Privacy Policy. Your Data. Our Responsibility.

We collect only what’s needed to run and improve our services—clearly, securely, and with your control.

View Your Rights

Data We Collect

Only essential identifiers, service telemetry, device info, and content you provide to deliver requested features.

Consent & Control

Opt in/out of optional processing, export your data, and request deletion anytime.

Security & Encryption

Encryption in transit & at rest, continuous monitoring, and regular audits.

Complete Privacy Policy

1) Information We Collect

Aurigen Labs Private Limited (“we”, “us”) collects information necessary to provide, secure, and improve our services.

Core Categories

  • Identifiers: name, email, organization, role
  • Service telemetry: feature usage, timestamps, status codes
  • Device/network: browser, OS, coarse IP/region
  • Content you provide: prompts, files, configuration

How We Obtain Data

  • Direct: info you submit via forms, product, or support
  • Automated: logs, cookies, security signals
  • Authorized integrations: systems you connect (e.g., CRM)

Legal Bases (where applicable)

  • Contract: to deliver requested services
  • Legitimate Interests: security, reliability, improvement
  • Consent: optional analytics/marketing features
  • Legal Obligation: compliance with laws/requests
Purpose Examples Primary Legal Basis
Deliver core features Authentication, routing, model outputs Contract
Reliability & quality Telemetry, performance metrics Legitimate Interests
Security & abuse prevention Rate-limiting, anomaly detection Legitimate Interests / Legal Obligation
Preferences & personalization Language, theme, saved settings Consent / Legitimate Interests
Communications (optional) Newsletters, product updates Consent

We avoid collecting special-category data unless you explicitly provide it and it’s essential for an enabled feature.

2) Your Rights & Control

Granular Controls

  • Opt in/out of optional analytics & marketing
  • Dashboard access to sessions, connected apps, artifacts
  • One-click export and deletion requests
  • Revoke integrations and rotate credentials anytime

Your Rights (where applicable)

  • Access, rectification, and erasure
  • Restriction or objection to certain processing
  • Data portability (commonly used format)
  • Withdraw consent without affecting core features

How to Exercise

  • Use in-product privacy settings and permissions
  • Submit access/export/deletion requests via dashboard or email
  • Identity verification may be required; typical response 30 days

3) Security & Encryption

Technical Controls

  • TLS 1.2+ in transit, AES-256 at rest, key rotation
  • Segregated environments, least-privilege networking
  • Continuous logging, anomaly detection, alerting
  • Backups, integrity checks, disaster recovery tests

Organizational Controls

  • RBAC, MFA/SSO, periodic access reviews
  • Security training & confidentiality obligations
  • Vendor risk reviews & contractual protections
  • Practices aligned with SOC 2 principles

Incident Response

  • Runbooks for detection, triage, containment, recovery
  • Post-incident reviews and corrective actions
  • Notifications where required by law or contract

4) Data Sharing & Processors

We use vetted processors (e.g., hosting, analytics, communications, payments) bound by data-protection terms to process personal data only on our instructions. We do not sell your personal data.

5) Retention & Deletion

  • Account & billing: retained while active and a reasonable period thereafter (e.g., 24 months) unless longer required by law
  • Telemetry & logs: typically ~12 months for security and diagnostics
  • Upon verified deletion requests, we remove or de-identify personal data subject to legal holds

6) International Transfers

Cross-border transfers use appropriate safeguards (e.g., Standard Contractual Clauses) and require comparable protections in destination jurisdictions.

7) Children’s Data

Our services are not directed to children, and we do not knowingly collect personal data from children. If you believe a child has provided data, contact us to take appropriate action.

8) Updates to This Policy

We may revise this policy periodically. Material changes will be clearly indicated on this page with an updated effective date.

9) Contact Aurigen Labs

Questions or requests about this policy or your data?

privacy@aurigenlabs.com
Aurigen Labs Private Limited, Delhi, India