Privacy notice for report recipients

The agency that sent you the report is the data controller. They decide what is in the report and who receives it. If you do not know which agency sent it, the report email and the report itself name them at the top and in the footer.

Aurora AI Solutions Studio UG (haftungsbeschränkt) — the maker of ClientPulse, registered in Stuttgart, Germany (Handelsregister HRB 805284) — acts only as a processor on the agency’s behalf under a Data Processing Agreement (GDPR Art. 28). Aurora does not decide the purposes of the processing and does not use your data for its own ends.

The sole purpose is to share with you the report that concerns you or your organisation — for example a monthly performance summary your agency prepared for you.

The lawful basis is the legitimate interests of the agency and yourself in communicating the report you are expecting (GDPR Art. 6(1)(f)), and/or the performance of the contract between you and the agency (Art. 6(1)(b)). The agency, as controller, sets the applicable basis; contact them if you have questions about it.

Parts of the report may be generated with the assistance of AI and are verified by your agency before sending. The report viewer carries an AI-assistance disclosure where applicable.

• Your email address, used to send you the report link.
• The contents of the report your agency prepared, which may reference you or your organisation.
• Basic access information such as whether and when the link was opened, so your agency knows the report was received.

The share link expires 90 days after it was sent. After that the link stops working and is no longer retained in active form, so an old forwarded link will no longer open the report. Your agency may keep its own copy of the report under its own retention policy — contact them about that.

All data is hosted in the European Union (Frankfurt, Germany), encrypted in transit and at rest.

Under the GDPR you have the right to:

• Access the personal data held about you (Art. 15).
• Rectify inaccurate data (Art. 16).
• Request erasure of your data — including disabling the share link and removing your recipient email from the report-sharing records (Art. 17).
• Restrict or object to processing (Art. 18 and Art. 21).
• Lodge a complaint with a supervisory authority (Art. 77).

Because the agency is the controller, the fastest route is usually to ask the agency that sent you the report. They can disable the link and remove your recipient data through ClientPulse. You can also contact Aurora as the processor at the address below and we will action the request or route it to the responsible agency.

Aurora AI Solutions Studio UG (haftungsbeschränkt), Stuttgart, Germany — Handelsregister HRB 805284.

Privacy and erasure requests: hello@helloaurora.ai

See also our company Privacy Policy and the ClientPulse AI Model Card.