AuraParse Logo

AuraParse

Privacy Policy

Last Updated: December 2, 2025

1. Introduction

Welcome to AuraParse ("we," "our," or "us"), a product owned and operated by Simpaira Ltd. We are committed to protecting your privacy and ensuring the security of your data. This Privacy Policy explains how we handle your information when you use our API services.

2. Data We Collect

  • Account Information: When you sign up via Google or Email, we collect your email address to create your unique API key and manage your account quotas.
  • Usage Data: We track API request metrics (timestamp, status codes, and request count) to enforce rate limits and generate billing usage reports.
  • API Keys: We generate and store API keys. For security, we store a hashed version of your key and the last 4 digits for identification. We do not store your full API key.

3. How We Handle Receipt Data (Important)

We adhere to a strict Transient Processing policy regarding the receipt images you send to our API:

  • In-Memory Processing: Receipt images sent to the `/extract` endpoint are processed in temporary memory (RAM) only.
  • No Storage: We do not store, archive, or save your receipt images or the extracted JSON text in any database or file storage system.
  • Immediate Deletion: Once the API response is returned to you, the data is immediately discarded from our processing servers.
  • AI Processing: Data is processed using Google Cloud Vertex AI/Gemini Enterprise API. Google does not use this data to train their models.

4. Google User Data

If you choose to sign in with Google, we access your email address and basic profile information solely for authentication purposes. We strictly do not sell, rent, or share your Google user data with third parties.

5. Data Retention

We retain your account information (email and usage stats) as long as your account is active. You may request account deletion at any time, upon which all your personal data will be permanently removed from our systems.

6. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA), you have specific rights regarding your personal data:

  • Right to Access: You can see your usage data directly in your dashboard.
  • Right to Erasure: You can request full deletion of your account and associated data.
  • Right to Rectification: You can update your information by contacting support.

Our legal basis for processing is contractual necessity (to provide the API service) and legitimate interest (fraud prevention and security).

7. Third-Party Subprocessors

We use trusted third-party services to operate our infrastructure:

  • Google Cloud Platform (USA/EU): Hosting, Database, and AI processing.
  • Stripe (USA): Payment processing. We do not store credit card details.
  • Firebase Auth (USA): Secure authentication management.

8. Contact Us

For any privacy-related questions or to exercise your GDPR rights, please contact:

Simpaira Ltd

Email: info@simpaira.com