PRIVACY POLICY
Last updated: 21 February 2026
THE AURA CO. (“we”, “our”, “us”) operates this website and online store (the “Services”). We are committed to protecting and respecting your privacy.
This Privacy Policy explains how we collect, use, store and protect your personal data when you visit our website, place an order, or otherwise interact with us.
For the purposes of UK data protection law, including the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, THE AURA CO. is the data controller of your personal data.
PERSONAL DATA WE COLLECT
We may collect and process the following categories of personal data:
Contact Information
Name, billing address, delivery address, email address and telephone number.
Order & Transaction Information
Details of products purchased, order history, payment method, and transaction confirmations.
Payment Information
Payments are processed securely via Shopify and its authorised payment providers. We do not store full card details.
Account Information
Username, password and preferences (if you create an account).
Communications
Information you provide when contacting us, including customer support enquiries.
Technical & Usage Information
IP address, browser type, device type, operating system, time zone setting, pages visited and browsing behaviour through cookies and similar technologies.
HOW WE COLLECT YOUR DATA
We collect personal data:
• Directly from you when you place an order, create an account or contact us
• Automatically through cookies and similar technologies
• From Shopify and payment processors who support our store
• From delivery providers where necessary to complete your order
LAWFUL BASIS FOR PROCESSING
Under UK GDPR, we rely on the following lawful bases:
Contractual Necessity – To process and fulfil your orders.
Legal Obligation – To comply with tax, accounting and regulatory requirements.
Legitimate Interests – To operate, improve and secure our business and website.
Consent – For marketing communications where required.
You may withdraw consent for marketing at any time.
HOW WE USE YOUR PERSONAL DATA
We use your personal data to:
• Process and deliver your orders
• Manage returns and refunds
• Communicate with you about your order
• Provide customer support
• Send marketing communications (where you have opted in)
• Improve our website and customer experience
• Prevent fraud and ensure security
• Comply with legal obligations
MARKETING
If you opt in, we may send you promotional emails about products, offers and updates from THE AURA CO.
You can unsubscribe at any time by clicking the unsubscribe link in our emails or contacting us at guidance@theauraco.uk.
We do not sell your personal data.
HOW WE SHARE YOUR DATA
We may share your data with:
• Shopify (our e-commerce platform provider)
• Payment processors
• Delivery and fulfilment partners
• IT and website service providers
• Professional advisers (accountants, legal advisers)
• Authorities where required by law
All third parties are required to process your data lawfully and securely.
SHOPIFY
Our store is hosted by Shopify Inc. Shopify processes personal data to provide and improve the Services.
Your data may be transferred outside the UK or EEA. Where this occurs, appropriate safeguards such as Standard Contractual Clauses are used.
For more information, please see Shopify’s Privacy Policy at:
https://privacy.shopify.com
INTERNATIONAL DATA TRANSFERS
Where personal data is transferred outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR.
DATA RETENTION
We retain your personal data only for as long as necessary to:
• Fulfil the purposes we collected it for
• Meet legal, accounting or tax requirements
• Resolve disputes or enforce agreements
Order information is typically retained for at least 6 years for tax and accounting purposes.
YOUR RIGHTS
If you are based in the UK or EEA, you have the right to:
• Access your personal data
• Request correction of inaccurate data
• Request deletion (in certain circumstances)
• Restrict processing
• Object to processing
• Data portability
• Withdraw consent at any time (for marketing)
To exercise your rights, contact us at guidance@theauraco.uk.
We may request verification of identity before responding.
COMPLAINTS
If you are unhappy with how we process your personal data, please contact us first.
You also have the right to lodge a complaint with the UK supervisory authority:
Information Commissioner’s Office (ICO)
https://www.ico.org.uk
COOKIES
We use cookies and similar technologies to operate our website and improve your experience.
You can manage your cookie preferences through your browser settings. For more information, please see our Cookie Policy (if applicable).
CHILDREN
Our website is not intended for children under 16. We do not knowingly collect personal data from children.
SECURITY
We implement appropriate technical and organisational measures to protect your personal data. However, no internet transmission is completely secure.
CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised “Last updated” date.
CONTACT
If you have any questions about this Privacy Policy or how we handle your personal data, please contact:
THE AURA CO.
6 Nash Road
Willersey
WR12 7RG
United Kingdom
Email: guidance@theauraco.uk
THE AURA CO. is the data controller for the purposes of UK data protection legislation.