Your birth data is personal. We treat it as such. This policy describes — in as few words as we can manage — what we collect, what we do with it, and the rights you hold over it.
We collect the birth data you give us, your email and payment details when you buy something, and a small amount of analytics when you visit the site. We use it to draw your charts, deliver your reports, and keep the lights on.
We do not sell your data. We do not share it with advertisers. We do not train machine-learning models on it. We keep what we must, for as long as we must, and no longer.
Name, email, birth date, birth time, birth location. Whatever you type into the chart forms. If you buy something, a billing address and the last four digits of your card — your card number itself is held by our payment processor, not by us.
Standard server logs — IP, browser, referring URL, pages visited. Analytics about which pages convert and which don't. Error reports when something breaks.
To render your chart and deliver your report. To send you order receipts and, if you've subscribed, the monthly Astro-Charts letter. To debug problems, detect fraud, and understand which features people use. That's it.
We do not profile you to advertisers. We do not build look-alike audiences. We do not feed your birth data to third-party AI systems.
We use a small number of first-party cookies to keep you signed in and remember your chart preferences. Our analytics is cookieless. Affiliate links set a single tracking cookie that expires in ninety days.
You can clear these at any time from your browser's settings. Doing so will sign you out; the site will otherwise work fine.
Birth data stays as long as your account is open; if you delete the account, we erase it within thirty days, except where we're legally required to hold it longer (e.g. tax records, which we keep for seven years).
Server logs are deleted after ninety days. Analytics is anonymous and held in aggregate.
You can ask for a copy of everything we hold about you, correct anything wrong, or delete it entirely. Under the GDPR, CCPA, and similar laws, you have the right to object to processing and to move your data elsewhere.
To exercise any of these, write to [email protected]. We'll respond within thirty days.
Data in transit is encrypted with TLS. Data at rest is encrypted at the disk level. Passwords are hashed with Argon2. Access to production data is restricted to a short list of engineers, each reached through multi-factor authentication. We run an external penetration test every twelve months.
No system is perfect. If we ever discover a breach of your data, we'll notify you within seventy-two hours and tell you what happened and what we're doing about it.
The site isn't for children under thirteen, and we don't knowingly collect their data. If you're a parent and you think your child has given us information, write to us and we'll remove it.
Astro-Charts is operated from the United States. If you use the site from the EU, UK, or elsewhere, your data will be transferred to and processed in the US under the appropriate Standard Contractual Clauses.
We'll update this policy when the product or the law changes. Material changes get a thirty-day email notice to account holders. The effective date at the top is the one that counts.
For privacy questions or data requests, write to [email protected]. For anything else, [email protected] is the better address.