This Privacy Policy explains what personal data AURÈ (“we”, “us”) collects when you visit weaure.com, why we collect it, whom we share it with, and the rights you have under the GDPR and applicable data-protection law. We keep data collection to the minimum needed to answer your enquiry and run the site.
01Who we are (data controller)
AURÈ is an independent visual branding studio operating from Warsaw (Poland) and Astana (Kazakhstan) and serving clients worldwide. For the purposes of the EU General Data Protection Regulation (GDPR), AURÈ acts as the
data controller for personal data processed through weaure.com. You can reach us for any privacy matter at
info@weaure.com; we will provide our full controller details on request.
02What personal data we collect
We collect only what we need:
- Enquiry data you submit through the contact form: name, email address, company name, the service you're interested in, and the message you write. Providing this is voluntary, but without at least a name and email we can't reply.
- Technical & usage data: if you accept analytics, Google Analytics collects pseudonymised information such as pages viewed, approximate region (derived from a truncated IP), device and browser type, and referring source. IP anonymisation is enabled.
- Server logs & security data: our hosting provider (Cloudflare) may process connection data such as IP address and timestamps to deliver the site, prevent abuse and apply spam protection to the form.
- Fonts: pages load typefaces from Google Fonts, which may receive your IP address in order to serve the font files.
We do not knowingly collect special categories of data (e.g. health, ethnicity, beliefs), and we ask you not to include such data in your message.
03Why we use it and our legal basis
Under Article 6 GDPR we rely on the following bases:
- To respond to your enquiry and take pre-contractual steps — Art. 6(1)(b) (steps at your request prior to a contract) and our legitimate interest in answering you, Art. 6(1)(f).
- Analytics and non-essential cookies — your consent, Art. 6(1)(a), given via the cookie banner and withdrawable at any time.
- Security, spam prevention and running the site — our legitimate interest, Art. 6(1)(f).
We do not sell your personal data and do not use it for third-party advertising or profiling.
04Cookies and similar technologies
The site is fully functional without cookies. We set no analytics or marketing cookies until you press “Accept” in the cookie banner. Essential technical storage may be used to remember your language and your cookie choice. You can withdraw consent at any time by clearing this site's data in your browser, which makes the banner appear again so you can choose afresh.
05Who we share data with (processors)
We share personal data only with service providers acting as our
processors under appropriate data-processing terms:
- Cloudflare, Inc. — website hosting, form delivery and storage, security and anti-abuse.
- Google (Google Analytics & Google Fonts) — only where you have consented to analytics, and, for fonts, to deliver typefaces.
We do not disclose your data to other third parties except where required by law.
06International data transfers
Some of our processors are based outside the EU/EEA (for example in the United States). Where personal data is transferred internationally, it is protected by appropriate safeguards under GDPR — such as the European Commission's Standard Contractual Clauses or an adequacy decision. You can request more information about these safeguards by contacting us.
07How long we keep your data
We keep enquiry data only for as long as needed to handle your request and, if we begin working together, for the duration of our engagement plus any period required to meet legal or accounting obligations — after which it is deleted. Analytics data is retained according to Google Analytics' configured retention period.
08Your rights
Subject to the conditions in the GDPR, you have the right to:
- access the personal data we hold about you;
- have inaccurate data corrected (rectification);
- have your data erased (“right to be forgotten”);
- restrict or object to our processing;
- receive your data in a portable format (data portability);
- withdraw consent at any time, without affecting prior lawful processing.
To exercise any of these, email
info@weaure.com. If you are in the EU/EEA you also have the right to lodge a complaint with a supervisory authority — in Poland, the President of the Personal Data Protection Office (
UODO).
09Security
We use reasonable technical and organisational measures to protect your data, including encrypted connections (HTTPS), access controls, and spam and abuse protection on our form. No method of transmission over the internet is completely secure, but we work to keep the risk low.
10Children and automated decisions
Our services and this website are directed at businesses and their founders, not at children; we do not knowingly collect data from anyone under 16. We do not carry out automated decision-making or profiling that produces legal or similarly significant effects.
11Changes to this policy
We may update this policy as the studio, its tools and the law evolve. The “last updated” date at the top always reflects the current version; significant changes will be made clear on this page.
This policy is provided for transparency and is not legal advice.