1. Information we collect
We collect the minimum information needed to deliver the Auramika experience.
You provide directly
- Account details — name, mobile number, email, date of birth, gender (optional).
- Address book — shipping addresses, pin code, and contact phone.
- KYC for high-value purchases — PAN, GSTIN (optional), as required by Indian law for jewellery transactions above prescribed thresholds.
- Payment data — handled by PCI-DSS compliant payment partners; we never store full card numbers.
- Aura quiz responses, wishlist, cart, custom-order briefs, and ring sizing data you submit through the Mirror or AR features.
Collected automatically
- Device data — model, OS, app version, advertising identifier (mobile), language.
- Usage data — screens viewed, products tapped, time on page, crash logs.
- Approximate location derived from IP for fraud prevention and showing nearby BIS-hallmarked partner ateliers.
From third parties
- Payment status from Razorpay / HDFC payment gateway.
- Logistics events from our shipping carriers (BlueDart, DTDC, Sequel for insured high-value).
- Authentication signals if you sign in via Google or Apple.
2. How we use information
- To create and operate your Auramika account, process orders, and deliver insured shipments.
- To personalise the Aura Mirror, recommendations, and bespoke design briefs.
- To verify identity and meet anti-money-laundering, PMLA, and BIS hallmarking obligations.
- To send transactional messages (order, OTP, dispatch) and, if you opt in, marketing.
- To prevent fraud, abuse, and to enforce our Terms.
- To improve our products, run analytics, and conduct internal research.
We process data on the legal bases of contract performance, your consent, our legitimate interests, and compliance with law (DPDP Act 2023, IT Act 2000, Consumer Protection Act 2019, GDPR for EU residents).
3. Sharing & disclosure
We do not sell your personal data. We share it only with:
- Atelier partners fulfilling your order — name, shipping address, contact, and item.
- Logistics & insurance providers handling shipment of bullion-grade jewellery.
- Payment processors for transaction settlement.
- Cloud & analytics vendors (Google Cloud, Firebase, Sentry) under data-processing agreements.
- Government authorities when required by valid legal process.
- Successors in the event of a merger, acquisition, or asset sale, with notice to you.
4. Cookies & analytics
Our website uses cookies and similar technologies for session management, cart persistence, fraud prevention, and aggregate analytics. You can control cookies via your browser. The mobile apps use SDKs from Firebase Analytics, Crashlytics, and Razorpay; you can opt out of analytics in app settings.
5. Security & retention
We use TLS in transit, encryption at rest for sensitive fields, role-based access, and periodic audits. No system is perfectly secure; we will notify you and the Data Protection Board within statutory timelines if a breach affecting your data occurs.
We retain account data while your account is active, and for up to 8 years after closure to satisfy tax, GST, and consumer-protection record-keeping requirements. Marketing preferences are honoured immediately.
6. Your rights
Subject to applicable law, you can:
- Access, correct, or update your information from Profile.
- Withdraw consent for marketing at any time.
- Request a copy of your data or its erasure — see Delete my account.
- Lodge a grievance with our Grievance Officer (below) or with the Data Protection Board of India.
7. Children
Auramika is intended for users aged 18 and above. We do not knowingly collect data from minors. If you believe a minor has provided data, contact us so we can remove it.
8. Changes to this policy
We may update this policy from time to time. Material changes will be notified by email and in-app banner at least 7 days before they take effect.
9. Grievance officer & contact
Auramika Care
Email · care@auramika.in
WhatsApp · +91 80970 76063
Response window · within 72 hours, resolution within 30 days as per the IT Rules 2021.