Privacy Policy

1. What Information We Collect

We collect information you provide directly, information generated through your use of the Services, and technical data captured automatically so the Services can function securely and reliably.

If you connect a third-party sign-in, app store, payment provider, analytics tool, cloud service, or integration, we may receive limited information from that provider according to your settings and the provider's policies.

We do not intentionally request special categories of personal information. If you choose to provide sensitive information, we process it only for the purpose for which it was provided or as required by law.

• Contact and account details, such as name, email address, username, authentication identifiers, app account ID, account preferences, and support details
• Communications and support content, including inquiries, feedback, attachments, and messages sent to us
• User Content, such as prompts, images, videos, audio, files, project settings, generated assets, creative history, and other materials you submit through the Services
• Transaction and subscription details, including purchase history, entitlement status, subscription state, refund status, invoices, and app marketplace receipts handled by us or platform partners
• Device, usage, and diagnostics data, including IP address, browser type, operating system, device identifiers, timestamps, referring pages, crash reports, and interaction events
• Security and service telemetry, including API requests, response codes, rate-limit events, fraud signals, and logs needed to maintain availability and investigate abuse

2. How We Use Information

We use personal information for operational, contractual, security, legal, and communication purposes connected to the Services.

We may use aggregated, anonymized, or de-identified information for analytics, research, benchmarking, capacity planning, and product development where it can no longer reasonably identify you.

We do not use personal data or uploaded content to train general-purpose AI or foundation models without separate, explicit consent.

• Providing, maintaining, personalizing, and improving our websites, applications, AI creation tools, app sessions, and support experiences
• Creating, verifying, administering, and securing accounts and app sessions
• Processing prompts, media inputs, generation requests, previews, exports, and related creative workflows requested by you
• Responding to inquiries, providing customer support, and sending administrative messages
• Processing subscriptions, in-app purchases, refunds, taxes, app marketplace confirmations, and related records
• Monitoring performance, debugging errors, analyzing reliability, and improving product quality
• Detecting, preventing, and investigating fraud, abuse, misuse, security incidents, policy violations, and unlawful activity
• Complying with applicable laws, court orders, regulatory obligations, app marketplace requirements, and contractual commitments

3. Legal Bases for Processing

Where privacy law requires a lawful basis, we rely on the basis that fits the specific processing activity.

Where we rely on consent, you may withdraw it at any time. Withdrawal does not affect processing that occurred before withdrawal.

• Performance of a contract, when processing is necessary to provide Services you request or to take steps before entering a contract
• Legitimate interests, including security, reliability, product improvement, customer support, fraud prevention, and responsible business operations
• Compliance with legal obligations, such as accounting, tax, consumer protection, app marketplace, regulatory, and lawful-request requirements
• Consent, where required for optional features, marketing, cookies, integrations, or use of submitted materials for model training

4. When We Share Information

We share information only where reasonably necessary and with appropriate safeguards. We do not sell personal information.

We require providers that process information for us to use it only for authorized purposes and to protect it appropriately.

• Service providers and processors that support hosting, storage, AI generation infrastructure, analytics, communications, payment processing, app distribution, security, and customer support
• App marketplace providers such as Google Play or Apple App Store when needed for billing, subscriptions, refunds, purchase validation, entitlement management, or platform compliance
• Professional advisers, including lawyers, auditors, accountants, insurers, and consultants bound by confidentiality obligations
• Authorities, regulators, courts, law-enforcement agencies, or other parties when disclosure is required by law or valid legal process
• Business transaction parties in connection with a merger, financing, acquisition, restructuring, asset sale, or similar corporate event
• Integration partners when you instruct us to connect or transmit information to a third-party service

5. Cookies and Similar Technologies

We may use cookies, local storage, pixels, SDKs, and similar technologies to operate the Services and understand how they perform.

You can control cookies through your browser or device settings. Blocking certain technologies may affect availability, login, security, or product functionality.

• Essential technologies used for navigation, sessions, authentication, security, saved preferences, and app functionality
• Analytics and performance technologies used to measure usage, troubleshoot issues, and improve reliability
• Optional marketing or communication technologies where permitted by law and your settings

6. Social Logins and Third-Party Accounts

If a Service allows third-party sign-in, we receive the information the provider makes available for authentication and account setup.

Your use of the third-party provider remains governed by that provider's terms and privacy policy.

We use third-party sign-in information to create, secure, and support your account and related Services.

• Basic profile information such as name, email address, avatar, account identifier, and locale
• Authentication tokens, confirmations, or metadata required to maintain the login session

7. Data Retention

We keep personal information only as long as reasonably necessary for the purposes described in this Policy, unless a longer period is required or permitted by law.

Retention periods depend on the type of information, account status, product requirements, backup cycles, payment and accounting obligations, legal requirements, fraud-prevention needs, and active disputes or investigations.

When information is no longer needed, we delete it, anonymize it, or securely isolate it according to our retention and disposal practices.

8. Security Measures

We use administrative, technical, and organizational safeguards designed to protect the confidentiality, integrity, and availability of information.

No internet-connected system can be guaranteed perfectly secure. You are responsible for protecting your credentials, devices, and account access.

• Encryption in transit and, where appropriate, encryption or equivalent protections at rest
• Access controls, least-privilege permissions, authentication safeguards, and audit practices
• Monitoring, backups, incident response procedures, vulnerability management, and provider diligence
• Internal policies that limit access to people with a business need to support, secure, or operate the Services

9. International Data Transfers

We may process information in the country where the developer operates and in other countries where we, app marketplace providers, AI infrastructure providers, cloud providers, or service providers operate.

Those countries may have data-protection laws that differ from the laws where you live. Where required, we use appropriate safeguards such as contractual protections, transfer mechanisms, and security controls.

By using the Services, you understand that information may be transferred to and processed in jurisdictions outside your country of residence.

10. Children's Privacy

The Services are not directed to children under 13 or to anyone below the minimum age required by applicable law.

We do not knowingly collect personal information from children without appropriate consent. If we learn that we have collected such information, we will take reasonable steps to delete it.

If you believe a child has provided us personal information, please contact us through the support channel listed below.

11. Your Privacy Rights

Depending on your location, you may have rights to access, correct, delete, port, restrict, object to, or withdraw consent for certain processing of your personal information.

We may need to verify your identity before responding to a request. We may decline a request where the law permits or requires us to do so.

• Request access to the personal information we maintain about you
• Request correction of inaccurate or incomplete information
• Request deletion of your account or personal information, subject to lawful exceptions
• Request a copy or export of certain information where technically available
• Object to or restrict certain processing where applicable law permits
• Withdraw consent where processing depends on consent

12. Account Deletion

Where an account is available, the app will provide a self-service account deletion feature.

In the AuraVis app, you will be able to request account deletion from the account or settings area. The exact in-app labels may change as the product evolves, but the deletion function will remain available from the account management flow.

When you delete your account, we will delete or de-identify personal information associated with the account, subject to lawful exceptions for billing, accounting, fraud prevention, security, dispute resolution, backup, and compliance needs.

For more detail, see our Account Deletion page.

13. Do-Not-Track Signals

Some browsers offer Do-Not-Track settings. Because there is no widely accepted standard for responding to these signals, we do not currently respond to them in a uniform way.

If a recognized legal or technical standard becomes applicable to the Services, we will update this Policy to explain how we respond.

14. California Privacy Notice

If you are a California resident, you may have additional rights under California privacy law, subject to statutory limits and exceptions.

We do not sell personal information and do not share it for cross-context behavioral advertising as those terms are defined under California law.

• The right to know categories of personal information collected, used, disclosed, or shared
• The right to request deletion of personal information, subject to exceptions
• The right to correct inaccurate personal information
• The right to opt out of sale or sharing where applicable
• The right not to be discriminated against for exercising privacy rights

15. Virginia Privacy Notice

If you are a Virginia resident, you may have rights under the Virginia Consumer Data Protection Act, subject to its limits.

We do not sell personal data and do not use uploaded content for general AI model training without separate, explicit consent.

• The right to confirm whether we process your personal data
• The right to access, correct, delete, or obtain a copy of certain personal data
• The right to opt out of targeted advertising, sale of personal data, or certain profiling where applicable

16. Updates to This Policy

We may update this Privacy Policy to reflect legal, technical, product, operational, or business changes.

When changes are material, we will update the date above and provide additional notice where required by law.

Your continued use of the Services after an updated Policy becomes effective means you acknowledge the updated Policy.

17. Contact Us

If you have questions about this Privacy Policy, privacy rights, data handling, or security, contact us using the details below.

• Website: http://www.aura-vis.com/
• Email: support@aura-vis.com
• Developer: Pixelrhythm Ai LLC
• Address: Pixelrhythm Ai LLC, 30 N Gould St # R, Sheridan - 82801-6317, United States (US)