Auravia Back

Privacy Policy

Effective date: 2026-05-11

1. Controller

For the purposes of the EU/UK General Data Protection Regulation, the controller of your personal data is Auravia Ltd., Anthypolochagou Georgiou M.Savva, 26, SHOP 1-2, Geroskipou, 8201, Paphos, Cyprus. Contact our privacy team at privacy@fanclave.io.

2. What we collect

  • Account data — email address, password hash, display name, optional avatar.
  • Profile data — country, language, age-confirmation and any demographic info you choose to provide.
  • Transactional data — purchases, subscriptions, refunds, the payment-provider charge IDs (but not full card numbers, which never reach our systems).
  • Communications — messages you send to or receive from Creators on the Platform, including any AI-assisted replies.
  • Device and log data — IP address, user-agent, device identifiers, timestamps, error logs.
  • Age-verification data — date of birth and, where required, the result of a third-party verification check; we do not store ID document images uploaded for verification beyond the period necessary to complete the check.
  • Cookies and similar technologies — see the Cookies section.

3. Why we use it (lawful bases)

  • To provide the service — necessary for performance of our contract with you.
  • To process payments and prevent fraud — performance of contract and legitimate interests.
  • To comply with law — including 18 U.S.C. § 2257, tax, anti-money-laundering, and lawful requests from authorities.
  • To improve the Platform — legitimate interests, balanced against your privacy.
  • To send service announcements — performance of contract. Marketing emails, where applicable, are sent only with your consent and you can withdraw it at any time.

4. Sharing

We share personal data only with:

  • Payment processors (e.g. Telegram Stars, CCBill, Segpay, Epoch) — to process your purchases and refunds.
  • Infrastructure providers — cloud hosting, object storage, CDN, email delivery — under written data-processing terms.
  • AI providers — where Creators use AI-assisted messaging, the message content may be sent to a third-party model provider (e.g. OpenAI, Anthropic) for response generation, under the provider's commercial-data terms. These prompts are not used to train shared models.
  • Authorities — when legally required, after reviewing the request.
  • Successors — in connection with a merger, acquisition, or asset sale, subject to equivalent privacy commitments.

We do not sell personal data.

5. International transfers

Some sub-processors are located outside the EEA / UK. Where we transfer personal data internationally we rely on appropriate safeguards, including the European Commission's Standard Contractual Clauses and, for transfers from the UK, the UK International Data Transfer Addendum. A copy of the relevant safeguards is available on request at privacy@fanclave.io.

6. Retention

We retain account data while your account is active and for up to [24 months] after closure to handle disputes, fraud, and chargebacks. Transaction records and 2257 records are retained for the longer period required by applicable law. Logs are retained for [90 days] in most cases. After the retention period expires we delete or irreversibly anonymise the data.

7. Your rights

Depending on where you live, you may have the right to:

  • access the personal data we hold about you;
  • correct inaccurate data;
  • delete data, subject to legal retention obligations;
  • restrict or object to certain processing;
  • data portability;
  • withdraw consent where processing is based on consent;
  • lodge a complaint with your local supervisory authority.

To exercise any of these rights, contact privacy@fanclave.io. We will respond within the time required by law (typically one month).

8. Cookies

We use a small number of strictly-necessary cookies (session, authentication, CSRF) and, with your consent, optional analytics cookies. You can manage your preferences from the cookie banner or your browser settings. Disabling strictly-necessary cookies will break the Platform.

9. Security

We protect personal data with measures including TLS in transit, encryption at rest for sensitive fields, hashed passwords, scoped access controls for staff, audit logs, and regular review of dependencies and infrastructure. No system is perfectly secure; please use a unique strong password and enable two-factor authentication where offered.

10. Children

The Platform is strictly for adults. We do not knowingly collect personal data from anyone under 18. If we become aware that we hold such data we delete it immediately. Reports of underage users may be sent to abuse@fanclave.io.

11. Changes to this policy

We will post any material changes on this page and, where appropriate, notify you by email. Continued use of the Platform after the effective date constitutes acceptance of the updated policy.

12. Contact

privacy@fanclave.ioAuravia Ltd., Anthypolochagou Georgiou M.Savva, 26, SHOP 1-2, Geroskipou, 8201, Paphos, Cyprus.