1. Accountability
AuraBook is responsible for personal information under its control. A designated Privacy Officer oversees compliance with this policy and PIPEDA.
This page is maintained by AuraBook to explain how we handle personal information in accordance with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA). It is not an independent certification or audit. Last updated: July 15, 2026.
Questions, access requests, and complaints about your personal information should be directed to our Privacy Officer.
Email: privacy@aurabook.app
Mailing address: [Add your business mailing address]
AuraBook is responsible for personal information under its control. A designated Privacy Officer oversees compliance with this policy and PIPEDA.
We identify why we collect personal information at or before the time of collection — to create accounts, take bookings, process payments, send reminders, and operate the salon marketplace.
We collect, use, and disclose personal information only with your knowledge and consent, except where law allows or requires otherwise. You may withdraw consent at any time, subject to legal or contractual restrictions.
We limit the personal information we collect to what is necessary for the purposes identified — typically name, contact details, booking history, and (for salon owners) business details.
Personal information is used only for the purposes for which it was collected and is retained only as long as necessary to fulfill those purposes or to meet legal obligations.
We keep personal information as accurate, complete, and up-to-date as needed. You can review and correct your profile from your account at any time.
We protect personal information with appropriate safeguards: encryption in transit (HTTPS), role-based access controls, row-level security on our database, and least-privilege secrets management.
Our policies and practices are made available through this page. Contact our Privacy Officer for additional detail about how we manage personal information.
On request, we will tell you what personal information we hold about you, how it is used, and to whom it has been disclosed. We will provide access in a reasonable time and at minimal or no cost.
You may challenge our compliance with PIPEDA by contacting the Privacy Officer. Unresolved concerns may be referred to the Office of the Privacy Commissioner of Canada (priv.gc.ca).
We use trusted service providers to operate AuraBook. They process personal information on our behalf, under contract, and only for the purposes we direct.
Some providers may store data outside Canada. Where that is the case, the information remains subject to the laws of the jurisdiction in which it is held, in addition to the protections in this policy.
We retain personal information for as long as your account is active and for a reasonable period afterward to meet legal, accounting, or operational obligations. You can request deletion of your account and associated personal information by contacting the Privacy Officer.
In the event of a breach of security safeguards involving personal information that creates a real risk of significant harm, we will notify affected individuals and the Office of the Privacy Commissioner of Canada as required by PIPEDA, and keep a record of the breach.
For any privacy-related question, please contact privacy@aurabook.app.