← Back to login

Privacy Policy

Last updated: March 5, 2026

Aumni Digital (“we”, “us”, or “our”) operates the Aumnify platform (“Service”). This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

  • Name — your display name
  • Email address — used for authentication and communication
  • Password — stored in hashed form; we never store or have access to your plaintext password
  • Role — your access level within the platform (e.g., administrator)
  • Organization association — the client account you belong to, if applicable

1.2 Automatically Collected Information

When you use the Service, we automatically collect:

  • IP address — recorded with each session for security purposes
  • User agent — your browser type and version
  • Session data — authentication tokens and session identifiers
  • Timestamps — account creation, last login, and activity times

1.3 Content You Create

We store content you create through the Service, including blog posts, drafts, prompts, image configurations, scheduled content, and any other material you submit. This content belongs to you or your organization.

1.4 AI-Generated Content

If your organization has AI features enabled, prompts you submit and the resulting generated content (text and images) are processed through third-party AI providers. See Section 5 for details.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Authenticate your identity and manage your account
  • Enforce role-based access controls and multi-tenant isolation
  • Process AI content generation requests on your behalf
  • Communicate with you about your account or the Service
  • Detect, prevent, and address security issues or abuse
  • Comply with legal obligations

3. Data Storage & Security

Your data is stored in a PostgreSQL database. Passwords are cryptographically hashed before storage. Session tokens are generated securely and expire automatically. We use HTTPS for all data transmission and implement secure cookie policies including cross-subdomain protections where applicable.

While we implement commercially reasonable security measures, no method of electronic storage or transmission is 100% secure. We cannot guarantee absolute security.

4. Data Sharing & Disclosure

We do not sell your personal information. We may share your information only in these circumstances:

  • Within your organization — administrators of your client account can see user accounts and content associated with that organization
  • Service providers — hosting and infrastructure providers who process data on our behalf under contractual obligations
  • AI providers — when you use AI generation features, prompts and related data are sent to third-party AI services (see Section 5)
  • Legal requirements — when required by law, regulation, legal process, or governmental request
  • Protection of rights — to enforce our terms, protect our rights, or ensure the safety of our users

5. Third-Party AI Services

If AI content generation is enabled for your organization, we integrate with third-party AI providers to generate text and images. When you submit a prompt:

  • Your prompt is sent to the configured AI provider for processing
  • The generated output is returned to and stored within the Service
  • Each AI provider has its own privacy policy and data handling practices
  • We recommend reviewing the privacy policies of the AI providers your organization uses

AI features are opt-in at the organization level and can be disabled at any time by your organization's administrator.

6. Data Retention

We retain your account information for as long as your account is active or as needed to provide the Service. Session data is retained for the duration of the session and cleaned up upon expiration. If you or your organization request account deletion, we will delete your personal data within 30 days, except where retention is required by law.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate personal data
  • Request deletion of your personal data
  • Object to or restrict processing of your personal data
  • Data portability — receive your data in a structured, machine-readable format
  • Withdraw consent where processing is based on consent

To exercise any of these rights, contact us at privacy@aumnidigital.com.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.

9. Children's Privacy

The Service is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

Aumni Digital
Email: privacy@aumnidigital.com