Privacy Policy

This Privacy Policy ("Policy") governs the collection, processing, storage, transfer, and disclosure of information obtained from users ("You," "Your," "User") of the Aura AFK platform, including all associated websites, applications, services, and infrastructure (collectively, "the Service"), operated by Aura AFK ("we," "us," "our," "the Company"). By accessing or utilizing the Service in any capacity, You expressly acknowledge and consent to the practices described herein. If You do not agree to this Policy, You must immediately discontinue use of the Service.

1. Scope and Applicability

This Policy applies to all information collected through the Service, regardless of the method of access (web browser, API, third-party integration, or otherwise). This Policy extends to all data processed in connection with account registration, authentication, service provisioning, transactional communications, and all ancillary operations necessary to deliver the Service. We reserve the right to amend this Policy at our sole discretion; continued use of the Service following any modification constitutes Your binding acceptance of the revised terms.

2. Categories of Information Collected

2.1 Account & Identity Data. Upon registration and throughout Your use of the Service, we collect and process personally identifiable information including, but not limited to: electronic mail addresses, self-selected usernames, cryptographically hashed authentication credentials, unique account identifiers, role designations, and account creation timestamps. Where authentication is facilitated through third-party OAuth providers (including, without limitation, Discord and Google), we receive and store external profile identifiers, display names, and associated electronic mail addresses as furnished by the respective provider.

2.2 Service Configuration Data. We collect and retain all configuration parameters provided by You in connection with bot deployment, including server addresses, port configurations, proxy credentials, scheduling parameters, macro definitions, behavioral settings, and any commands or instructions designated for automated execution.

2.3 Technical & Telemetry Data. We automatically collect device and connection metadata including IP addresses, browser user-agent strings, referring URLs, access timestamps, session duration metrics, feature utilization patterns, API request logs, and error diagnostic information. This data is collected through server-side logging mechanisms and, where applicable, client-side instrumentation.

2.4 Cookie & Tracking Technologies. The Service employs HTTP cookies and equivalent local storage mechanisms for session management, authentication persistence, and preference retention. Additional analytics and marketing tracking technologies are deployed only upon receipt of Your affirmative consent through our cookie preference interface. Essential cookies required for core authentication and session functionality cannot be disabled without rendering the Service inoperable.

2.5 Communication & Preference Data. We record Your communication preferences, including promotional email opt-in/opt-out status, notification settings, and any correspondence submitted through our support channels.

3. Purpose and Legal Basis for Processing

Your information is processed for the following purposes: (a) provisioning, operating, and maintaining the Service and all constituent features; (b) authenticating User identity and enforcing access controls; (c) establishing and maintaining persistent connections to third-party game servers on Your behalf; (d) processing transactions and administering billing operations; (e) transmitting transactional communications including account verification, security alerts, and service notifications; (f) delivering promotional communications where explicit consent has been obtained; (g) detecting, preventing, and mitigating fraudulent, abusive, or unauthorized use of the Service; (h) complying with applicable legal obligations, regulatory requirements, and lawful governmental requests; (i) conducting internal analytics to improve service quality, reliability, and performance; and (j) enforcing our Terms of Service and protecting the rights, property, and safety of the Company and its users.

4. Disclosure of Information

We do not sell, rent, or trade Your personally identifiable information to third parties for their independent marketing purposes. We may disclose Your information under the following circumstances: (a) to third-party service providers engaged to perform functions on our behalf, including but not limited to email delivery services (Brevo/Sendinblue), payment processors, and infrastructure providers, each bound by contractual confidentiality obligations; (b) to Mojang Studios, Microsoft Corporation, and associated APIs as necessary for authentication and session management; (c) in response to valid legal process, including subpoenas, court orders, or governmental requests, where we have a good faith belief that disclosure is required by law; (d) to protect and defend the rights, property, or safety of the Company, our users, or the public; (e) in connection with a merger, acquisition, corporate restructuring, or sale of assets, subject to the acquiring entity's assumption of the obligations set forth in this Policy; and (f) with Your explicit consent or at Your direction.

5. Data Security Measures

We implement and maintain commercially reasonable administrative, technical, and physical safeguards designed to protect the confidentiality, integrity, and availability of Your information. Our security program incorporates industry-standard encryption, access controls, and monitoring practices that are regularly reviewed and updated to address emerging threats. Notwithstanding the foregoing, no system of electronic storage or method of data transmission can be guaranteed to be absolutely secure, and we cannot warrant or guarantee the security of information transmitted to or stored by the Service. You acknowledge and accept the inherent risks associated with electronic data transmission and storage. We do not disclose specific details of our security infrastructure, protocols, or implementation methodologies, as doing so could compromise the effectiveness of such measures.

6. Data Retention and Disposal

We retain Your personal information for the duration of Your active account and for a reasonable period thereafter as necessary to fulfill the purposes outlined in this Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Upon account deletion, we will undertake commercially reasonable efforts to purge personally identifiable information from our active systems within thirty (30) calendar days, provided that residual copies may persist in backup systems, archived logs, or disaster recovery infrastructure for a period not exceeding ninety (90) days. Anonymized and aggregated data that cannot reasonably be used to identify You may be retained indefinitely for analytical and statistical purposes.

7. Your Rights and Choices

Subject to applicable law and the legitimate operational requirements of the Service, You may: (a) access and review the personal information associated with Your account through the dashboard interface; (b) rectify inaccurate or incomplete information through account settings; (c) request deletion of Your account and associated data, subject to the retention provisions of Section 6; (d) withdraw consent for promotional communications at any time through account settings or unsubscribe mechanisms; and (e) modify cookie preferences through the consent management interface. We reserve the right to verify Your identity prior to processing any data subject request and to deny requests that are manifestly unfounded, excessive, or that would compromise the security or operational integrity of the Service. Requests may be submitted to support@aurafk.com.

8. International Data Transfers

Your information may be transferred to, processed, and stored in jurisdictions other than Your country of residence, where data protection laws may differ from those in Your jurisdiction. By using the Service, You expressly consent to such transfers. We will take reasonable steps to ensure that Your information receives an adequate level of protection in the jurisdictions in which we process it.

9. Children's Privacy

The Service is not directed to individuals under the age of thirteen (13). We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13 without verifiable parental consent, we will take commercially reasonable steps to delete such information.

10. Modifications to This Policy

We reserve the right to modify, amend, or replace this Policy at any time at our sole discretion. Material changes will be communicated through the Service interface or via electronic mail. Your continued use of the Service following the posting of any revised Policy constitutes Your acceptance of and agreement to the revised terms. It is Your responsibility to review this Policy periodically.

11. Contact Information

For inquiries, concerns, or requests pertaining to this Privacy Policy or the processing of Your personal information, please contact: support@aurafk.com.