Login

Table of Contents

Privacy Policy

Last Updated: Wed 17 Dec, 2025

Aura-X (“we”, “us”, “our”) is committed to protecting your privacy. This policy explains how we collect, use, share and protect your personal data when you use our website or services.

1. Data Controller

Aura-X is the data controller.

2. What Data We Collect

We may collect:

  • Personal identification data: name, email address, postal address, phone number;
  • Payment information: credit card / bank transfer data (via secure payment processors);
  • Course / service information: details of bookings, attendance, preferences;
  • Health / medical data: any information you supply about medical conditions if relevant for treatments / training;
  • Technical data: IP addresses, browser type, device type, operating system, page visited, duration;
  • Marketing data: your preferences for marketing, whether you have opted in / out. 
3. How We Use Your Data

We use your data to:

  • Provide you with the products, services, treatments or training you request;
  • Process payments, send booking confirmations, reminders, receipts etc.;
  • Personalise your experience, provide customer support;
  • Comply with legal obligations (safety, financial, regulatory etc.);
  • Send marketing communications only where you have opted in;
  • Improve our website, safety, security; analyse usage and trends.
4. Legal Basis for Processing

Depending on the purpose, we rely on:

  • Performance of a contract (e.g. fulfilling your bookings or orders);
  • Your consent (e.g. for marketing, cookies);
  • Legal obligations;
  • Legitimate interests (e.g. fraud prevention, improving our services), provided these do not override your rights.
5. Sharing Your Data

We may share your personal data:

  • With service providers who help us deliver services (payment processors, course platforms, courier / delivery services, IT hosting, marketing tools);
  • With regulatory or law enforcement authorities if required by law;
  • With health professionals, trainers etc., but only with your explicit consent (where needed).

We do not sell your personal data.

6. Data Retention
  • We keep your personal data only for as long as necessary for the purposes for which we collected it (e.g. fulfilment, legal obligations, dispute resolution).
  • Course records, health information etc. may be retained longer if required by law or for safety reasons.
7. Your Rights

Under UK data protection law (UK GDPR & Data Protection Act), you have rights including:

  • Access: you can request a copy of your personal data;
  • Rectification: correct inaccurate or incomplete data;
  • Erasure (“right to be forgotten”): in some circumstances;
  • Restrict processing;
  • Data portability;
  • Object to processing (especially for direct marketing);
  • Withdraw consent at any time (where processing is based on consent);
  • Lodge a complaint with a supervisory authority (UK Information Commissioner’s Office) if unhappy.
8. Security
  • We use appropriate technical and organisational measures (encryption, secure servers etc.) to protect your personal data against unauthorised or unlawful access, alteration, disclosure or destruction.
  • However, no system is 100% secure. We cannot guarantee absolute security.
9. International Transfers
  • If we need to transfer your data outside the UK, we will ensure adequate safeguards are in place (such as standard contractual clauses or other lawful transfer mechanisms).
10. Changes to this Policy
  • We may update this Privacy Policy from time to time. We will notify you of major changes by posting the new version on our website and, if appropriate, by email.
Login