Privacy Policy

We care about Privacy

We enable businesses and Police to use information to reduce crime. As a business that is based on information sharing, we want to assure you of our responsible stewardship of that information. We take information privacy and security seriously, and we ensure that our practices adhere with all relevant privacy legislation. We want to create a safe society and reduce the anonymity of offenders and crime groups. We believe that providing the right information to the right people at the right time will help to reduce crime.

We don’t want to hide behind a privacy policy and lawyers. We want to be transparent with you around how information is collected, stored, and used by us and our customers. We aspire to be model operators in information privacy and believe that transparency around what we do with the information we collect is the solution.

If you ever have a question about privacy, just send us an email to privacy@auror.co. The New Zealand Privacy Commission also has a useful website that answers many privacy related questions.

What is Auror?

We provide businesses and the Police with a platform for reporting incidents electronically, which often captures information on alleged offenders.

Many businesses already collect information and share it with others in the vicinity. Their collection, storage, and use of this information is often poorly undertaken with manual, paper-based processes. Information that is collected may sit in back offices, stuck on walls around the store, or sent to others in the area. There is no security around the storage or use of this information. Auror assists with modernising and improving the collection, distribution, and de-identification procedures of this information.

How does Auror obtain information on incidents? 

Any personal information we hold within our platform has been provided to us by our customers. They have collected the information either direct from an alleged offender, from an eyewitness (staff or customer), or from their CCTV footage.

We require our business customers to display a sign at each site which tells the public that information may be captured if an incident has happened on its site. They must also have evidence of an incident before any information can be collected and uploaded to Auror.

What type of information do we collect? 

We may collect information on the time and place of an offence, and may also obtain some personal information on any alleged offenders including an image, name, age, sex, ethnicity, height, build, and vehicle details. Vehicles involved in previous incidents may also be flagged at other locations by automatic number plate recognition cameras.

Innocent bystanders incidentally captured in images footage will not be identifiable – tools available within the platform allow for the cropping of images and ‘blocking out’ of unrelated people.

What we don’t do

How is the information then used?

Once the information has been uploaded to Auror, it is only viewable by other trusted parties and the Police. The information is not publicly accessible. The information can be used for:

How long does the information stay in Auror?

Information is only retained for as long as necessary to assist with preventing further incidents. This information may be archived and stored for up to 5 years.

How secure is Auror? 

The information we collect is not available to the public. Auror is only available to certain businesses, security personnel and Police who are registered and provided with secure access to the Auror platform. All use of Auror is tracked and can be audited to ensure that there is no misuse of the platform.

We encrypt all information in transit to and from Auror using SSL 256-bit encryption. Transport Layer Security (TLS/SSL) is used to protect the transfer of information and data to Auror’s hosted server. The site is also securely encrypted and is hosted in Microsoft Azure which utilises industry leading security policies and standards, including being SOC 1/SSAE 16/ISAE 3402, SOC 2, and ISO 27001/27002 compliant. Microsoft sets out all its security features in detail here.

Access and correction

If you think that we may hold any of your personal information, you are entitled to have access to this information and may request correction of the information we hold. If you wish to view your personal information please contact us at privacy@auror.co with your full name, date of birth, and time and location of possible incident, and we will provide you with any personal information we may have.

Review

We regularly review our approach to ensure that Auror, and our customers, are adhering to all privacy legislation. We may change this privacy policy from time to time, but when we do, we’ll let you know by revising the date at the top of the privacy policy that’s available on our website. Other times, we may provide additional notice (such as adding a statement to our website’s homepage or sending users a notification).

If you have any concerns or questions, please contact privacy@auror.co and we will investigate and attempt to resolve any issues.