Privacy Policy
Last Updated: November 29, 2025
Effective Date: November 29, 2025
1. Introduction
Aurora Enterprise FZ-LLC ("we," "our," or "us") operates the Aurora medical imaging platform ("Platform" or "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Platform.
By using our Platform, you consent to the data practices described in this Privacy Policy. If you do not agree with this Privacy Policy, please do not use our Platform.
2. Information We Collect
2.1 Information You Provide
- Account Information: Name, email address, organization name, and contact details when you create an account.
- Medical Images: Medical imaging files (DICOM, NIfTI, or other formats) that you upload to the Platform.
- Clinical Context: Information you provide about imaging studies, including modality, body region, and clinical questions.
- Communication: Messages, inquiries, and feedback you send to us.
2.2 Automatically Collected Information
- Usage Data: Information about how you access and use the Platform, including IP address, browser type, device information, and usage patterns.
- Log Data: Server logs, error logs, and system activity records.
- Cookies and Tracking: We use cookies and similar technologies to enhance your experience and analyze Platform usage.
3. How We Use Your Information
We use the information we collect to:
- Provide, maintain, and improve the Platform and its services
- Process and analyze medical images using our AI technology
- Generate analysis reports and summaries
- Communicate with you about your account, Platform updates, and support requests
- Ensure Platform security and prevent fraud or abuse
- Comply with legal obligations and enforce our Terms of Service
- Conduct research and development to improve our technology (using de-identified data only)
4. Data Storage and Retention
Storage: Your data is stored on secure servers with encryption at rest and in transit. We implement industry-standard security measures to protect your information.
Retention: We retain your data for as long as necessary to provide the Platform and comply with legal obligations. You may request deletion of your data at any time by contacting us.
De-identification: For research and development purposes, we may use de-identified data that cannot be linked back to you or your patients.
5. Data Sharing and Disclosure
We do not sell your personal information or medical data. We may share information only in the following circumstances:
- Service Providers: With trusted third-party service providers who assist in Platform operations (under strict confidentiality agreements)
- Legal Requirements: When required by law, court order, or government regulation
- Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)
- With Your Consent: When you explicitly authorize us to share information
6. Your Rights and Choices
You have the following rights regarding your personal information:
- Access: Request access to your personal information
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your personal information
- Data Portability: Request a copy of your data in a portable format
- Opt-Out: Opt out of certain data processing activities
- Withdraw Consent: Withdraw consent for data processing where applicable
To exercise these rights, please contact us at privacy@aurora-sg.com.
7. Protected Health Information (PHI)
Important: Do not upload Protected Health Information (PHI) or any patient-identifying data unless you have proper authorization and have executed a Business Associate Agreement (BAA) with us. Uploading PHI without proper authorization may violate healthcare privacy laws.
If you upload PHI, you represent and warrant that you have obtained all necessary consents and authorizations, and that you will comply with all applicable healthcare privacy laws, including HIPAA, GDPR, and local regulations.
8. Security Measures
We implement comprehensive security measures to protect your information:
- Encryption of data at rest and in transit (AES-256, TLS 1.3)
- Access controls and authentication mechanisms
- Regular security audits and vulnerability assessments
- Employee training on data protection and privacy
- Incident response procedures
9. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.
10. Children's Privacy
Our Platform is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Your continued use of the Platform after such changes constitutes acceptance of the updated Privacy Policy.
12. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Aurora Enterprise FZ-LLC
36 Robinson Road
#13-01, City House
UAE 068877
Email: privacy@aurora-sg.com
Phone: +65 [Phone Number]