Last updated: 7 July 2026
1. Who we are
Aura Era ("we", "us", "our") is the data controller responsible for personal data collected through this website and our branches. If you have any questions, contact us at hello@auraera.com.
2. Personal data we collect
- Account & identity: name, email address, phone number, login credentials.
- Booking & service: service selected, preferred branch and time, notes you provide, appointment history.
- Payment: for online memberships and payments, payment details are handled by our reseller Paddle; we receive only the subscription status, plan, tier and last payment metadata.
- Support & communications: messages you send us and our responses.
- Technical: IP address, device/browser type, cookies, and basic usage telemetry.
- Location (optional): approximate coordinates you share when requesting a branch suggestion.
3. Why we use it
- To create and manage your account and membership (contract performance).
- To deliver, schedule and improve our services (contract performance, legitimate interests).
- To secure our services and prevent fraud (legitimate interests).
- To respond to your enquiries (contract performance, legitimate interests).
- To comply with legal obligations (e.g. tax, accounting).
- With your consent, to send optional marketing (you can opt out at any time).
4. Who we share it with
- Paddle — our Merchant of Record for online sales, subscription management, payments, tax compliance and invoicing.
- Hosting & infrastructure providers that run our website, database and email delivery.
- Branch staff assigned to your appointment, on a need-to-know basis.
- Professional advisers (legal, accounting) where necessary.
- Authorities where required by law.
5. How long we keep it
We keep personal data only for as long as needed for the purposes above, then delete or anonymise it. Booking and payment records are retained for the period required by applicable tax and accounting laws.
6. Your rights
Subject to local law, you may have the right to access, correct, delete, restrict or object to the processing of your personal data, to portability, and to withdraw consent. To exercise these rights, email us at hello@auraera.com. You also have the right to complain to your local supervisory authority.
7. Security
We use appropriate technical and organisational measures — including encryption in transit, access controls, and role-based database policies — to protect your personal data.
8. Cookies
We use strictly necessary cookies to keep you signed in and remember your preferences. We do not currently run advertising cookies. If we add analytics or marketing cookies in future, we will update this notice and ask for your consent where required.
9. Changes
We may update this notice from time to time. The date at the top will reflect the latest revision.
