PRIVACY POLICY

Biaura – Privacy Policy

Last updated: December 3, 2025

1. Introduction

This Privacy Policy ("Policy") explains how Bianca Heiss (operating as Biaura, based in Australia) collects, uses, discloses, and protects your personal information when you use the Biaura App, Website (biaura.app), and related services (collectively, the "Service").

Please read this Policy carefully. By using Biaura, you agree to the collection and use of information as described here.

If you have questions or concerns about this Policy, please contact us at 

hello@biaura.app

.

2. What Information We Collect

2.1 Information You Provide to Us

• Name: Optional. Collected if you choose to share it during signup or account creation.

• Email Address: Collected if you opt in to email communication, provide feedback, or request support. Required for certain features like account recovery or optional reward claims.

• Date of Birth: Optional. Collected only if you choose to provide it (e.g., for birthday meditation offers or age verification).

• Support Requests: Any messages, feedback, or inquiries you send to 

• hello@biaura.app

•  are retained to provide support and improve the Service.

2.2 Information Collected Automatically

• Device Information: Model, operating system version, app version, language preference, and unique device identifier (Apple IDFA if enabled).

• Usage Data: Information about screens visited, features used, session duration, journeys completed, and general interaction patterns (aggregated and anonymised).

• Approximate Location: Country or region inferred from IP address for localisation and pricing purposes. We do not collect precise GPS or location data unless you explicitly enable it in future features.

• Error and Crash Data: Technical information if the App crashes or encounters errors, to help us improve stability and performance.

2.3 Subscription and Payment Information

• Subscription Status: Whether you have an active, expired, or cancelled subscription, obtained via Apple.

• Payment Details: Biaura does not directly receive or store your payment card information. All payments are processed securely by Apple's App Store. We receive only subscription status confirmations (e.g., "subscription active," "renewal date").

2.4 Information from Third Parties

• Apple: Subscription and app store information (e.g., subscription tier, renewal date, subscription status).

• Analytics Providers: Aggregated usage data to understand trends and improve the App.

3. Legal Basis for Collection and Use (GDPR / APPs Compliance)

We collect and use your information on the following legal bases:

• Consent: For optional email marketing, birthday communications, and optional data like date of birth.

• Contract / Performance of Service: To provide the App, process subscriptions, and manage your account.

• Legitimate Interest: To improve the App, prevent fraud, and ensure security.

• Legal Obligation: To comply with applicable laws or lawful requests.

4. How We Use Your Information

We use collected information to:

• Provide and Improve the App: Personalise your experience, remember preferences, and fix bugs.

• Communicate with You: Send opt‑in emails about new journeys, subscription renewals, support responses, or special birthday offers.

• Understand Usage: Analyse aggregated (non‑personal) usage patterns to improve features and content.

• Safety and Security: Detect and prevent fraud, abuse, or unauthorised access.

• Comply with Law: Respond to lawful requests from authorities or legal obligations.

• Consent Records: Store that you have accepted these Terms and Privacy Policy (with timestamps) for legal compliance.

We will never use your information to:

• Sell or share personal data with unrelated third parties for their marketing.

• Discriminate against you based on protected characteristics.

• Make automated decisions that significantly affect you (except for basic eligibility for subscription features).

5. Children's Privacy

Biaura is designed primarily for adults and older children (with parental supervision).

• We do not knowingly collect personal information directly from children under 13 without verifiable parental consent.

• If a parent or guardian suspects a child has provided information without consent, they may contact 

• hello@biaura.app

•  to request deletion.

• For users aged 13–17, we collect minimal data and only with guardian knowledge and supervision (as outlined in our Terms of Use).

6. How We Share Your Information

We do not sell your personal data. We share information only in these limited circumstances:

6.1 Service Providers

We use third‑party service providers to operate the Service. These providers are contractually obligated to use your data only to perform services on our behalf:

• Hosting and Storage: Supabase (database), Backblaze B2 and Cloudflare (media storage and CDN).

• Analytics: Tools to measure usage (aggregated, non‑personal data).

• Email Services: ConvertKit, MailerLite, or similar (for newsletters and opt‑in communications).

• Error Tracking: Services to log and resolve technical issues.

6.2 Legal Requirements

We may disclose information if required by law, court order, or governmental request, or if we believe in good faith that such disclosure is necessary to:

• Comply with legal obligations.

• Protect the safety or rights of Biaura, its users, or the public.

• Prevent fraud or illegal activity.

6.3 Aggregated and De‑identified Data

We may share aggregated or anonymised data (e.g., "80% of users prefer guided meditations") with partners or the public for research or promotional purposes. This data does not identify you.

7. Data Storage, Security, and Retention

7.1 Where We Store Your Data

• User Account Data: Stored securely in Supabase, hosted in secure data centres.

• Media Files (Videos, Audio): Stored on Backblaze B2 and distributed via Cloudflare CDN.

• Email Communications: Stored in your chosen email service provider's systems (ConvertKit, MailerLite, etc.).

7.2 Security Measures

We implement reasonable technical and organisational safeguards to protect your information:

• Secure encryption in transit (HTTPS/TLS).

• Access controls and role‑based permissions.

• Regular backups and disaster recovery procedures.

However, no system is perfectly secure. We cannot guarantee absolute security, and you use the Service at your own risk.

7.3 Data Retention

We retain your information for as long as:

• You have an active account or subscription.

• Is necessary to provide Services and support.

• Is required by law or for accounting/legal purposes.

You may request deletion of your account and personal data at any time by contacting 

hello@biaura.app

, subject to legal retention obligations (e.g., tax records).

8. Your Privacy Rights

Depending on your location and applicable privacy laws, you may have the right to:

• Access: Request a copy of your personal data and what we hold about you.

• Correction: Update or correct inaccurate information.

• Deletion: Request deletion of your data (subject to legal and contractual retention requirements).

• Opt‑Out of Marketing: Unsubscribe from email communications at any time (links provided in all emails, or contact 

• hello@biaura.app

• ).

• Data Portability: Request your data in a portable format (where applicable).

• Withdraw Consent: Withdraw consent for optional communications or data collection.

To exercise any of these rights, contact us at 

hello@biaura.app

 with your request and sufficient detail for us to identify you.

We will respond to requests within the timeframe required by applicable law (typically 30 days).

9. International Data Transfers

Biaura operates and stores data in Australia and may use third‑party services hosted internationally (e.g., Supabase, Backblaze, Cloudflare).

If you are located in the EU, UK, or another jurisdiction with data protection laws, your data may be transferred outside your country. By using Biaura, you consent to such transfers. We ensure that third‑party service providers implement appropriate safeguards (e.g., Standard Contractual Clauses, Privacy Shield, or similar).

10. Third‑Party Links and Services

The App and Website may contain links to third‑party websites, payment processors (Apple App Store), or services. Biaura is not responsible for the privacy practices of third parties.

Please review their privacy policies before providing information to them.

11. Changes to This Privacy Policy

We may update this Policy from time to time to reflect changes in our practices, technology, or legal requirements.

We will notify you of material changes by updating the "Last updated" date at the top of this Policy. If the change significantly affects how we use your data, we may notify you in‑app or via email.

Your continued use of the Service after updates constitutes acceptance of the updated Policy.

12. Contact Us

If you have questions, concerns, or requests related to this Privacy Policy or your personal information, please contact:

Bianca Heiss
Operating as Biaura
Email: 

hello@biaura.app

Website: biaura.app
Country: Australia

We aim to respond to requests within 30 days.