AurumsAurums

Privacy Policy

1. Who We Are

Aurums is a software service operated by an individual. We act as the data controller for the personal data we collect. Contact: support@aurums.io for privacy questions or requests.

2. What Data We Collect

We collect the following categories of data:

  • **Identity & Contact Data**: your email address (used for login and communication)
  • **Account Data**: signup date, licence status, usage logs
  • **Technical Data**: IP address, device information, browser type, server logs
  • **Billing Metadata**: subscription ID, payment status (via Stripe) — *we do not store card details*
  • **Licence Metadata**: licence key, validity, usage timestamps

We do NOT collect or store:

  • trading data or MT5 account contents
  • signals or strategies
  • financial data beyond what's shared via Stripe's APIs

**Cookies and Tracking:** We may use cookies and similar technologies to improve your experience and gather analytics. You can control cookie preferences via your browser.

3. Legal Basis for Processing (GDPR)

We rely on the following legal grounds:

  • **Contractual necessity** – to provide access to the service
  • **Legitimate interests** – to prevent fraud, maintain security, and improve the service
  • **Legal obligations** – for compliance with applicable laws (e.g. tax records)
  • **Consent** – where required for marketing or cookies

4. How We Use Your Data

Your data is used to:

  • create and manage your account
  • process payments via Stripe
  • generate and validate licence keys via Keygen
  • secure access to licensed software
  • communicate important service updates
  • detect misuse or violations of our Terms

5. Third-Party Processors

We use third-party providers that process your data on our behalf:

  • **Stripe** (payments)
  • **Supabase** (authentication and account backend)
  • **Keygen** (licence generation and enforcement)
  • **Resend** (transactional email delivery)

These providers only access data necessary to perform their services and are contractually bound to protect it.

6. Data Retention

  • We retain account and licence data as long as your account is active.
  • Billing and transactional data are kept for up to 7 years for legal compliance.
  • If you delete your account, we anonymize or securely delete data unless legal retention applies.

7. Security Measures

We take security seriously and implement: encryption of data in transit and at rest, secure authentication systems, role-based access controls, and regular patching and monitoring of infrastructure.

8. Your Rights (Under GDPR/UK GDPR)

You have the right to:

  • access your personal data
  • correct inaccuracies
  • request deletion
  • restrict or object to processing
  • data portability (where applicable)
  • withdraw consent at any time

To exercise your rights, contact us at support@aurums.io.

9. International Data Transfers

If data is transferred outside the UK or EEA (e.g., via cloud infrastructure), we ensure it is protected via Standard Contractual Clauses (SCCs) or hosting with providers that meet adequacy standards.

10. Changes to This Policy

We may update this Privacy Policy. If we do, we'll revise the "Last Updated" date and may notify you of material changes. Continued use of the service implies your acceptance of the updated policy.

Last updated: January 11, 2026