AURUMSign In
Legal

Privacy Policy

Effective: 2025

1. Information We Collect

AURUM (“we”, “our”) collects information you provide directly, including legal name, email, phone, date of birth, country, nationality, and verification documents (government ID, bank statements, portfolio statements, property/business documents).

2. How We Use Information

Information is used solely to verify identity and net worth, process membership payment, operate the network, and communicate with you. We do not sell, share, or rent personal data to any third party.

3. Encryption & Storage

All documents are encrypted at rest. Private messages are end-to-end encrypted; AURUM servers store ciphertext only and cannot read message contents. Administrators may view metadata but not message contents.

4. Member Rights

You may access, correct, and request deletion of your personal data at any time. Deletion requests are processed by administration; lifetime membership fees are non-refundable.

5. GDPR & DPDP Compliance

AURUM honors data subject rights under GDPR (EEA) and India’s DPDP Act (2023): access, rectification, erasure, restriction, portability, and objection. Contact administration to exercise these rights.

6. Security

We employ bcrypt password hashing, JWT authentication, mandatory two-factor authentication on every sign-in, rate limiting, account lockout on repeated failed attempts, and TLS for all transit.

7. Contact

Contact administration through encrypted correspondence only. The AURUM administrators do not engage outside the verified member channels.