BETAAuraPOS is in active development. Not intended for critical production use.Learn more

Privacy policy

Last updated: 26 April 2026

This policy describes how AuraPOS processes personal data collected via the website www.aurapos.be, in compliance with the General Data Protection Regulation (GDPR — EU 2016/679) and the Belgian Act of 30 July 2018 on the protection of natural persons with regard to the processing of personal data.

1. Data controller

The data controller for data collected via this website is the publisher of the website, whose details appear in the Legal information page. Email: contact@aurapos.be.

2. Data collected

The website is designed to minimize personal data collection. We collect: (a) Automatic technical data: IP address, browser type, operating system, pages visited, visit duration, referrer — collected by server logs for security and anonymous statistics. (b) Language preference cookie 'NEXT_LOCALE': stores the language chosen by the visitor. No tracking cookies, no advertising cookies. (c) Messages sent to the AI agent (chat): forwarded to Anthropic to generate the response — see section 5. (d) Email address: only if you contact us via contact@aurapos.be.

3. Purpose of processing

Data is processed exclusively to: (a) Operate the website and the AI agent. (b) Detect and prevent security incidents (abuse, attacks). (c) Reply to messages sent by email. (d) Comply with our legal and regulatory obligations. No commercial, advertising, or third-party resale use takes place.

4. Legal basis

Processing of technical data relies on the publisher's legitimate interest in ensuring the proper operation and security of the website (Article 6.1.f of the GDPR). Sending messages to the AI agent relies on the user's implicit consent when interacting with the chat (Article 6.1.a).

5. Transfers to third parties

Anthropic (USA): messages you send to our AI agent are forwarded to the Claude API to generate the response. Anthropic operates under the EU Standard Contractual Clauses for transfers outside the EU. No other data is transmitted. ⚠ Recommendation: do not share any sensitive data (real VAT numbers, customer data, passwords) in the AI chat — it's designed for questions about AuraPOS, not for processing confidential data.

6. Retention period

Server logs are kept locally for 30 days then automatically deleted. The language preference cookie is kept for 1 year in the browser (you can delete it at any time). Conversations with the AI agent are not stored on the AuraPOS server side, but Anthropic may retain them according to their own privacy policy (https://www.anthropic.com/privacy).

7. Your rights (GDPR)

You have the following rights: (a) Right of access to data concerning you. (b) Right of rectification. (c) Right to erasure ('right to be forgotten'). (d) Right to restriction of processing. (e) Right to data portability. (f) Right to object. (g) Right to withdraw consent at any time. To exercise these rights, write to contact@aurapos.be specifying your request. We will respond within a maximum of 30 days. If you believe we are not respecting your rights, you can lodge a complaint with the Belgian Data Protection Authority (DPA): https://www.dataprotectionauthority.be/.

8. Security

The website is served over HTTPS (TLS 1.3) with a Let's Encrypt certificate that is automatically renewed. Hosting is provided by IONOS on a dedicated VPS, with firewall and automatic security updates. Communications with the Claude API (AI chat) are also encrypted. Despite these measures, never share sensitive data in the AI chat.

9. Changes to this policy

This policy may be updated to reflect legal, technical or organizational changes. The 'Last updated' date at the top of the page indicates the version in effect. Major changes will be notified via a banner on the website.

For any questions regarding your personal data, please contact: contact@aurapos.be

Back to home