1. Introduction - This Privacy Policy explains how [Your Company Name] (referred to as "we," "us," or "our") collects, uses, and protects your personal data when you use our website https://auralis.design (the "Website") and interact with our forms and data collection processes.We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

‍2. Data Controller - Auralis Design is the data controller responsible for your personal data.Our registered address is: 17 Uplands Drive, EX4 7JZ, U.K.You can contact us regarding data protection matters at: salam@abdullaharoon.design

‍3. What Personal Data We Collect - We collect personal data that you provide to us directly when you:Fill out forms on our Website (e.g., contact forms, registration forms, survey forms).Subscribe to our newsletters or mailing lists.Request a service or information.Communicate with us via email, phone, or other means.The types of personal data we may collect include:

‍Identity Data: Your name, title, username, or similar identifier.
‍
‍Contact Data: Your email address, phone number, and postal address.

‍Technical Data: Your IP address, browser type, operating system, and other technical information. (This is often collected through cookies and similar technologies – see our Cookies Policy).

‍Usage Data: Information about how you use our Website and services.

‍Marketing and Communications Data: Your preferences in receiving marketing from us and your communication preferences.  Any other data you provide to us.

4. How We Use Your Personal Data - We use your personal data for the following purposes:To provide you with the services or information you have requested.To process your inquiries and respond to your communications.  To personalize your experience on our Website.To send you marketing communications where you have consented to receive them or where we have a legitimate interest (and you haven't opted out).To administer and improve our Website.To analyze Website usage and trends.To comply with our legal obligations.


‍5. Lawful Basis for Processing - We will only process your personal data when we have a lawful basis to do so. These lawful bases may include: Consent: You have given us clear consent to process your personal data for a specific purpose. Contract: The processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.  

‍Legal Obligation: The processing is necessary for us to comply with a legal obligation.  

‍Legitimate Interests: The processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.  

‍6. Data Sharing - We may share your personal data with the following categories of recipients:Service Providers: Third-party service providers who provide services to us, such as website hosting, data analytics, email delivery, and payment processing. We will have contracts in place with these providers to ensure they protect your data.

Professional Advisers: Our lawyers, accountants, and other professional advisers.

‍Regulatory Authorities: If we are required to do so by law, we may disclose your personal data to regulatory authorities.

‍Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring organization.  

‍7. International Data Transfers - We may transfer your personal data to countries outside of the UK. If we do so, we will ensure that appropriate safeguards are in place to protect your personal data, such as:Transferring data to countries that have been deemed to provide an adequate level of protection by the UK government.Using Standard Contractual Clauses approved by the Information Commissioner's Office (ICO).

‍8. Data Security - We have implemented appropriate technical and organizational measures to protect your personal data against unauthorized access, use, or disclosure. These measures may include:Encryption of data.Secure servers.Access controls.Regular security assessments.

However, no method of transmission over the Internet or method of electronic storage is completely secure. While we strive to protect your personal data, we cannot guarantee its absolute security.

‍9. Data Retention - We will only retain your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.  To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data, and the applicable legal requirements.  

‍10. Your Rights* - Under the UK GDPR and the Data Protection Act 2018, you have certain rights regarding your personal data:   

 * **Right to Access:** You have the right to request access to a copy of the personal data we hold about you.    

* **Right to Rectification:** You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.   

 * **Right to Erasure ("Right to be Forgotten"):** You have the right to request that we erase your personal data in certain circumstances.   

 * **Right to Restriction of Processing:** You have the right to request that we restrict the processing of your personal data in certain circumstances.    

* **Right to Data Portability:** You have the right to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller.    

* **Right to Object:** You have the right to object to the processing of your personal data in certain circumstances, including for direct marketing purposes.    

* **Right to Withdraw Consent:** If we are processing your personal data based on your consent, you have the right to withdraw your consent at any time.    

* **Right to Complain:** You have the right to lodge a complaint with the Information Commissioner's Office (ICO) if you have concerns about how we are processing your personal data.

‍11. Cookies* - Our Website uses cookies and similar technologies. Please refer to our separate Cookies Policy for detailed information about how we use cookies.

‍12. Links to Other Websites* - Our Website may contain links to other websites. This Privacy Policy only applies to our Website. We are not responsible for the privacy practices of other websites.

‍13. Changes to this Privacy Policy* - We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on our Website. You are advised to review this Privacy Policy periodically for any changes.

‍14. Contact Us* - If you have any questions or concerns about this Privacy Policy or our data processing practices, please contact us at:salam@abdullaharoon.design

‍Important Considerations and Next Steps: Cookies Policy: You must have a separate Cookies Policy that details the specific cookies you use, their purpose, and how users can manage their cookie preferences.

‍ICO Registration: Depending on the nature of your data processing activities, you may need to register with the Information Commissioner's Office (ICO) and pay a data protection fee.

‍Data Mapping: Conduct a data mapping exercise to understand exactly what personal data you collect, where it comes from, how it's used, and who it's shared with.

‍Subject Access Requests (SARs): Ensure you have procedures in place to handle Subject Access Requests (SARs) within the required timeframe (usually one month).

‍Legal Review: Crucially, have this privacy policy reviewed by a legal professional specializing in UK data protection law. Laws and guidance change frequently, and you need to ensure you're fully compliant.