Privacy Policy

Last updated: February 2026

Start Your Audit See a Compliance Report

1. Introduction

Aurora Tech Group Ltd (“PaySentry”, “we”, “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and share your information in compliance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Data Controller

Aurora Tech Group Ltd is the data controller. Registered address: 71-75 Shelton Street, Covent Garden, London WC2H 9JQ. Company No. 15735778.

3. Data We Collect

We collect: (a) account information (name, email, organisation details); (b) payslip and worker data uploaded for auditing; (c) usage data and analytics; (d) payment information processed by Stripe.

4. Lawful Basis for Processing

We process your data under the following lawful bases: (a) Contract — to provide our services; (b) Legitimate Interest — to improve our platform and prevent fraud; (c) Legal Obligation — to comply with regulatory requirements; (d) Consent — for marketing communications.

5. How We Use Your Data

We use your data to: provide and improve our compliance verification services; generate reports and analysis; communicate with you about your account; comply with legal obligations; and protect against fraud.

6. Data Retention

We retain your data for as long as your account is active and for a period of 7 years after account closure for regulatory compliance purposes. Payslip data is retained for 6 years in line with HMRC requirements.

7. Your Rights

Under UK GDPR, you have the right to: (a) access your personal data; (b) rectify inaccurate data; (c) erase your data (right to be forgotten); (d) restrict processing; (e) data portability; (f) object to processing; (g) withdraw consent. To exercise these rights, contact our DPO at dpo@paysentry.com.

8. Data Security

We implement appropriate technical and organisational measures to protect your data, including AES-256 encryption at rest, TLS 1.3 in transit, per-tenant encryption keys, and regular security audits.

9. International Transfers

Your data is processed and stored within the UK and EEA. We do not transfer personal data outside these jurisdictions without appropriate safeguards.

10. Complaints

If you are unhappy with how we handle your data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) at ico.org.uk or by calling 0303 123 1113.

11. Contact

Data Protection Officer: dpo@paysentry.com