This Privacy Policy applies to the public-facing Aiurion 3D printing service, including quoting, checkout, account access, order tracking, pickup or delivery coordination, and related customer communications.

It covers personal information collected directly from you, automatically from your browser or device when you use the site, and from service providers involved in payment, hosting, authentication, security, bot detection, email delivery, and fulfillment, including Cloudflare where used for those purposes.

This Policy does not govern third-party sites or services that you visit separately, such as Stripe-hosted checkout pages or carrier tracking pages. Those services have their own policies and practices.

Depending on how you use the service, we may collect the following categories of personal information. The examples below are illustrative, not exhaustive.

We collect personal information directly from you when you upload a file, request a quote, create an account, complete checkout, communicate with us, or receive an order.

We also collect some information automatically from your browser, device, and request headers to run the site, maintain sessions, prevent abuse, protect the service, and understand whether anonymous business actions such as quote starts, upload completion, material selection, checkout starts, contact clicks, and order completion are working. When you use a quote or upload flow protected by Cloudflare Turnstile, Cloudflare processes technical signals such as IP address, browser and device characteristics, user agent, sitekey and associated origin, and challenge response data needed to distinguish human users from bots and validate the submission. We may also route quote-processing requests, including uploaded model files, through Cloudflare services used to secure internal service-to-service communications. We may receive additional information from Stripe after checkout and from carriers or couriers when fulfillment or tracking updates are available.

We use personal information to provide quotes, process payments, manufacture and fulfill orders, coordinate pickup or delivery, send receipts and order updates, respond to support requests, maintain account access, prevent fraud and misuse, troubleshoot issues, keep records, and comply with legal, tax, accounting, and regulatory obligations.

We may also internally analyze uploaded files and related order data, and create or use de-identified, aggregated, transformed, or derived technical data from them, to improve our quoting, manufacturability review, workflow, quality-control, and related internal service systems. We do not sell uploaded customer files or use them for third-party advertising or marketing.

In the preceding 12 months, we have disclosed personal information for business purposes only to service providers, fulfillment providers, and other recipients reasonably necessary to operate the service.

This includes Cloudflare for Turnstile bot detection and, where used, to secure quote-processing requests between our services.

We use cookies and similar technologies mainly for site functionality, authentication, session management, security, fraud prevention, anti-bot verification, and limited first-party business action analytics. We do not use third-party ad-tech, third-party analytics trackers, or cross-site behavioral advertising tools on the public 3D printing service. Cloudflare Turnstile, where enabled, is used for security and bot detection rather than advertising or cross-site behavioral profiling.

When Cloudflare Turnstile is loaded or executed, Cloudflare may process technical signals from your browser or device, such as IP address, TLS fingerprint, user-agent data, sitekey and associated origin, and related challenge data, to run the challenge and help distinguish humans from bots. See the Cloudflare Turnstile Privacy Addendum and Cloudflare Privacy Policy for more information about Cloudflare's processing.

Our first-party business action analytics use a random anonymous session ID stored in sessionStorage, not a tracking cookie. Analytics events do not intentionally include uploaded file names, customer notes, email addresses, phone numbers, shipping addresses, Stripe session IDs, quote IDs, order IDs, IP addresses, or free-text form content.

Because we do not track consumers' online activities over time and across third-party websites for advertising purposes, we do not currently change our public-site behavior in response to browser Do Not Track signals.

We do not knowingly allow other parties to collect personal information about your online activities over time and across different websites through the public 3D printing service for advertising purposes. If you leave our site for Stripe-hosted checkout or a carrier tracking page, that separate service's own privacy policy applies.

California's Online Privacy Protection Act (CalOPPA) requires us to post a conspicuous privacy policy describing the categories of information we collect, the categories of third parties with whom we share it, how we handle changes to this policy, the policy's effective date, and our treatment of Do Not Track signals. This Policy is intended to satisfy those requirements.

Aiurion does not currently qualify as a "business" subject to the California Consumer Privacy Act and California Privacy Rights Act (CCPA/CPRA) because Aiurion does not meet the statutory applicability thresholds. If our legal obligations change, we will update this Policy and our privacy practices accordingly.

Even though CCPA/CPRA does not currently apply to Aiurion, we still do not sell personal information, we do not share personal information for cross-context behavioral advertising, and we do not use or disclose sensitive personal information in a way that would require a separate California limitation right for this public 3D printing service.

We retain personal information only for as long as reasonably necessary for the purposes described in this Policy, including quoting, fulfillment, customer support, recordkeeping, fraud prevention, dispute resolution, and compliance with legal, tax, accounting, and regulatory obligations. Different categories of data may be retained for different periods depending on those needs.

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

Our service is intended for adults. We do not knowingly collect personal information from children under 13, and if we learn that we have done so, we will take reasonable steps to delete it.