AURUM
AI Trading Coach

Privacy Policy

Last updated: May 2026

We collect the minimum data needed to run a paid SaaS, and we never sell your data. This page explains exactly what we store, why, and how to delete it.

What we collect

What we do NOT collect

Third parties we share with (only what's necessary)

Cookies

We use exactly one cookie: aurum_session. It's HTTP-only, Secure (HTTPS-only), SameSite=Lax, with a 30-day rolling expiry. It does not contain any personal data — only a random session token. No analytics, ad, or tracking cookies are set.

Data retention

Your rights

You can request access to, correction of, or deletion of your personal data at any time by contacting us in Discord. We respond within 30 days. If you are in the EU/UK you have the additional rights granted by the GDPR / UK GDPR (data portability, right to object, right to lodge a complaint with your local data-protection authority).

Security

We use HTTPS for all traffic, HttpOnly + Secure session cookies, PBKDF2-hashed passwords with strong iteration counts, server-side rate limiting, and an isolated production database. We will notify affected users within 72 hours of becoming aware of a confirmed breach involving their personal data.

Children

The Service is not intended for users under 18. We do not knowingly collect data from children.

Contact

For privacy questions or data-deletion requests, message the operator in the Aurum Discord.

See also: Terms of Service · Refund Policy