GDPR
GDPR is the General Data Protection Regulation — the UK GDPR and EU GDPR frameworks that govern how organisations process personal data about individuals in the UK and EU.
GDPR is the General Data Protection Regulation — the UK GDPR and EU GDPR frameworks that govern how organisations process personal data about individuals in the UK and EU. It sets the standard for lawful basis, data minimisation, transparency, retention and the rights of data subjects.
How it applies to Aura Vision
Because the platform produces only anonymous, aggregated counts and never identifies individuals, it processes no personal data within the meaning of GDPR. Faces are irreversibly blurred on the APU at the moment of capture, no biometric identifiers are stored, and no record links one visit to another.
This compliance position has been verified by an independent legal opinion from Mishcon de Reya, and the platform’s privacy controls are aligned with both UK GDPR and EU GDPR. Customers operating regulated estates can sign Aura Vision’s Data Processing Addendum as part of their contract.