Privacy Policy
Last updated: July 16, 2026
AURORA-MOB ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, APIs, CDN services, cloud communication platform, and any related services (collectively, the "Services").
Please read this Privacy Policy carefully. By using the Services, you consent to the data practices described in this policy. If you do not agree with any part of this policy, you must discontinue use of the Services immediately.
1. Information We Collect
1.1 Information You Provide
We collect information that you voluntarily provide when you register for an account, use our Services, or communicate with us, including:
- Account Information: Name, email address, phone number, company name, job title, and password.
- Billing Information: Payment card details, billing address, and tax identification numbers. Payment card data is processed by our PCI-compliant payment processors and is not stored on our servers.
- Verification Information: Business registration documents, identity verification materials, and other documentation required for enterprise account verification.
- Communication Data: Information you provide when contacting our support team, including emails, chat messages, and support tickets.
- Marketing Preferences: Your preferences for receiving marketing and promotional communications.
1.2 Information Automatically Collected
When you access or use the Services, we automatically collect certain information including:
- Usage Data: Pages visited, features used, API calls made, bandwidth consumed, and actions taken within the Services.
- Device & Connection Data: IP address, browser type and version, operating system, device identifiers, and network information.
- Log Data: Access timestamps, request details, response times, error logs, and diagnostic data.
- Cookies and Similar Technologies: We use cookies, web beacons, and similar tracking technologies to enhance your experience, analyze usage patterns, and deliver relevant content. See Section 7 for more details.
1.3 Information from Third Parties
We may receive information about you from third-party sources, including:
- Social media platforms if you log in using social authentication
- Payment processors for billing verification
- Business intelligence and marketing partners
- Publicly available databases
2. How We Use Your Information
We use the information we collect for the following purposes:
- Service Delivery: To provide, maintain, and improve our Services, including account management, authentication, and customer support.
- Billing & Payments: To process payments, manage subscriptions, and handle billing-related communications.
- Security: To detect, prevent, and respond to fraud, abuse, security incidents, and other harmful activities.
- Communication: To send service-related notifications, updates, security alerts, and administrative messages.
- Personalization: To tailor the Services to your preferences and provide relevant recommendations.
- Analytics: To monitor usage patterns, analyze trends, and improve the performance and functionality of the Services.
- Marketing: To send promotional materials about our products and services (with your consent where required by law).
- Compliance: To comply with legal obligations, enforce our Terms of Service, and protect our rights and the rights of others.
- Research & Development: To conduct research, develop new features, and innovate our product offerings.
3. How We Share Your Information
We do not sell your personal information. We may share your information in the following circumstances:
- Service Providers: With vendors and service providers who perform services on our behalf, including cloud hosting, payment processing, email delivery, analytics, and customer support. These providers are contractually obligated to protect your data.
- Business Transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of the transaction.
- Legal Obligations: When required by law, court order, or governmental regulation, or to protect the safety, rights, or property of AURORA-MOB, our users, or the public.
- With Your Consent: With your explicit consent or at your direction, including when you authorize third-party integrations.
- Aggregated Data: We may share aggregated, anonymized, or de-identified data that cannot reasonably identify you for any purpose.
4. Data Retention
We retain your personal information for as long as your account is active or as needed to provide the Services. We may retain certain information for longer periods where required by law, for legitimate business purposes (such as fraud prevention or audit), or as described in this policy.
When your account is terminated, we will:
- Provide a 30-day grace period for you to export your data
- Delete or anonymize your personal data within 90 days of account termination
- Retain backup copies for up to 180 days for disaster recovery purposes only
- Retain information as required by applicable law
5. Data Security
We implement and maintain industry-standard technical and organizational security measures to protect your information, including:
- Encryption: All data in transit is encrypted using TLS 1.3. Data at rest is encrypted using AES-256.
- Access Controls: Strict role-based access controls, multi-factor authentication for administrative access, and comprehensive audit logging.
- Infrastructure Security: Tier-IV data centers, network firewalls, DDoS protection, and continuous intrusion detection monitoring.
- Certifications: Our infrastructure maintains ISO 27001, SOC 2 Type II, and PCI DSS compliance.
- Regular Audits: Independent third-party security audits, vulnerability scanning, and penetration testing conducted regularly.
However, no method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
6. Your Rights & Choices
Depending on your jurisdiction, you may have the following rights regarding your personal information:
- Access: Request a copy of the personal data we hold about you.
- Rectification: Request correction of inaccurate or incomplete data.
- Erasure: Request deletion of your personal data ("right to be forgotten").
- Restriction: Request restriction of processing of your personal data.
- Portability: Request transfer of your data to another service provider.
- Objection: Object to processing based on legitimate interests or for direct marketing.
- Withdraw Consent: Withdraw consent where processing is based on consent.
To exercise these rights, please contact us at privacy@velocix.com. We will respond to your request within 30 days. We may need to verify your identity before processing your request.
6.1 Marketing Communications
You may opt out of marketing communications at any time by:
- Clicking the "unsubscribe" link in any marketing email
- Adjusting your notification preferences in your account settings
- Contacting us at privacy@velocix.com
Even after opting out, you will continue to receive transactional and service-related communications.
6.2 Do Not Track
Some browsers offer a "Do Not Track" (DNT) feature. We currently do not respond to DNT signals. However, you may adjust cookie preferences as described in Section 7.
7. Cookies & Tracking Technologies
We use cookies and similar tracking technologies to:
- Essential: Enable core functionality such as authentication and security.
- Functional: Remember your preferences and settings.
- Analytics: Understand how you use our Services and identify areas for improvement.
- Marketing: Deliver relevant advertising and measure campaign effectiveness.
You can manage cookie preferences through your browser settings or through our cookie consent tool (where available). Disabling certain cookies may affect the functionality of the Services.
8. International Data Transfers
AURORA-MOB operates globally and your information may be transferred to, stored, and processed in countries other than your country of residence. We ensure that adequate safeguards are in place for international data transfers, including:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Data Processing Addenda (DPAs) with all service providers
- Compliance with applicable data protection laws including GDPR and CCPA
9. California Privacy Rights (CCPA)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with specific rights regarding your personal information. In addition to the rights described in Section 6, California residents have the right to:
- Know the categories and specific pieces of personal information we collect
- Know the categories of sources from which personal information is collected
- Know the business or commercial purpose for collecting personal information
- Know the categories of third parties with whom we share personal information
- Opt out of the "sale" of personal information (we do not sell personal information)
- Not receive discriminatory treatment for exercising CCPA rights
10. GDPR Compliance (EEA & UK Users)
If you are located in the European Economic Area (EEA) or the United Kingdom, we process your personal data on the following legal bases:
- Contractual Necessity: To provide the Services you have requested
- Legitimate Interests: For security, fraud prevention, analytics, and service improvement
- Consent: For marketing communications and non-essential cookies
- Legal Obligation: To comply with applicable laws
You have the right to lodge a complaint with your local data protection supervisory authority.
11. Children's Privacy
The Services are not directed to children under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal data from a child under 16, we will promptly delete such information. If you believe a child has provided us with personal information, please contact us immediately.
12. Third-Party Links & Integrations
The Services may contain links to third-party websites, services, or integrations. We are not responsible for the privacy practices of third parties. We encourage you to review the privacy policies of any third-party services you interact with.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by:
- Posting a notice on our website at least 30 days before the changes take effect
- Sending an email to the address associated with your account (for material changes)
- Updating the "Last updated" date at the top of this policy
Your continued use of the Services after the effective date constitutes acceptance of the updated Privacy Policy. If you disagree with any changes, you must discontinue use of the Services and terminate your account.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
AURORA-MOB — Data Protection Officer
Email: privacy@velocix.com
Address: 100 Technology Drive, Suite 500, San Francisco, CA 94105, United States
Phone: +1 (415) 555-0190
For EU/UK-specific inquiries, you may also contact our EU Representative:
AURORA-MOB EU Data Protection Representative
Email: eu-privacy@velocix.com
Address: Velocix Europe Ltd., 25 Boulevard Royal, L-2449 Luxembourg