Auralytics, Lda (NIF PT519390067), a company incorporated in Portugal, operating under the trade name Auralytics ("Auralytics", "we", "us", "our"), operates the Auralytics platform — a professional financial intelligence system designed for institutional investment teams. This Privacy Policy describes what information we collect, how we use it, and the choices available to you.
By accessing or using Auralytics, you acknowledge that you have read and understood this policy. If you are using the platform on behalf of an organization, you represent that you have the authority to bind that organization to this policy.
When you register for an account or contact us, we collect your name, email address, organization name, and job title. This information is used to provision your account, communicate service-related information, and fulfill contractual obligations.
We collect information about how you interact with the platform, including feature usage patterns, session activity, and search behavior within the application. This data is used exclusively to improve platform performance and user experience.
We automatically collect technical data including IP address, browser type and version, operating system, and referring URLs. This data is used for security monitoring, abuse prevention, and service optimization.
Payment processing is handled entirely by our third-party processors. We do not store, process, or have access to full payment card details.
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
The platform uses essential session cookies required for authentication and secure access. These cookies are necessary for the platform to function and cannot be disabled without affecting your ability to use the service. We do not use advertising cookies or behavioral tracking technologies for third-party targeting purposes.
We use aggregated, anonymized analytics to understand how the platform is used and where it can be improved. We work with infrastructure providers – including hosting, monitoring, and security services – who process data on our behalf under strict data processing agreements. These providers are prohibited from using your data for their own purposes.
All data is stored on enterprise-grade cloud infrastructure. Data at rest is encrypted using AES-256. All data in transit is encrypted using TLS 1.2 or higher across all endpoints. We rely on infrastructure providers whose platforms enforce these standards by default as part of their core security architecture. For a full overview of our security approach, see our Platform Security page.
We retain personal data only for as long as is necessary to fulfil the purposes for which it was collected, including to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Where no specific legal retention period applies, we apply the principle of data minimisation and delete or anonymise data once it is no longer required.
You may request deletion of your data at any time. Where deletion is not immediately possible due to backup or archival systems, data will be deleted at the earliest technically feasible point.
Depending on your jurisdiction, you may have the right to access, correct, delete, or export the personal data we hold about you. You may also have the right to object to certain types of processing or to withdraw consent where consent is the legal basis for processing.
To exercise these rights, contact us using the details provided on our website. We will respond within the timeframe required by applicable law – under GDPR, this is one calendar month from receipt of your request.
Where the General Data Protection Regulation applies, we process personal data on the following legal bases:
Where personal data is transferred outside the European Economic Area, we rely on Standard Contractual Clauses or other approved transfer mechanisms as required by applicable data protection law.
Auralytics is designed for professional institutional use. We do not knowingly collect personal data from individuals under the age of 16. If you believe we have inadvertently collected such data, please contact us immediately.
We may update this Privacy Policy periodically. Material changes will be communicated via email or a prominent notice within the platform at least thirty (30) days before taking effect. Continued use of the platform after the effective date constitutes acknowledgment of the updated policy.
For privacy-related inquiries or to exercise your data rights, contact us using the contact information provided on our website.