Introduction
This Privacy Policy explains how aurelia collects, uses, stores, and protects information when you use our AI travel concierge, enterprise products, websites, and related services.
We design our data practices around least-privilege access, clear retention limits, and enterprise-grade controls.
Information We Collect
We collect account details, contact information, travel preferences, booking requests, payment metadata, company policy settings, support messages, and usage telemetry needed to operate aurelia.
For enterprise customers, administrators may provide employee directory data through SSO or SCIM provisioning.
How We Use Information
We use information to book and manage travel, enforce policy, prevent fraud, provide support, improve reliability, and satisfy legal or security obligations.
We do not sell personal information or use travel data for third-party advertising.
Security Controls
Information is encrypted in transit and at rest. Access is restricted by role, logged, reviewed, and protected by multi-factor authentication.
Enterprise plans include audit logs, SSO, SCIM, data residency options, and contractual security commitments.
Data Sharing
We share information with airlines, hotels, restaurants, payment processors, expense systems, and infrastructure providers only as needed to provide the service.
Subprocessors are reviewed for security posture and listed in our Trust Center.
Your Rights
Depending on your location, you may request access, correction, deletion, export, or restriction of your personal information.
Requests can be sent to privacy@aurelia.com. We respond within required legal timeframes.
Retention
We retain information only as long as needed for service delivery, legal compliance, security, accounting, and dispute resolution.
Enterprise customers may configure retention periods by workspace where supported.
Contact
Questions about this Privacy Policy can be sent to privacy@aurelia.com or by mail to aurelia, Inc., Legal Department.