AURA AGENTS

Privacy Policy

How we collect, use, share and protect personal data.

LAST UPDATED — 17 JUNE 2026

This is a template provided to get you started — not legal advice. Have it reviewed by qualified counsel before relying on it in production.

1. Who we are

AURA Agents ("AURA Agents", "we", "us") operates auraagents.agency and provides AI receptionist, chatbot, voice-agent, and lead-automation services to business clients. For data our clients' end-customers submit through our agents, the client is the data controller and we act as the data processor (see our DPA).

Questions: privacy@auraagents.agency.

2. Data we collect

  • Account data: name, email, phone, company, billing details.
  • Client business data: knowledge base content, services, configuration.
  • End-customer data (on behalf of clients): names, contact details, messages, call transcripts, lead/qualification data.
  • Usage + technical data: log data, device/browser info, IP, cookies (see Cookie Policy).
  • Payment data: processed by Stripe/Razorpay; we do not store full card numbers.

3. How we use data

  • Provide and operate the platform and AI agents.
  • Capture, qualify, and follow up on leads on our clients' behalf.
  • Billing, support, security, fraud prevention, and service improvement.
  • Communications you've agreed to receive.

4. Legal bases (GDPR/UK-GDPR)

We rely on: performance of a contract; legitimate interests (operating and improving the service, B2B communications); consent (where required, e.g. certain cookies/marketing); and legal obligation. UAE PDPL and India DPDP equivalents (consent / legitimate purposes) apply for those regions.

5. Sharing & subprocessors

We share data with vetted subprocessors who help us run the service, under contract and only as needed. We do not sell personal data.

6. International transfers

Data may be processed outside your country. Where required, we use appropriate safeguards (e.g. Standard Contractual Clauses) for cross-border transfers.

7. Retention

We keep personal data only as long as needed for the purposes above, to meet legal/accounting obligations, or per our client's instructions, then delete or anonymize it.

8. Your rights

To exercise rights, contact privacy@auraagents.agency. End-customers should contact the business they interacted with; we will assist that business as processor.

  • Access, correct, delete, or export your data.
  • Object to or restrict certain processing; withdraw consent.
  • Lodge a complaint with your data protection authority.

9. Security

We use encryption in transit and at rest, access controls, tenant isolation, audit logging, and least-privilege practices. No system is perfectly secure; we work to protect your data and notify of breaches as required by law.

10. Children

The service is for businesses and is not directed to children.

11. Changes & contact

We may update this policy; we'll post the new date here. Contact privacy@auraagents.agency.

Subprocessors

OpenAILLM responses (chat/voice agents)
AnthropicLLM responses (chat/voice agents)
ResendTransactional + notification email
StripePayments / invoicing
RazorpayPayments / invoicing (India)
SupabaseDatabase + vector storage hosting
Cloudflare (R2)File / document storage + CDN/DNS
RenderBackend application hosting
VercelFrontend application hosting
Vapi / Retell / ElevenLabs / Twilio / Exotel / SarvamVoice + telephony
Meta / GoogleAds + lead capture (where enabled)
PandaDocProposals / contracts / e-signature