Privacy Policy

Last updated: 9 April 2026

This Privacy Policy describes how Lazuar Solutions (“we”, “us”, or “our”) collects, uses, and protects your personal information when you use any of our platforms and services, including but not limited to Aura and any future products operated under the Lazuar Solutions brand.

By using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use our services.

1. Information We Collect

1.1 Information You Provide

• Account information: name, email address, phone number, and business details when you register as a tenant on any of our platforms.
• Client data: information your customers provide when interacting with your business through our platforms, including name, phone number, email, and any domain-specific details relevant to the platform you use.
• Payment information: billing details necessary to process subscription payments. Note that card details are handled directly by our payment processors and are never stored on our servers.
• Communications: messages, support tickets, and feedback you send to us.

1.2 Information Collected Automatically

• Usage data: pages visited, features used, timestamps, and interaction patterns.
• Device information: browser type, operating system, IP address, and device identifiers.
• Cookies: session cookies necessary for authentication and service functionality.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain our platforms and services.
• Process bookings, transactions, and related operations.
• Send transactional communications (confirmations, reminders, receipts).
• Send marketing communications where you have opted in (you may unsubscribe at any time).
• Provide customer support and respond to enquiries.
• Analyse usage to improve our services and develop new features.
• Detect, prevent, and address fraud, abuse, or technical issues.
• Comply with legal obligations.

3. Payment Processing

Subscription payments for our platforms are processed by Paddle.com Market Limited (“Paddle”), which acts as our Merchant of Record. When you subscribe, Paddle collects and processes your payment information directly. Paddle’s handling of your data is governed by the Paddle Privacy Policy.

Certain platforms may integrate additional payment processors (such as Stripe via Stripe Connect) for in-platform transactions. In those cases, tenant payment data is handled in accordance with the respective processor’s privacy policy.

We do not store credit card numbers or sensitive payment credentials on our servers.

4. Data Sharing & Third Parties

We may share your information with the following categories of third parties:

• Payment processors: Paddle (subscription billing) and other processors used for in-platform transactions.
• Messaging providers: email, SMS, and messaging API providers for transactional and marketing messages.
• Cloud infrastructure: hosting providers and content delivery networks that store and serve your data securely.
• Analytics: privacy-focused analytics tools to understand how our services are used.

We do not sell your personal information to third parties. We only share data as necessary to provide our services or as required by law.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with our services. If you cancel your subscription, we retain your data for 90 days to allow for reactivation. After this period, your data will be permanently deleted or anonymised.

We may retain certain information for longer periods where required by law, for legitimate business purposes (e.g., resolving disputes, enforcing agreements), or for financial record-keeping.

6. Data Security

We implement industry-standard technical and organisational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, and regular security audits. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you.
• Correct inaccurate or incomplete data.
• Delete your personal data (subject to legal retention requirements).
• Object to or restrict processing of your data.
• Data portability: receive your data in a structured, machine-readable format.
• Withdraw consent where processing is based on consent.
• Unsubscribe from marketing communications at any time.

To exercise any of these rights, please contact us at privacy@lazuar.com.

8. Cookies

Our platforms use essential cookies for authentication and session management. These are strictly necessary for the services to function and cannot be disabled. We do not use third-party advertising or tracking cookies.

9. International Data Transfers

Your data may be processed in countries other than your country of residence, including countries where our infrastructure providers operate. We ensure that appropriate safeguards are in place to protect your data in accordance with applicable data protection laws.

10. Children’s Privacy

Our services are business-to-business platforms and are not directed at individuals under the age of 18. We do not knowingly collect personal information from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of our services after changes are posted constitutes acceptance of the revised policy.

12. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: privacy@lazuar.com
• Company: Lazuar Solutions
• Website: lazuar.com