Privacy Notice for Job Applicants
Aura Home, Inc.
This Notice explains how Aura Home, Inc. and its affiliates and subsidiaries ("Aura," "we," "us," or "our") collect, use, and disclose personal information about job applicants who apply for employment, internships, contractor opportunities, or similar roles within Aura ("you"). It applies globally and should be read alongside any jurisdiction-specific supplements below.
For questions, contact us at privacy@auraframes.com.
1. Data Controller
Aura Home, Inc., 148 Lafayette Street, New York, NY 10013
For applicants in the EEA, UK, or Switzerland, Aura Home, Inc. acts as data controller. Our representative and Data Protection contact: privacy@auraframes.com.
2. Personal Information We Collect
We may collect the following categories, depending on the role and jurisdiction:
- Identifiers: name, email, phone, mailing address, online identifiers.
- Application materials and professional information: resume/CV, cover letter, work/employment history, education, professional memberships, certifications, references, portfolios, interview notes, compensation expectations.
- Protected characteristics (only where voluntarily provided and permitted by law): race/ethnicity, gender, veteran/disability status.
- Online/device activity: interactions with our careers site, device data, log data, cookies.
- Audio/visual: interview recordings, voicemails (where permitted and with required notice).
- Sensitive personal information (SPI): government ID numbers (where required), account credentials, disability/accommodation information.
- Inferences: assessments of professional aptitude and role fit drawn from application materials and interviews.
3. Sources of Personal Information
- Directly from you, through your application, resume, interviews, and communications.
- Recruiters, referrals, former employers, credentialing bodies, or professional references.
- Service providers supporting recruiting (applicant tracking, scheduling, assessments).
- Background check / credential verification providers (where permitted and required by law).
- Publicly available sources (e.g., professional networking sites).
4. How We Use Your Personal Information
We use applicant data for the following purposes. For applicants in the EEA, UK, and Switzerland, the applicable legal basis under GDPR / UK GDPR / Swiss revDSG is noted in brackets.
- Recruiting and hiring— evaluating qualifications, selecting candidates, conducting interviews. [Legitimate interests / Performance of pre-contractual steps]
- Communication — scheduling, status updates, offer management. [Performance of pre-contractual steps / Legitimate interests]
- Verification and screening — reference checks, work eligibility, background checks where permitted. [Legal obligation / Legitimate interests]
- <Security and system integrity — operating and protecting our recruiting tools and infrastructure. [Legitimate interests]
- Analytics and process improvement — improving our recruiting process and troubleshooting. [Legitimate interests]
- Legal compliance — complying with applicable laws, enforcing policies, maintaining required records. [Legal obligation]
- Fraud and safety — preventing fraud, misuse, and protecting rights and safety. [Legitimate interests / Legal obligation]
Where we rely on legitimate interests, you may have the right to object (see Section 8). Where we rely on consent (e.g., for optional diversity data), you may withdraw it at any time without affecting prior processing.
5. How We Disclose Personal Information
We disclose personal information only as reasonably necessary and require recipients to protect it consistent with applicable law. Recipients include:
- Service providers / processors acting on our behalf (applicant tracking, recruiting platforms, scheduling tools, assessment providers, background check providers, IT/security, analytics).
- Professional advisors (attorneys, auditors, insurers, consultants).
- Affiliates within our corporate group.
- Government and law enforcement agencies when required or permitted by law.
No sale or sharing for advertising: We do not sell applicant personal information or share it for cross-context behavioral advertising.
6. International Transfers
Aura is headquartered in the United States. If you are located outside the US, your personal information will be transferred to and processed in the US.
EEA / UK applicants: Transfers are made subject to appropriate safeguards, including the EU Standard Contractual Clauses (SCCs) and, where applicable, the UK International Data Transfer Addendum. You may request a copy of the relevant safeguards by contacting us at privacy@auraframes.com.
Swiss applicants: Transfers are conducted in accordance with the Swiss Federal Act on Data Protection (revDSG) and applicable transfer mechanisms.
Australian applicants: We take reasonable steps to ensure overseas recipients handle your information consistently with the Australian Privacy Principles.
7. Retention
We retain applicant personal information for as long as reasonably necessary for the purposes described in this Notice, including to evaluate your application, administer recruiting, consider you for future opportunities where permitted, comply with legal and recordkeeping obligations, resolve disputes, conduct audits, enforce agreements and policies, and establish, exercise, or defend legal claims.
The specific retention period depends on the type of information, the role, the location of the applicant, legal requirements, limitation periods, and business needs. Where personal information is no longer needed, we will delete, de-identify, or anonymize it in accordance with applicable law and our retention practices.
If you are hired, personal information collected during the application process may become part of your employment record and will be handled in accordance with our workforce privacy notices and policies.
8. Your Rights
Depending on your location, you may have the following rights. Requests can be submitted to
privacy@auraframes.com. We will verify your identity before processing certain requests. Authorized agents must provide proof of authorization.
All Applicants
- Access the personal information we hold about you.
- Correct inaccurate personal information.
- Delete your personal information (subject to legal exceptions).
California (CCPA / CPRA)
- Know / Access: request categories and specific pieces of personal information collected.
- Delete: request deletion of personal information.
- Correct: request correction of inaccurate information.
- Opt out of sale/sharing: email privacy@auraframes.com or use our Do Not Sell or Share My Data link.
- Limit use of SPI: request limitation of certain uses/disclosures of sensitive personal information.
- Non-discrimination: we will not discriminate against you for exercising these rights.
We respond to the Global Privacy Control (GPC) signal. Other US state residents (Colorado, Connecticut, Virginia, Texas, and others) may have similar rights under applicable state law.
EEA / UK / Switzerland (GDPR / UK GDPR / Swiss revDSG)
- Access (Art. 15 GDPR): obtain a copy of your personal data.
- Rectification (Art. 16): correct inaccurate or incomplete data.
- Erasure (Art. 17): request deletion where processing is no longer necessary or lawful.
- Restriction (Art. 18): restrict processing in certain circumstances.
- Portability (Art. 20): receive your data in a structured, machine-readable format.
- Object (Art. 21): object to processing based on legitimate interests or for direct marketing.
- Withdraw consent: where processing is based on consent, withdraw it at any time.
- Lodge a complaint: you have the right to lodge a complaint with your local supervisory authority:
- EEA: your national data protection authority (list available at edpb.europa.eu).
- UK: the Information Commissioner's Office (ico.org.uk).
- Switzerland: the Federal Data Protection and Information Commissioner (edoeb.admin.ch).
Australia (Privacy Act 1988)
- Access and correct your personal information.
- If you believe we have not handled your personal information in accordance with the Australian Privacy Principles, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au. We encourage you to contact us first so we have an opportunity to resolve your concern.
- We may disclose your personal information to overseas recipients (primarily in the US). We take reasonable steps to ensure overseas recipients handle your information consistently with Australian privacy law.
9. Sensitive Personal Information
We use and disclose SPI only as permitted by applicable law, including the CCPA. We do not use SPI to infer characteristics beyond what is reasonably necessary for recruiting. Where law requires, we obtain consent before processing sensitive data.
10. Careers Site and Tracking Technologies
Our careers site may use cookies and similar technologies to operate the site, analyze usage, and improve the experience. We do not use applicant personal information collected through the careers site for targeted advertising or cross-context behavioral advertising. For more information on our general tracking practices, see our
11. California 'Shine the Light'
California residents may request information about disclosures of personal data to third parties for direct marketing purposes. Email privacy@auraframes.com.
12. Automated Tools, Assessments, and Artificial Intelligence
Aura may use recruiting technologies to help manage applications, organize candidate information, schedule interviews, support candidate communications, or assist with recruiting workflows. We do not make hiring decisions based solely on automated processing that produces legal or similarly significant effects, unless permitted by applicable law and subject to required safeguards.
If Aura uses an automated employment decision tool, artificial intelligence system, algorithmic assessment, or similar technology that is subject to specific notice, audit, explanation, opt-out, appeal, or other requirements under applicable law, Aura will provide any required notices and comply with applicable legal requirements before or at the time such tool is used.
You may contact privacy@auraframes.com with questions about recruiting technologies used in connection with your application.
13. Changes to This Notice
We may update this Notice from time to time. Material changes will be communicated by posting an updated Notice on our careers site with a revised effective date.
14. Contact Us
Privacy inquiries: privacy@auraframes.com
Postal: Aura Home, Inc., 148 Lafayette Street, New York, NY 10013, United States
For EEA/UK/Swiss data subject requests, please include your country of residence so we can route your request appropriately.
This Notice covers applicants in the United States (including California), the European Economic Area, the United Kingdom, Switzerland, and Australia. Applicants in other jurisdictions may have additional rights under local law.
Effective Date: Month Day, 2026
Last Updated: January 20, 2026



