔄14. Changes to This Privacy Policy
We may update this policy to reflect:
- Changes in our practices
- New regulations or requirements
- Improved clarity
Material changes will be communicated through:
- In-app notifications
- Email to your registered account
- Updated "Last Updated" date
Your continued use of Aura after changes means you accept the updated policy.
📧15. Contact Us
For questions about this privacy policy or to exercise your privacy rights:
📧 Email: mrizkyfirdaus0503@gmail.com
👨💼 Developer: MINI DEVS
⏱️ Response Time: We aim to respond within 30 days
🔐 For GDPR-related inquiries If you're in the EEA: Use the email above, clearly marked as a GDPR request.
⚡Quick Reference - Your Privacy Controls
| Need | How to | Where |
|---|---|---|
| Limit Ad Personalization | Disable in app settings or device settings | Settings → Privacy or Device Settings |
| Delete Account & Data | Go to app settings | Settings → Delete Account |
| Export My Data | Contact us | Email: mrizkyfirdaus0503@gmail.com |
| Update Preferences | Modify in-app settings | Settings → Privacy/Preferences |
| View Privacy Policy | Open this document | In-app or minidevs.blogspot.com |