Privacy Policy

Effective date 03 March 2023

Introduction


This Privacy Policy (“Policy”) describes how Aurora+ collects, uses, shares, and stores the personal information of Users in relation to our website: https://aurora.plus (the “Site”, “Webpage”, “Website”). This Policy applies to the Site, applications, products, registration processes, and other services (collectively, “Services”) on or in which it is posted, linked, or referenced. 

Read this Privacy Policy
Before using our Services, Aurora+ recommends reading this Policy carefully and completely in addition to, our Terms and Conditions, and Cookies Policy available on the Site. If the User does not agree with this Privacy Policy, then the User should refrain from using Aurora+ Services. 

Contact
If you have any questions, we advise you to contact us immediately with our Support team, by using email: [email protected].. 

Updating the Policy
We reserve the right to amend or update this Policy at any time. Whenever these changes are made, an updated complete version and/or consolidated version of the Policy will be uploaded to the Website with the date of commencement. 

Privacy Principles

1.    Principles. Aurora + has the following principles for collecting and processing private data:
a)    We store your data to provide Aurora+ Services. We minimize the amount of this data and store it only during the time of the Aurora+ account. 
b)    We don't use your data to show you advertising, and we don't sell this data to any third party.
c)    We try to secure your data as possible. 
d)    We make this Policy transparent to you.

Table of Contents


2.    This Privacy Policy explains the following:

Table of Contents
Definitions
Personal Data collected by Aurora+
Data retention
The purpose of collecting your Personal Data
Who we share Data with
Securing your Personal Data
Rights of the Users
Cross-border Personal Data processing
Minors
Third-party intervention
General


Definitions 


3.    User – an individual over 18 years old who can be identified, directly or indirectly, in particular by reference to – an identifier such as a name, an identification number, location information or an online identifier, or any relevant factors of the individual, which have been opened the to Aurora+ Website; 

4.    Aurora+, we, our, or us - Aurora Borealis Limited, a company incorporated in Seychelles, with its registered headquarters at Suite 108, Premier Building, Victoria, Mahe, Seychelles. For purposes of the applicable Data Protection Laws, Aurora+ is the “data controller”. This means that determines the purposes for which and the manner in which your Data is processed.

5.    Privacy Policy – means the terms which set out how we will deal with confidential and personal information received from you via the Website; 

6.    Personal Data – any information that can be linked or identified, directly or indirectly, with the User;

7.    Third-party – a legal entity or a physical person, service provider, public body, agency, or authority other than the User or Aurora+ legally entitled to operate with Personal Data.

Personal Data collected by Aurora+


If you go to our Site and/or use our Services, we may collect and process the following Personal Data about you: 

8.    Data that is collected automatically
a)    When you use our Service or visit our Website, we automatically gather the same basic information that most services do, subject to your consent when necessary. This is information that we gather from all visitors to the Website, regardless of whether they use our Services or not. We use this personal information for website session data and local storage management. This includes information about:
●    how you use the Services, such as the pages you visit, 
●    your IP address, 
●    the date, times and frequency with which you access the Website,
●    operating system
●    browser information. 

9.     Data that is given to us by you
a)    While the User is using the Services, the product and infrastructure teams of Aurora+ collect the following information: 
▪    Contact information, in case the User contacts Aurora+, Aurora+ will keep a record of that correspondence;
▪    Provided email address. We use this personal information as an identifier for the Aurora+ account;
▪    Aurora addresses that the user associates with the Aurora+ account;
▪    Mobile telephone number of the User who requests an Aurora airdrop. We use this personal information to prevent spam attacks;
▪    API token information. We use this personal information to associate an Aurora+ account to protocol usage, i.e. tracking the status of free transaction usage.

10.    Cookies 
b)    Aurora+ uses cookies. Please see information on cookies used by Aurora+ in the Cookies Policy available on the Website.  

Data retention


11.    Retention data that is collected automatically
a)    We will only hold your Data on our systems for the period necessary to fulfil the purposes outlined. The data will be deleted as soon as they are no longer necessary to achieve the purpose for which they were collected.  The collection of such data is absolutely necessary for the operation of the website and conducted on basis of the performance of a contract and to which you are a party and safeguard a legitimate interest of our company. 

12.    Retention data that is given to us by you
a)    The period of Service Information storage is upon the deletion of the Aurora account. All data will be deleted as soon as the User’s account no longer exists.

Legal grounds for collecting Personal Data 


13.    We are required to warn you about the legal basis on which we treat User Personal Data if the processing of your Personal Data is subject to certain international regulations. We shall treat your Personal Data legitimately, fairly, and transparently. We only gather and process information about you when we have a legal basis to do so. These legal grounds depend on the services you use and how you use them, meaning we collect and use your information only where: 
a)    Performance of a contract and Terms of use.  It is required for the performance of a contract to which you are a party or to take steps at your request prior to entering into such a contract (for example, when we provide services you have requested from us). 
b)    Legitimate interest.  It serves a legitimate interest (that is not outweighed by your data protection interests), such as research and development, marketing and promotion of our services, and protection of our legal rights and interests. 
c)    Consent. You give us permission to collect and use your Personal Data for a specific reason. 
d)    Legal obligation. Aurora+ needs to process your Personal Data to comply with a legal obligation. 

The purpose of collecting your Personal Data 


Aurora+ uses and collects your Personal Data for the following purposes: 

14.    User assistance 
a)    Aurora+ uses and collects Personal Data to communicate with Users in order to provide customer service, inform Users of news and changes, and provide Users with security notices or information. 

15.    Website Development 
a)    In order to optimize your user experience, we may use your Personal Data to operate, maintain, and improve our Services and Website. 

16.    Preventing spam attacks
a)    By gathering mobile telephone numbers, the Aurora+ safeguards the Services from being abused.

17.    Keep track of the usage of the free transactions
a)    In order to keep the Services safe and operational, the track of API tokens is conducted.

18.    Encouraging legitimate interests 
a)    Generally, the remainder of the processing of User Personal Information we perform is necessary for the purposes of our legitimate interest, for example, for legal compliance purposes, security purposes, to comply with our legal obligations and resolve any disputes that we may have, or to maintain ongoing confidentiality, integrity, availability, and resilience of Aurora+’s Website, and Services.

19.    We consider the amount, nature, and sensitivity of the Personal Data, the potential risk of harm from unauthorized use or disclosure of this information, the purposes for which we process your Personal Data and whether we can achieve those purposes through other means, and the applicable legal requirements when determining the appropriate retention period for personal information.

Who we share Data with 


20.    We use third-party services to provide the Services to Users and meet legal and regulatory requirements relevant to Aurora+, and such third-party services use Personal Data in delivering their services to Aurora+ or in complying with regulatory requirements. 
a)    Database services. Aurora+ may share the information collected about the User with database services providers in order to properly and securely retain the Users' Personal Data. 
b)    Service providers. Personal Data can be shared with service providers to help us analyze how people use Services in order to improve Aurora+ functionality. 
c)    Auditors and lawyers. Aurora+ may transfer Personal Data to auditors, accountants, and lawyers: in order to complete financial, technical, and legal audits and requirements. 
d)    Affiliates. Any of our group companies or affiliates.
e)    Supervisory authorities. Aurora+ may be required to share Personal Data with the supervisory authorities, law enforcement agencies, or government officials. We will only do this if we are required to do so by law or a formal request, if it is necessary to prevent physical injury or financial loss, or if we are required to report illegal activity. 

21.    Service Providers 
a)    We may employ third party companies and individuals to facilitate our Service (“Service Providers”), provide Service on our behalf, perform Service-related services or assist us in analyzing how our Service is used. 
b)    These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose. 

22.    Analytics 
a)    We may use third-party Service Providers to monitor and analyze the use of our Service. We use Google Analytics, which is a web analytics service offered by Google that tracks and reports website traffic. For more information on the Privacy Policies of Google, please visit: https://policies.google.com/privacy?hl=en-US

Securing your Personal Data


23.    Encryption
a)    We use encryption to protect all sensitive information online and the servers that house your Personally Identifiable Information are housed in a secure and vetted environment. 

24.    Security measures
a)     Aurora+ uses physical, technical, and administrative security measures to reduce the risks of loss, misuse, unauthorized access, disclosure, and modification of the User's Personal data. Aurora+ provides security such as firewalls and data encryption, as well as physical access controls to its servers. Certain Personal Data may be kept with service providers in order to better secure the User's Personal data and guarantee that it is used for the reasons specified by this Privacy Policy. All of our safeguards are designed to be in accordance with existing laws and regulations. 

25.    Limitation of liability
a)    Aurora+ does its best to protect all user information as well as the privacy of your account. In addition to setting a strong password and taking the necessary steps to prevent unauthorized account access, you should be always aware of the types of information being passed to us.  We cannot guarantee absolute security as the Internet is never entirely secure. Unauthorized entries, network vulnerabilities, hardware/software failure and other external factors may compromise your Personal Information and Contact User Information at any given time.

Rights of the Users 


26.    Right to withdraw permission 
a)    Users have the right to withdraw their permission if they have consented to the processing of their Personal Data. Please keep in mind that even if you choose to withdraw your consent, we may be allowed to continue processing your Personal Data to the extent required or permitted by law. 

27.     Object to processing of Personal Data
a)    Users have the right to object to the processing of Personal Data if the processing is carried out on a legal basis other than consent. Users may object to such processing by providing a ground related to their particular situation to justify the objection. 

28.    Gain access to Personal Data
a)    Users have the opportunity to learn whether the Personal Data is processed, to receive disclosure about specific aspects of the processing, and seek a copy of the data being processed. 

29.    Verify and seek rectification
a)    Users have the right to verify the accuracy of their data and ask for it to be updated or corrected. 

30.     Have the Personal Data deleted or otherwise removed
a)    Users have the right, under certain circumstances, to obtain the erasure of their data, unless the processing is justified by our legitimate interests, necessary to fulfill a legal obligation, for reasons of public interest, or to assert, exercise, or defend legal claims. 

31.     Make a formal complaint
a)    Users have the right to file a complaint with their competent data protection authority (depending on their residence and the applicable data protection legislation). 

Cross-border Personal Data processing 


32.    Information that Aurora+ collects may be stored and processed in and transferred between any of the countries in which Aurora+ operates to enable the use of the information in accordance with this privacy policy. The User agrees to such cross-border transfers of personal information. 

Minors 


33.    Our Websites and Services are not intended to appeal to persons under 18 years old. Aurora+ will take appropriate steps to delete any unauthorized private information of a child that has been collected if it is discovered that such has been inadvertently collected.  All Users must be at least 18 years of age to be provided with Services.  

Third-party intervention 


34.    The User is aware of links contained on the Website which belong to third parties and not to Aurora+. We are not responsible or liable for third-party policies and terms of processing your data. 

35.    This Website may, from time to time, provide links to other websites. We have no control over such websites and are not responsible for the content of these websites. This privacy policy does not extend to your use of such websites. You are advised to read the privacy policy or statement of other websites prior to using them.

General


36.    Transfer rights. You may not transfer any of your rights under this privacy policy to any other person. We may transfer our rights under this privacy policy where we reasonably believe your rights will not be affected.

37.    Unenforceable Provisions. If any court or competent authority finds that any provision of this privacy policy (or part of any provision) is invalid, illegal or unenforceable, that provision or part provision will, to the extent required, be deemed to be deleted, and the validity and enforceability of the other provisions of this privacy policy will not be affected.

38.    Right of remedy. Unless otherwise agreed, no delay, act or omission by a party in exercising any right or remedy will be deemed a waiver of that, or any other, right or remedy.

39.    Governing law and dispute resolution. This Agreement will be governed by and interpreted according to the law of Seychelles. Each party irrevocably agrees that the courts of Seychelles shall have exclusive jurisdiction to settle any dispute or claim under this Policy.