Privacy Policy
By using aurohaya services (the "Services"), you consent to the collection, use, and disclosure of your information as described herein. If you disagree with these terms, please discontinue use immediately.
POLICY UPDATES
We may revise this policy to reflect operational/regulatory changes. Updated versions will be posted on www.aurohaya.com with revised effective dates.
DATA COLLECTION FRAMEWORK
2.1 Direct Collection
-
Contact Details: Name, email, phone, address
-
Transaction Records: Billing/Shipping info, payment verification
-
Account Credentials: Username, encrypted password
-
Behavioral Data: Wishlist items, cart activity, product views
-
Correspondence: Customer service communications
2.2 Automated Tracking
-
Device Fingerprinting: IP address, browser type, network data
-
Interaction Analytics: Page views, clickstream patterns (via Shopify cookies)
-
Cookie Policy: https://www.aurohaya.com/cookie-policy
2.3 Third-Party Sources
-
Payment Processors: Stripe/PayPal transaction records
-
Platform Partners: Shopify backend analytics
-
Marketing Providers: Google Analytics UTM tracking
DATA UTILIZATION
| Purpose Category | Operational Examples |
|---|---|
| Order Fulfillment | Payment processing, shipment tracking, returns management |
| Experience Optimization | UI personalization, inventory forecasting |
| Security Protocols | Fraud pattern detection, account hijacking prevention |
| Marketing Operations | Targeted ads, email campaign optimization |
| Legal Compliance | Tax reporting, subpoena responses |
DATA SHARING MATRIX
4.1 Essential Service Partners
-
Logistics: DHL/FedEx shipment tracking
-
Cloud Infrastructure: AWS encrypted storage
-
Payment Gateways: PCI-DSS compliant processors
4.2 Business Intelligence
-
Analytics: Google Analytics 4 user journey mapping
-
CRM: Salesforce customer lifecycle management
4.3 Legal Requirements
-
Law Enforcement: Court-ordered disclosures
-
M&A Transactions: Due diligence data rooms
GLOBAL DATA TRANSFERS
-
EU/UK Transfers: SCCs + UK Addendum mechanisms
-
APAC Compliance: PDPA/GDPR alignment protocols
-
US Safeguards: CCPA-compliant vendor agreements
YOUR DATA RIGHTS
6.1 Core Entitlements
-
Access Report: Full data audit upon verification
-
Erasure Request: GDPR Article 17 compliance
-
Portability: JSON/CSV format exports
6.2 Preference Management
-
Marketing Opt-Out: Unsubscribe via email footer
-
Cookie Controls: Browser-level tracking restrictions
6.3 Dispute Resolution
-
Primary Channel: service@aurohaya.com
-
Escalation Path: EU service@aurohaya.com
SECURITY ARCHITECTURE
-
Encryption: AES-256 for data at rest, TLS 1.3+ in transit
-
Access Controls: RBAC with JIT privilege allocation
-
Audit Trail: SIEM-monitored activity logs
SPECIAL PROVISIONS
-
Children's Data: Strict 16+ age gate enforcement
-
UGC Liability: User-generated content disclaimer
-
Third-Party Links: External site
Contact Our Privacy Team For DSARs or compliance inquiries:
Email: service@aurohaya.com
Post: aurohaya Data Governance Office
- Choosing a selection results in a full page refresh.