Privacy Policy

What we collect

When you create an account we store your email address and (for password sign-ins) a bcrypt hash of your password. If you sign in with Google or Apple we store a stable provider subject identifier. The optional profile picture URL you provide is stored verbatim.

We store the projects, features, designs, issues, planning notes, and media you upload. Team members of a team project can read, edit, and add to that project's content. We log requests for security and operational debugging.

How we use it

We use your data to operate the service, send transactional email (password reset, team invitations), and improve the product. We do not sell personal data, and we do not show advertising in Aurora.

Your choices

You can edit or delete any of your projects from the project settings modal, change your email and password from the profile-settings dialog, and revoke OAuth links from the same place. Account deletion will be available before general availability — contact us in the meantime via the contact page.