Avrora VPN — Fast & Secure VPN

1. General Provisions

1.1 These Rules of storage and processing of confidential data about Users of Avrora VPN service (hereinafter referred to as "Rules") are developed and placed by Stanum LLC (hereinafter referred to as "Company"), and determine the order of processing and protection of information of the persons using Avrora VPN service (hereinafter referred to as "Service").

1.2 The terms used but not defined in these Rules have the meaning provided in the Rules of Service usage.

1.3 The purpose of these Rules is to ensure proper protection of information about the Users of the Service, including their personal data, from unauthorised access and disclosure.

1.4 By using the Service, the User agrees to the terms of these Rules. The current version is available at avroravpn.com/privacy.

2. Purpose of processing information about the User

2.1 In order to fulfil the Company's obligations to the User and provide the User with the rights provided for in the Avrora VPN Service Terms of Use, the Company collects, stores, uses, and processes the information obtained with respect to the User when using the Service.

3. Composition of information about Users

3.1 Information provided by the User for the use of the Service, including the User's personal page ID in Telegram messenger, email address, Google or Apple ID account data.

3.2 Statistical and other data on how the User interacts with the Service (for example, the number of devices connected, the amount of traffic consumption).

4. Principles of Personal Data Processing

4.1 Personal data processing is carried out on the basis of the principles of lawfulness, good faith, compliance of purposes, and inadmissibility of combining databases created for incompatible purposes.

4.2 Personal data of Users are stored exclusively on electronic media and are processed using automated systems.

4.3 The personal data of Users are not transferred to any third parties, except for the cases expressly provided by applicable law.

5. Rights of Users

5.1 Users have the right to: exercise free access to information about themselves; demand clarification, blocking or destruction of incomplete, outdated, or inaccurate data; receive information from the Company regarding the processing of personal data.

6. Measures to protect information about Users

6.1 The Company takes technical and organisational measures to ensure protection of the User's personal data from unlawful or accidental access, destruction, modification, blocking, copying, distribution, as well as from other unlawful actions.

7. Limitation of the Rules

7.1 The Company shall not be liable for the actions of third parties who gained access to information about the User as a result of using the Service.

8. Appeals of Users

8.1 Users have the right to send requests by contacting @avrora_vpnbot on Telegram or by emailing [email protected].

8.2 The Company undertakes to consider and respond to the User's request within 30 days from the moment of receipt.

9. Use of Mobile Applications (iOS and Android)

9.1 Sign-up and login. The Avrora VPN mobile applications (App Store and Google Play) allow account creation via Email, Apple ID (Sign in with Apple), or Google account (Sign in with Google). Authentication is handled by Firebase Authentication (Google LLC). The Company receives only email, name, and a unique user identifier (UID) needed for subscription management.

9.2 Device identifiers. To associate an active subscription with a device, the Company stores an anonymized hardware identifier (HWID) generated by the application. The Company does NOT use advertising identifiers (IDFA, AAID).

9.3 Subscriptions and payments. Subscription payments are processed exclusively through Apple App Store (Apple Inc.) and Google Play Billing (Google LLC). Payment data is handled by Apple/Google; the Company does NOT have access to bank card details. Active subscriptions are managed and cancelled in App Store or Google Play settings.

9.4 Children. The application is not intended for individuals under 13 years of age. The Company does not knowingly collect data from children.

9.5 Third-party services: Firebase Authentication (Google LLC), Apple App Store (Apple Inc.), Google Play (Google LLC). Data transfers to these services are governed by their respective privacy policies.

10. Data Retention

10.1 Account and associated data — until the User deletes the account.

10.2 Financial and tax records (purchase receipts, refunds) — 3 years in anonymized form after the last transaction (tax law requirement).

10.3 Security and abuse-prevention logs — up to 90 days in anonymized form.

10.4 Local device data (language, onboarding flag) is removed together with the application.

11. Account Deletion

11.1 The User has the right to delete their account and associated data at any time. Full instructions are available on the Account Deletion page.

11.2 Account deletion is available directly in the mobile application (Settings → Delete profile) or by emailing [email protected]. Email requests are processed within 7 business days.

Privacy Policy