Astraa Vastu
PrivacyTermsRefund

Privacy Policy

Effective Date: May 13, 2026 · Last Updated: May 13, 2026

Overview

This Privacy Policy describes how Astraa Vastu ("Company", "we", "us", or "our") collects, uses, stores, and protects information obtained from users ("you", "User") of astraavastu.com and its related services (collectively, the "Platform"). By accessing or using the Platform, you consent to the practices described in this policy.

1. Information We Collect

1.1 Information You Provide Directly

  • Account Registration: name, email address, and password (or OAuth token if using Google Sign-In)
  • Profile Information: any optional profile details you add
  • Project Data: floor plan files, annotations, Vastu analysis inputs, and notes you create on the Platform
  • Communications: messages you send to our support email

1.2 Information Collected Automatically

  • Usage Data: pages visited, features used, session duration, click patterns, and error logs
  • Device Information: browser type, operating system, IP address, and device identifiers
  • Cookies and Local Storage: session tokens, user preferences, and authentication state. You may disable cookies in your browser, but certain features may not function correctly

1.3 Payment Information

All payment transactions are processed by Razorpay (Razorpay Software Private Limited). We do not collect, store, or process credit card numbers, bank account details, or UPI credentials. Razorpay's privacy policy governs all payment data.

1.4 AI Interaction Data

Prompts and inputs submitted to the Vastu AI assistant are processed by Anthropic, Inc. These inputs may include floor plan descriptions and property details. Please do not submit sensitive personal information in AI prompts.

2. How We Use Your Information

We use the information we collect to:

  1. Create and manage your account
  2. Provide, operate, and improve the Platform and its features
  3. Process subscription payments and send billing confirmations
  4. Send transactional emails such as account verification, password resets, and payment receipts
  5. Respond to support requests and communications
  6. Detect and prevent fraud, abuse, and security incidents
  7. Comply with applicable laws and legal obligations
  8. Analyze usage trends to improve user experience

We do not sell your personal data to third parties. We do not use your data for advertising purposes.

3. Sharing of Information

3.1 Service Providers

We engage the following third-party service providers who process data on our behalf, under confidentiality obligations:

  • Supabase Inc. — database hosting, authentication, and file storage
  • Anthropic, Inc. — AI language model processing
  • Razorpay Software Private Limited — payment processing
  • Google LLC — OAuth authentication (if you use Google Sign-In)
  • Vercel Inc. — application hosting and content delivery

3.2 Legal Requirements

We may disclose your information if required to do so by law, court order, or governmental authority, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you by email and/or a prominent notice on the Platform before your information becomes subject to a different privacy policy.

3.4 With Your Consent

We may share information with third parties when you have given us explicit consent to do so.

4. Data Storage and Security

Your data is stored on Supabase-managed servers. We implement industry-standard security measures including:

  • Encryption of data at rest and in transit (TLS/SSL)
  • Row-level security policies on database access
  • Authentication tokens with expiry and rotation
  • Access controls limiting staff access to user data

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Platform. After account deletion, we may retain certain data for up to 30 days in backup systems before permanent deletion. Billing and transaction records may be retained for up to 7 years as required by applicable Indian accounting and tax laws.

6. Your Rights

You have the right to:

  1. Access the personal data we hold about you
  2. Request correction of inaccurate data
  3. Request deletion of your account and associated data
  4. Withdraw consent for optional data processing at any time
  5. Receive a copy of your data in a portable format (where technically feasible)

To exercise any of these rights, email us at astraavastu@gmail.com. We will respond within 30 days.

7. Account Deletion

To permanently delete your account and all associated project data, email astraavastu@gmail.com with the subject line "Account Deletion Request". Include the email address associated with your account. We will process the deletion within 7 business days and confirm by email.

Note: Deletion is irreversible. All projects, floor plans, and analysis data will be permanently removed.

8. Cookies

We use cookies and similar technologies for:

  • Session authentication (essential — cannot be disabled without breaking login functionality)
  • User preferences such as theme and language settings
  • Analytics to understand Platform usage

You can manage cookie preferences through your browser settings. Disabling essential cookies will prevent you from logging in.

9. Children's Privacy

The Platform is not directed at children under the age of 13. We do not knowingly collect personal information from children. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly. If you believe a child has provided us with data, contact us at astraavastu@gmail.com.

10. International Users

The Platform is operated from India. If you access the Platform from outside India, your data will be transferred to and processed in India and on servers operated by our service providers (which may be located in the United States or other jurisdictions). By using the Platform, you consent to this transfer.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a prominent notice on the Platform at least 7 days before the change takes effect. Your continued use of the Platform after the effective date constitutes acceptance of the updated policy.

12. Contact

For privacy-related questions or requests:

Email: astraavastu@gmail.com
Website: astraavastu.com

Privacy PolicyTerms & ConditionsRefund Policy© 2026 Astraa Vastu