Privacy Policy

1. Who we are

Aurelia Edge LLC, located at 1912 Capitol Ave Ste 500, Cheyenne, WY 82001, provides software, AI and cloud solutions to business and individual customers ("Services").

For the purposes of the EU General Data Protection Regulation ("GDPR"), Aurelia Edge LLC acts as a data controller for personal data processed in connection with our own website, marketing and customer relationship management, and as a data processor when processing personal data on behalf of our customers under a service agreement.

You can contact us regarding privacy matters at: contact@theaureliaedge.com.

2. What data we collect

Depending on how you interact with us, we may collect and process the following categories of personal data:

• Identity and contact data: name, job title, company, email address, phone number, postal address, account identifiers.
• Account and usage data: account credentials, log‑in history, feature usage, preferences, support history.
• Technical data: IP address, device identifiers, browser type and version, operating system, time zone, approximate location, and other information from cookies and similar technologies.
• Transaction data: billing and invoicing details, payment‑related information (processed via our payment providers), purchase history.
• Marketing and communication data: your preferences for receiving marketing from us and your communication preferences.
• Customer content and configuration data: data sets, prompts, documents, configurations or other content you upload or connect to our Services, including any personal data contained within them, when we provide software, AI and cloud solutions as a processor.

We do not intentionally collect special categories of data (such as health, biometric, or political opinions) unless explicitly agreed in writing with a customer and protected by appropriate safeguards.

3. How we collect data

We obtain personal data:

• Directly from you: when you create an account, request a demo, sign a contract, subscribe to a newsletter, contact support, or communicate with us in any way.
• Automatically: via cookies, log files and similar technologies when you visit our websites, apps or use our Services.
• From third parties: such as partners, resellers, public sources, analytics providers, or social platforms, where permitted by law and subject to your choices.

4. Purposes and legal bases for processing

Under GDPR, we must have a lawful basis for each processing purpose. We process personal data for the following purposes:

• To provide and operate the Services, including user authentication, configuration, hosting, maintenance, and customer support. Legal basis: performance of a contract or steps taken at your request prior to entering into a contract.
• To manage our business relationship, including invoicing, account management, contract administration, and communications. Legal basis: performance of a contract and legitimate interests in running our business.
• To improve and secure our Services, including troubleshooting, data analysis, testing, system monitoring, security, and development of new features (for example, training or fine‑tuning models on de‑identified or aggregated data where possible). Legal basis: legitimate interests in maintaining, developing and securing our Services.
• To send you product updates, event invitations and marketing communications, where permitted. Legal basis: your consent (for email/SMS where required) or legitimate interests in promoting similar products or services, subject to your opt‑out rights.
• To comply with legal and regulatory obligations, respond to lawful requests, and protect our rights, safety and the rights of others. Legal basis: compliance with legal obligations and legitimate interests in defending our business.

Where we rely on consent, you may withdraw it at any time using the mechanisms described in Section 10, without affecting the lawfulness of processing before withdrawal.

5. Cookies and similar technologies

We use cookies and similar technologies to operate our website, enable core features, remember your preferences, analyze traffic, and, where consented, personalize marketing.

Where required by EU law, non‑essential cookies (such as analytics and advertising cookies) are only set after you provide consent via our cookie banner or settings. You can change your cookie preferences at any time via our cookie settings.

More information about the types of cookies we use and their retention periods is provided in our Cookie Policy.

6. When we act as a processor

When our customers upload or connect personal data to our Services, we process that data solely on their documented instructions, as set out in our data processing agreements (DPAs) or service contracts.

In this context, our customers are responsible for providing appropriate privacy notices, choosing the lawful basis, and responding to data subject requests for the data they control.

7. Sharing and international transfers

We do not sell your personal data. We may share personal data with the following categories of recipients, only as necessary and subject to appropriate safeguards:

• Service providers (processors) that support our operations, such as cloud hosting providers, email delivery platforms, analytics providers, CRM tools, payment processors, and security services.
• Professional advisers (e.g., lawyers, accountants, auditors), banks, and insurers.
• Business partners or resellers involved in delivering our Services to you, where relevant.
• Public authorities or other third parties, where required by law or necessary to protect rights, safety, or enforce legal claims.

Because we provide software, AI and cloud solutions, your personal data may be transferred outside the European Economic Area (EEA), including to countries that may not provide the same level of data protection. Where this occurs, we use appropriate safeguards, such as European Commission Standard Contractual Clauses or other approved transfer mechanisms, and implement technical and organizational measures to protect your data.

8. Data retention

We keep personal data only for as long as necessary to fulfil the purposes described in this policy, including any legal, accounting or reporting requirements.

Retention periods depend on the type of data and the context in which it was collected, but typically include:

• Customer account and contract data: stored for the duration of the contract plus the applicable statutory limitation period.
• Technical and usage logs: stored for security, troubleshooting and analytics for a limited period, then deleted or anonymized.
• Marketing data: stored until you unsubscribe, withdraw consent, or we consider it inactive for a defined period.

Where we process personal data on behalf of customers as a processor, retention is governed by the customer’s instructions and our contract with them.

9. Your rights under GDPR

Subject to certain conditions, you have the following rights regarding your personal data:

• Right of access – to obtain confirmation and a copy of personal data we hold about you.
• Right to rectification – to request correction of inaccurate or incomplete data.
• Right to erasure – to request deletion of your data in certain circumstances.
• Right to restriction – to request limitation of processing in certain cases.
• Right to data portability – to receive your data in a structured, commonly used and machine‑readable format and have it transmitted to another controller where technically feasible.
• Right to object – to object to processing based on legitimate interests or direct marketing.
• Right to withdraw consent – where processing is based on consent.

To exercise your rights, contact us at contact@theaureliaedge.com and clearly state your request and your relationship with us. If you submit a request on behalf of someone else, we may ask for proof of authorization.

If we are processing your data on behalf of a customer, we may redirect your request to that customer where appropriate.

10. How to manage marketing and cookies

You can opt out of marketing emails at any time by clicking the “unsubscribe” link in our emails or contacting us at contact@theaureliaedge.com.

You can manage your cookie preferences through our cookie banner or your browser settings; however, disabling certain cookies may affect how the website functions.

11. Security

We implement appropriate technical and organizational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.

These measures may include access controls, encryption in transit and at rest where appropriate, network security, regular testing, staff training, and incident response procedures.

No system can be guaranteed to be 100% secure, but we work to continuously improve our security practices in line with industry standards.

12. Children’s data

Our Services are intended for business users and adults and are not directed to children under 16 years of age. We do not knowingly collect personal data from children under this age. If you believe a child has provided personal data to us, please contact us so we can take appropriate steps, such as deletion, where required.

13. Statutory or contractual requirements

Where we need to collect personal data by law or under a contract and you fail to provide that data, we may not be able to perform the contract (for example, to provide Services or process payments). In such cases, we will explain the consequences at the time of collection.

14. Automated decision‑making

We generally do not use personal data for automated decision‑making, including profiling, that produces legal or similarly significant effects on you.

If this changes, we will inform you in advance and explain the logic involved, the significance and the potential consequences of such processing, as required by GDPR.

15. Your right to complain

If you have concerns about how we process your personal data, please contact us first so we can try to resolve your concerns.

You also have the right to lodge a complaint with your local supervisory authority in the EU/EEA, in particular in the Member State of your habitual residence, place of work or where an alleged infringement took place. Contact details of EU data protection authorities are available from the European Data Protection Board (EDPB).

16. Changes to this policy

We may update this Privacy Policy from time to time, for example to reflect changes in our Services, legal requirements, or data protection best practices.

When we make material changes, we will take appropriate steps to notify you, such as by posting a notice on our website or contacting you directly, and will indicate the date of the latest update at the top of this page.