1. Introduction

ASTROV ("we", "us", "our") respects your privacy. This Privacy Policy explains what personal information we collect, why we collect it, how we use and share it, and the choices you have.

Because ASTROV provides astrology services, some offerings require birth data (date, time, location) which is personal information used to generate charts and readings. We treat such details carefully — read the sections below for handling, retention, and security practices.

2. What we collect

We collect different types of information depending on how you use the Site:

• Account & contact data: name, email address, phone number (if you provide it), profile photo, username.
• Birth & natal data: date of birth, time of birth, place of birth, timezone — used to compute charts and readings. This data is personal and required for personalized astrological services.
• Transactional data: purchase history, invoices, billing address (when you buy paid services).
• Device & usage data: IP address, browser type, device identifiers, pages visited, clicks, session timestamps, cookies and analytics data.
• Communications: messages you send to support, user-submitted content (reviews, questions, uploaded images).
• Payment data: partial payment metadata. We do not store full card numbers — payment processors handle card data under their PCI compliance.
• Optional profile data: your location, preferences, and other optional fields you add to your profile.

3. How we use your data

We use collected data for these primary purposes:

• To deliver services: compute charts, generate horoscopes, prepare personalised readings and rituals.
• To operate the Site: account management, authentication, billing, and support.
• Improvement & personalization: improve readings quality, personalize content, and suggest relevant services.
• Marketing & communications: newsletters, promotional offers and transactional messages (only with your consent where required).
• Fraud prevention & legal compliance: detect abuse, comply with legal obligations, and defend our rights.

Important: birth data is used exclusively to generate astrological content and to improve service quality — we do not sell natal data.

4. Lawful bases & consent

Where required by applicable law (for example GDPR), we process data on the following bases:

• Consent: for marketing communications, optional personalization, or where you explicitly agree to a particular use.
• Performance of a contract: to perform services you request (e.g., creating a reading you paid for).
• Legal obligation: to comply with laws or respond to lawful requests by authorities.
• Legitimate interests: for fraud prevention, site operation, improving services, and analytics — balanced against privacy rights.

5. Who we share data with

We may share your data with:

• Service providers & processors: payment processors, email providers, analytics, cloud hosting, and other vendors that help run the Site. These parties process data only on our instruction.
• Third-party APIs: external astrology or calculation APIs when you request a reading that uses them (we describe in Section 6).
• Legal requests: where required by law or to protect our legal rights.
• Business transfers: in the event of a merger, sale, or reorganization, data may be transferred under confidentiality obligations.

We do not sell personal data. If you see a request to sell data, contact us immediately.

6. Third-party APIs & processors

Some features rely on third-party APIs or tools (e.g., horoscope generators, astrological calculators, analytics). Examples include (but are not limited to):

• Astrology APIs (aztro, API Ninjas, etc.) — these providers may receive the minimal input required to generate a reading (sign or natal data) depending on the integration.
• Payment gateways (Stripe, Razorpay, PayPal, etc.) — used for payment processing.
• Analytics & performance tools (Google Analytics, Sentry, etc.).

Where we send data to third parties we enter processor agreements where possible and require appropriate security measures. Before using a third-party astrological API that stores natal data, we recommend reviewing that API's privacy policy. We aim to minimize shares of personally-identifying natal data to external providers; where possible we compute charts in-house or send only ephemeral, minimal inputs.

7. Cookies & tracking

We use cookies and similar technologies to operate the Site and improve your experience. Typical cookie categories:

• Essential cookies: required for site operation and security (session cookies, authentication).
• Preferences & personalization: remembering language, UI preferences, etc.
• Analytics: usage statistics to improve the Site (may be pseudonymized).
• Marketing: used only with your consent to personalise promotional content.

You can control cookies via your browser settings and via the cookie banner (where shown). Blocking certain cookies may impact site functionality.

8. Security

We implement reasonable technical and organisational measures to protect personal data, including encryption in transit (TLS), access controls, and regular security reviews. However, no system is perfect — absolute security cannot be guaranteed.

If you suspect unauthorized access to your account or data, contact support immediately at astrov.icu@gmail.com.

9. Data retention

Retention is based on purpose and legal requirements. Typical retention periods (illustrative — adapt to your jurisdiction & needs):

• Account data: retained until account deletion plus a short grace period (you may request earlier deletion).
• Transactional records: retained for financial and tax compliance (commonly 7 years where applicable).
• Birth/natal data used for readings: retained until you delete your account or request removal; we may retain anonymized/aggregated data for product improvement.
• Logs & analytics: raw logs 90 days, aggregated analytics up to 26 months (or per service default).
• Backups: encrypted backups retained for up to 180 days and then rotated/deleted.

To request deletion of personal data, contact us (see Section 13).

10. Your rights

Depending on your jurisdiction you may have rights including to:

• Access the personal data we hold about you.
• Request correction of inaccurate data.
• Request deletion (the "right to be forgotten") subject to legal or contractual retention obligations.
• Obtain a copy of your data in a commonly-used format (data portability).
• Object to certain processing or withdraw consent where relied upon.
• Complain to your local data protection authority if you believe your rights are violated.

To exercise these rights, email astrov.icu@gmail.com. We will verify requests to protect privacy and security.

11. Children

Our Services are not directed to children under 13 (or local minimum age). We do not knowingly collect personal data from children without parental consent. If you believe a child has provided us personal data without consent, contact us and we will take steps to delete it.

12. International transfers

We may transfer and store data in servers located in other countries. Where transfers occur we implement appropriate safeguards such as standard contractual clauses, or rely on providers that self-certify to acceptable privacy frameworks. Contact us if you need details about specific transfer safeguards.

13. Contact & Data Protection Officer (DPO)

Questions, requests, or concerns about this Privacy Policy or your data:

Email: astrov.icu@gmail.com

If we designate a DPO or privacy lead we will list their contact here.

14. Changes to this policy

We may update this policy. Material changes will be indicated by an updated "Last updated" date and, where appropriate, additional notices. Continued use after changes constitutes acceptance.

15. Legal & important notes

This Privacy Policy is a summary of our practices. It does not create legal rights beyond the text. For legal advice about privacy compliance in your jurisdiction (India, EU, etc.) consult a qualified lawyer. If you want to host sensitive natal data in a specific way (on-premise, encrypted HSM, etc.), contact us to discuss enterprise options.