At Astro, we know you care how your personal information is used and shared, and we take your privacy seriously.
We may communicate with you if you’ve provided us the means to do so. For example, if you’ve given us your email address, we may email you about your use of the Services. Also, we may receive a confirmation when you open an email from us. This confirmation helps us make our communications with you more relevant and improve our services. If you do not want to receive communications from us, please indicate your preference by clicking on the unsubscribe option in our emails or contacting us at firstname.lastname@example.org.
Whenever you interact with our Services, we automatically receive and record information on our server logs from your browser or device, which may include your IP address, geolocation data, device identification, “cookie” information, the type of browser and/or device you’re using to access our Services, and the page or feature you requested. “Cookies” are identifiers we transfer to your browser or device that allow us to recognize your browser or device and tell us how and when pages and features in our Services are visited and by how many people. You may be able to change the preferences on your browser or device to prevent or limit your device’s acceptance of cookies, but this may prevent you from taking advantage of some of our features.
We use this data to customize content for you and to provide the functionality of the Services, such as email insights and email categorization,, based on your usage patterns. We may also use it to improve the Services – for example, this data can tell us how often users use a particular feature of the Services, and we can use that knowledge to make the Services interesting to as many users as possible.
In addition to our own cookies, we use 3rd parties such as Google Analytics for website analytics. You may opt-out of third party cookies from Google Analytics on its website. We do not currently respond to browser-initiated Do Not Track signals due to the lack of an industry standard for complying with such signals.
We may share your Personal Information with third parties as described below:
We may de-identify your Personal Information so that you are not identified as an individual, and provide that information to our partners. We may also provide aggregate usage information to our partners (or allow partners to collect that information from you), who may use such information to understand how often and in what ways people use our Services, so that they, too, can provide you with an optimal online experience. However, we never disclose aggregate usage or de-identified information to a partner (or allow a partner to collect such information) in a manner that would identify you as an individual.
In certain situations, businesses or third party websites we’re affiliated with may provide products or services to you through or in connection with the Services (either alone or jointly with us). You can recognize when an affiliated business is associated with such a transaction or service, and we will share your Personal Information with that affiliated business only to the extent that it is related to such transaction or service. One such service may include the ability for you to automatically transmit Third Party Account Information to your Services profile or to automatically transmit information in your Services profile to your third party account; for example, storing, synchronizing and processing data from your existing e-mail account. We have no control over the policies and practices of third party websites or businesses as to privacy or anything else, so if you choose to take part in any transaction or service relating to an affiliated website or business, please review all such business’ or websites’ policies; for example, even when you are using Astro, your emails may be sent to both Astro and your existing email account and your existing email accounts policies will apply to emails in your existing email account.
We employ other companies and people to perform tasks on our behalf and need to share your information with them to provide products or services to you; for example, we may use a payment processing company to receive and process your credit card transactions for us. Unless we tell you differently, our agents do not have any right to use the Personal Information we share with them beyond what is necessary to assist us. Note that an “agent” may also be considered a “partner” in certain circumstances, and may be subject to the terms of the “Information that’s been de-identified” section above in that regard.
Certain user profile information, including your name and email address may be displayed to other users to facilitate user interaction within the Services or address your request for our services. For example, your user name may be displayed to other users if and when you send messages or comments or upload images or videos through the Services and other users can contact you through messages and comments. Additionally, if you sign into the Services using your existing e-mail account, your emails, attachments and correspondence history from that existing e-mail account may be automatically imported to the Services. Again, we do not control the policies and practices of any other third party site or service. If you have an Astro Account, we may disclose that you are one of our customers to any third-party at our sole discretion.
We may choose to buy or sell assets, and may share and/or transfer customer information in connection with the evaluation of and entry into such transactions. Also, if we (or our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information could be one of the assets transferred to or acquired by a third party.
Your Astro Account is protected by the security settings for your computer or device for your privacy and security. If you access your Astro Account via a third party site or service, you may have additional or different sign-on protections via that third party site or service. You must prevent unauthorized access to your Astro Account and Personal Information by selecting your security settings on your computer or device and protecting your computer or device appropriately to prevent unauthorized use or access.
To protect your User Data, we use industry standard secure authentication and encryption code and protocols to encrypt User Data in transit and at rest. We use two-factor authentication for all server access in our production environment and we maintain industry standard system logging and monitoring. For further details on our security practices, see our Help site.
We endeavor to protect the privacy of your Astro Account and other Personal Information we hold in our records, but unfortunately, we cannot guarantee complete security. Unauthorized entry or use, hardware or software failure, and other factors, may compromise the security of user information at any time.
Through your Astro Account settings, you may access, and, in some cases, edit or delete the following information you’ve provided to us:
THE INFORMATION YOU CAN VIEW, UPDATE, AND DELETE MAY CHANGE AS THE SERVICES CHANGE. IF YOU HAVE ANY QUESTIONS ABOUT VIEWING OR UPDATING INFORMATION WE HAVE ON FILE ABOUT YOU, PLEASE CONTACT US AT SUPPORT@ASTRO.AI.
Under California Civil Code Sections 1798.83-1798.84, California residents are entitled to contact us to prevent disclosure of Personal Information to third parties for such third parties’ direct marketing purposes; in order to submit such a request, please contact us at email@example.com.
If you have any questions or concerns regarding our privacy policies, please send us a detailed message to firstname.lastname@example.org, and we will try to address your concerns.
If you are a resident of the European Union (“EU”), United Kingdom, Lichtenstein, Norway, or Iceland, you may have additional rights under the EU General Data Protection Regulation (the “GDPR”) with respect to your Personal Data, as outlined below.
For this section, we use the terms “Personal Data” and “processing” as they are defined in the GDPR, but “Personal Data” generally means information that can be used to individually identify a person, and “processing” generally covers actions that can be performed in connection with data such as collection, use, storage and disclosure. Company will be the controller of your Personal Data processed in connection with the Services.
We collect Personal Data about you when you provide such information directly to us, when third parties such as our business partners or service providers provide us with Personal Data about you, or when Personal Data about you is automatically collected in connection with your use of our Services.
Information we collect directly from you: We receive Personal Data directly from you when you provide us with such Personal Data, including without limitation the following:
Information we receive from third party sources: Some third parties such as your email service provider provide us with Personal Data about you, such as the following:
Information we automatically collect when you use our Services: Some Personal Data is automatically collected when you use our Services, such as the following:
We process Personal Data to operate, improve, understand and personalize our Services. For example, we use Personal Data to:
We will only process your Personal Data if we have a lawful basis for doing so. Lawful bases for processing include consent, contractual necessity and our “legitimate interests” or the legitimate interest of others, as further described below.
Examples of these legitimate interests include:
We also share Personal Data when necessary to complete a transaction initiated or authorized by you or provide you with a product or service you have requested. In addition to those set forth above, these parties also include:
We also share Personal Data when we believe it is necessary to:
We also share information with third parties when you give us consent to do so.
Furthermore, if we choose to buy or sell assets, user information is typically one of the transferred business assets. Moreover, if we, or substantially all of our assets, were acquired, or if we go out of business or enter bankruptcy, user information would be one of the assets that is transferred or acquired by a third party, and we would share Personal Data with the party that is acquiring our assets. You acknowledge that such transfers may occur, and that any acquirer of us or our assets may continue to use your Personal Information as set forth in this policy.
We retain Personal Data about you for as long as you have an open account with us or as otherwise necessary to provide you Services. In some cases we retain Personal Data for longer, if doing so is necessary to comply with our legal obligations, resolve disputes or collect fees owed, or is otherwise permitted or required by applicable law, rule or regulation. Afterwards, we retain some information in a depersonalized or aggregated form but not in a way that would identify you personally.
We seek to protect Personal Data using appropriate technical and organizational measures based on the type of Personal Data and applicable processing activity. For example, all Personal Data is encrypted and access to our encryption keys are tightly controlled.
You have certain rights with respect to your Personal Data, including those set forth below. For more information about these rights, or to submit a request, please email Please note that in some circumstances, we may not be able to fully comply with your request, such as if it is frivolous or extremely impractical, if it jeopardizes the rights of others, or if it is not required by law, but in those circumstances, we will still respond to notify you of such a decision. In some cases, we may also need to you to provide us with additional information, which may include Personal Data, if necessary to verify your identity and the nature of your request.
The Services are hosted and operated in the United States (“U.S.”) through Company and its service providers, and if you do not reside in the U.S., laws in the U.S. may differ from the laws where you reside. By using the Services, you acknowledge that any Personal Data about you, regardless of whether provided by you or obtained from a third party, is being provided to Company in the U.S. and will be hosted on U.S. servers, and you authorize Company to transfer, store and process your information to and in the U.S., and possibly other countries. You hereby consent to the transfer of your data to the U.S. pursuant to safeguard(s) for cross-border transfer: (i) a data processing agreement incorporating standard data protection clauses promulgated by the EC, a copy of which can be obtained at https://eur-lex.europa.eu/legal-content/EN/TXT/?uri=celex%3A32010D0087, (ii) binding corporate rules for data protection that align with the GDPR’s requirements, or (iii) adherence to an industry- or technology-specific approved code of conduct blessed by the EC.
If you have any questions about this section or our data practices generally, please contact us via our Data Protection Officer, email@example.com, providing the following information:
Your Email Address:
Your Physical Address:
Designated representative and contact information (if different from above):