digiAURA

Effective Date: April 3, 2026 | Last Updated: April 3, 2026

digiAURA (“we,” “our,” or “us”) operates digitalauramarketing.com and provides AI-powered marketing and operations systems to healthcare providers and local service businesses. This Privacy Policy explains how we collect, use, disclose, and protect information when you visit our website, interact with our content, or engage our services.

By using our website or services, you agree to the practices described in this policy. If you do not agree, please discontinue use of our website and services.

1. Who We Are

digiAURA is a marketing and operations systems agency. We are not a data broker. We do not sell personal information. We collect only what is necessary to deliver our services and communicate with prospective and active clients.

Business Contact
digiAURA
Website: digitalauramarketing.com
Email: hello@digitalauramarketing.com

2. Information We Collect

We collect information in three ways: directly from you, automatically through technology, and from third parties acting on our behalf.

2.1 Information You Provide Directly

Name, business name, email address, and phone number submitted through our contact or intake forms
Industry type and business size when you request a strategy call or proposal
Messages, questions, or other content you send us voluntarily
Payment information processed through secure third-party payment processors (we do not store card data)

2.2 Information Collected Automatically

IP address and approximate geographic location
Browser type, device type, and operating system
Pages visited, time spent, and navigation paths on our website
Referring URLs and search terms that brought you to our site
Cookie identifiers and session data (see Section 6)

2.3 Information from Third Parties

Analytics data from Google Analytics and similar platforms
Ad performance data from Meta Ads, Google Ads, or other advertising platforms if you interact with our paid campaigns
CRM data synced from tools we use to manage client relationships (e.g., GoHighLevel)

3. How We Use Your Information

We use collected information only for legitimate business purposes.

To Deliver and Improve Our Services

Respond to inquiries and schedule strategy calls
Build, configure, and manage AI-powered systems on your behalf
Communicate project updates, deliverables, and reports
Invoice and process payments

To Market Our Services

Send relevant content, case studies, or offers to prospects who have opted in
Run targeted advertising campaigns to audiences likely to benefit from our services
Analyze which content and campaigns drive qualified inquiries

To Operate and Protect Our Website

Monitor traffic and prevent fraudulent or abusive behavior
Improve site performance, usability, and content
Comply with legal obligations

We do not use your information to train AI models. We do not sell, rent, or lease your personal data to third parties.

4. Healthcare Data and HIPAA Compliance

digiAURA serves healthcare providers including medical clinics, dental offices, therapy practices, and wellness centers. We take healthcare data obligations seriously.

We do not collect, store, or process Protected Health Information (PHI) on behalf of covered entities unless a Business Associate Agreement (BAA) is in place.
When required, we execute BAAs with healthcare clients before any system is built or integrated.
Our systems for healthcare clients are designed to minimize PHI exposure — patient data is handled by the client’s own compliant systems wherever possible.
If you are a healthcare provider and have questions about HIPAA compliance in the context of our services, contact us before engaging.

5. How We Share Your Information

We do not sell personal information. We share data only in the following limited circumstances.

Service Providers
We use third-party tools to operate our business, including CRM platforms, email delivery services, payment processors, analytics providers, and cloud infrastructure. These providers access data only to perform services on our behalf and are contractually prohibited from using it for other purposes.

Client Systems
When we build automation and marketing systems for clients, we operate within the platforms they designate (e.g., GoHighLevel, WordPress, Google Workspace). Data handled within those systems is governed by the client’s own policies and agreements.

Legal Requirements
We may disclose information if required by law, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

Business Transfers
If digiAURA is involved in a merger, acquisition, or sale of assets, client and prospect data may be transferred as part of that transaction. We will notify affected parties before data is transferred and becomes subject to a different privacy policy.

6. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to operate effectively and understand how visitors engage with our content.

Types of Cookies We Use

Essential Cookies: Required for the website to function. These cannot be disabled.
Analytics Cookies: Help us understand traffic patterns and content performance (e.g., Google Analytics). These are anonymized where possible.
Marketing Cookies: Used to measure the effectiveness of advertising campaigns and retarget visitors across platforms.

You can control cookies through your browser settings. Disabling non-essential cookies may affect some site functionality. We do not respond to “Do Not Track” browser signals at this time, but we respect opt-outs through individual platform tools (e.g., Google Analytics opt-out, Meta Ad Preferences).

7. Data Retention

We retain personal information only as long as necessary for the purposes described in this policy or as required by law.

Inquiry and contact form data: Retained for up to 3 years unless you request deletion earlier
Active client data: Retained for the duration of the engagement plus 3 years
Analytics and usage data: Retained per the data retention settings of the respective platform (typically 14–26 months for Google Analytics)
Payment records: Retained as required by applicable tax and financial regulations

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal data.

Access: Request a copy of the personal information we hold about you
Correction: Request that inaccurate or incomplete information be corrected
Deletion: Request that we delete your personal information, subject to legal retention requirements
Objection: Object to certain processing activities, including direct marketing
Portability: Request your data in a structured, machine-readable format
Withdraw Consent: Where processing is based on consent, withdraw it at any time without affecting prior processing

To exercise any of these rights, contact us at hello@digitalauramarketing.com. We will respond within 30 days. We may need to verify your identity before processing your request.

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what categories of personal information we collect and the right to non-discrimination for exercising your privacy rights.

9. Data Security

We implement reasonable technical and organizational measures to protect your information against unauthorized access, disclosure, alteration, or destruction.

Encrypted data transmission via HTTPS across our website and integrations
Access controls limiting data access to authorized personnel only
Use of reputable, security-audited third-party platforms
Regular review of our data handling practices

No method of transmission or storage is 100% secure. We cannot guarantee absolute security, but we take our obligations seriously and will notify affected parties of any breach as required by applicable law.

10. Third-Party Websites and Integrations

Our website may contain links to third-party websites or reference platforms we work with (e.g., GoHighLevel, Google, Meta, WordPress). This Privacy Policy does not apply to those external sites. We encourage you to review the privacy policies of any third-party services you use.

When we integrate third-party tools into client systems, we select vendors with strong data practices, but the client’s own use of those tools is governed by their agreements with those vendors.

11. Children’s Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that a child under 16 has provided us with personal information, we will delete it promptly. If you believe we have inadvertently collected such information, please contact us immediately.

12. International Users

digiAURA is operated primarily for clients in the Philippines, United States, and other markets where healthcare and local service businesses operate. If you access our website from outside these regions, please be aware that your information may be transferred to and processed in countries with different data protection laws than your own.

By using our website, you consent to this transfer. Where required, we implement appropriate safeguards for cross-border data transfers.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable law. When we make material changes, we will update the “Last Updated” date at the top of this page and, where appropriate, notify active clients by email.

Your continued use of our website or services after any update constitutes your acceptance of the revised policy. We encourage you to review this page periodically.

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us.

digiAURA Email: hello@digitalauramarketing.com
Website: digitalauramarketing.com
Enquiries: digitalauramarketing.com/#contact

We are committed to resolving privacy concerns promptly and transparently. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.