Autional logo

Privacy Policy

This privacy policy describes how Autional collects, uses, and handles your personal data when you use our platform and website.

1. Information We Collect

  • Account data: email address, username, password hash (argon2id)
  • Authentication data: IP address, user agent, device fingerprint, login timestamps
  • Profile data: avatar, display name, preferences (as configured by user)
  • Communication data: email address for transactional emails

2. How We Use Data

  • Provide and maintain authentication services
  • Security monitoring and fraud prevention
  • Compliance with legal obligations (GDPR, etc.)
  • Service improvement and debugging

3. Data Retention

Authentication data is retained for the duration of the account plus 90 days. Audit logs are retained according to the tenant's retention policy (configurable, default 90 days). Users may request data deletion at any time.

4. Your Rights

Under GDPR and similar regulations, you have the right to access, rectify, erase, and port your data. Submit requests via the End-User Portal or contact us at privacy@autional.com.

5. Contact

Questions about this policy: privacy@autional.com