Privacy Policy
Last updated: March 2026
1. Introduction
Awareon ("we", "us", "our") is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our platform at awareon.io and getawareon.com.
We comply with the EU General Data Protection Regulation (GDPR) and applicable data protection laws.
2. Data We Collect
Account Data
- Name and email address (at registration)
- Organization name and billing information
- Password (hashed, never stored in plaintext)
Usage Data
- Projects and content you create
- Uploaded assets (images, fonts, media)
- Brand profiles and themes
- Activity timestamps for account lifecycle management
Technical Data
- IP address and browser information
- Cookie preferences
- Error logs (for debugging purposes only)
3. How We Use Your Data
| Purpose | Legal Basis (GDPR) |
|---|---|
| Providing our services | Contract performance (Art. 6(1)(b)) |
| Account management & billing | Contract performance (Art. 6(1)(b)) |
| Security & fraud prevention | Legitimate interest (Art. 6(1)(f)) |
| Analytics (if consented) | Consent (Art. 6(1)(a)) |
| Marketing emails (if consented) | Consent (Art. 6(1)(a)) |
4. Data Retention
- Active accounts: Data retained while your account is active
- After cancellation: 90-day grace period, then complete data deletion
- Billing records: Retained for 7 years (applicable accounting regulations)
- Consent records: Retained for 5 years (GDPR accountability)
5. Your Rights
Under GDPR, you have the right to:
- Access your personal data (Article 15)
- Export your data in a portable format (Article 20)
- Correct inaccurate data (Article 16)
- Delete your account and all data (Article 17)
- Withdraw consent at any time (Article 7)
- Object to data processing (Article 21)
To exercise these rights, use the Data Controls in your account settings or contact us at hello@awareon.io.
6. Data Processors
| Service | Purpose | Location |
|---|---|---|
| Cloud Hosting Provider | Application hosting and infrastructure | EU/US |
| Cloudflare R2 | Asset storage | EU |
| Stripe | Payment processing | EU/US (PCI compliant) |
| Resend | Transactional emails | US |
| Google (OAuth / Google Ads) | Authentication and advertising integration | US (EU Standard Contractual Clauses) |
| Meta (Facebook / Instagram) | Social media publishing and advertising | US (EU Standard Contractual Clauses) |
7. Google API Services
Awareon integrates with Google APIs (including Google OAuth and Google Ads) to enable authentication and advertising features. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically, we:
- Only request the minimum Google account data necessary to provide requested features
- Do not sell Google user data to third parties
- Do not use Google user data for advertising purposes unrelated to the feature you explicitly enabled
- Do not allow humans to read your Google data unless you give explicit consent or it is required for security/legal compliance
- Store Google OAuth tokens securely in encrypted form and use them only to perform actions you have authorized
You can revoke Awareon's access to your Google account at any time via Google Account Permissions.
8. Social Media Integrations
When you connect social media accounts (Facebook, Instagram, LinkedIn, TikTok, etc.), we store OAuth access tokens in encrypted form to enable scheduled publishing on your behalf. We only publish content you explicitly schedule — we do not access your feed, messages, or contacts beyond what is required for publishing. You can disconnect any integration at any time from Publish → Connections.
9. Cookies
We use cookies to ensure you get the best experience on our website. You can change your preferences at any time via your browser settings.
10. Contact
Data Controller: Awareon
Email: hello@awareon.io
You also have the right to file a complaint with the relevant data protection authority in your country of residence.