Home

Privacy policy

IMPORTANT INFORMATION

In order to use the Service, we may ask you to enter your gender, date of birth, place of birth, and time of birth. We also automatically collect language settings, IP address, time zone, type and model of a device, device settings, operating system, Internet Service provider, mobile carrier, hardware ID, Facebook ID, and other unique identifiers (such as IDFA and GAID) from your device. We need this data to provide the Service, analyze how our customers use the Service, and serve advertising.

To improve the Service and serve advertising, we may share this data with third parties. Such parties include Meta, Google, Apple, Firebase. As a result of sharing this data with third parties we (1) analyze different interactions (e.g. how often users make subscriptions,); (2) serve advertising (and show them only to a particular group of users, for example, to subscribers).

Please read our Privacy Policy below to know more about what we do with data (Section 3), what data privacy rights are available to you (Section 5) and who will be the data controller (Section 1). If any questions remain unanswered, you can contact us via email support@appastro.co

This Privacy Policy explains what personal data is collected when you use our mobile applications, websites and services provided through them (together “App” or “the Service”) and how these personal data will be used and shared.

BY USING THE SERVICE, YOU PROMISE US THAT (I) YOU HAVE READ, UNDERSTAND AND AGREE TO THIS PRIVACY POLICY, AND (II) YOU ARE OVER 16 YEARS OF AGE (OR HAVE HAD YOUR PARENT OR GUARDIAN READ AND AGREE TO THIS PRIVACY POLICY FOR YOU). If you do not agree, or are unable to make this promise, you must not use the Service. In such case, you must (a) delete your account using the functionality found in “Settings” in the App, or contact us and request deletion of your data; (b) cancel any subscriptions using the functionality provided by Apple (if you are using iOS) or Google (if you are using Android), any other app stores that may be available from time to time, or by us if you purchased it directly from our websites; and (c) delete the App from your devices.

“GDPR” means the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data.

“EEA” includes all current member states of the European Union and the European Economic Area.

“Process”, in respect of personal data, includes to collect, store, and disclose to others.

TABLE OF CONTENTS

  1. PERSONAL DATA CONTROLLER
  2. CATEGORIES OF PERSONAL DATA WE COLLECT
  3. PURPOSES AND LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA
  4. WITH WHOM WE SHARE YOUR PERSONAL DATA
  5. HOW YOU CAN EXERCISE YOUR RIGHTS
  6. AGE LIMITATION
  7. INTERNATIONAL DATA TRANSFERS
  8. CHANGES TO THIS PRIVACY POLICY
  9. FOR CALIFORNIA RESIDENTS
  10. FOR VIRGINIA RESIDENTS
  11. DATA RETENTION
  12. HOW “DO NOT TRACK” REQUESTS ARE HANDLED
  13. CONTACT US

1. PERSONAL DATA CONTROLLER

Talentin LTD (with registered office at 66 Vitosha Blvd., floor 4, Triaditsa district, Sofia, 1463, Bulgaria) will be the controller of your personal data.

2. CATEGORIES OF PERSONAL DATA WE COLLECT

We collect the following data about you;

  1. Data you directly provide to us (for example, date of birth).
  2. Data we receive about you from third parties (for example, when you sign in via Google).
  3. We also collect data automatically when you use the Service (for example, your IP address).

2.1. Data you directly provide to us

Identifiers: This may include your name, phone number, email address. You provide us with this information when you register for the Service, purchase the Service, subscribe to our newsletters, or contact us by any other means.

Onboarding and product data: You provide us with onboarding information and quiz answers when you register for the Service and/or go through the onboarding process and/or use the Service. This may include gender, date of birth, place of birth, time of birth, and answers to quiz questions.

Communications data: When you interact with our Support Team, we process the text and/or contents of your conversations. This data includes any information you may share during these conversations such as your inquiries, feedback, questions, goals, photographs, or any other details you may discuss.

Payment data: When you make payments through the Service, you need to provide financial account data, such as your credit card number, to our third-party service providers that serve us as data and payments processors. We do not collect or store, or have access to full credit card number data, though we may receive some limited information, including credit card-related data (including a secure token reflecting your payment method), data about products or services purchased, date, time and amount of the purchase, the type of payment method used, limited digits of your card number.

2.2 Data we receive from third parties

Third-party account ID: When you create an account or login in the App using your third-party account (Google, Apple, Meta), we get personal data from that third party. This data may include your account ID, name, profile picture, and verified email address.

Apple Sign-in: When you sign in with Apple to register an account in the App, we get personal data from your Apple ID account. This data may include, in particular, your name and verified email address. You may choose to share your real email address or an anonymous one that uses the private email relay service. Apple will show you their detailed privacy information on the sign in with the Apple screen. Find more about sign-in with Apple here.

Facebook Sign-In: When you decide to log in using Facebook, we get personal data from your Facebook account. This includes your name and Facebook ID. Unless you opt out on the Facebook Login screen, we will also collect your email address. For more information, please refer to the Facebook Permissions Reference (describes the categories of information, which Facebook may share with third parties and the set of requirements) and to the Facebook Data policy. In addition, Facebook lets you control the choices you made when connecting your Facebook profile to the Website on their Apps and Websites page.

Google Sign-In: When you decide to log in using Google, we receive personal data from your Google Account: name, email address, and profile picture associated with your Google Account. You can revoke access provided to us on the Apps Permissions page. To know more about how Google processes your data, visit its Privacy Policy.

Mobile application marketplace data: When you download Astro’s mobile application from the marketplace, they automatically share with us data regarding your interaction with their platform and marketplace’s webpage of our application. This data may include your click time, application’s download start and total time, search keyword ID, and type of your conversion and engagement with the marketplace.

2.3 Data we collect automatically:

Advertising performance data: We collect data about your referring application or URL (the application or place on the Web you were on when you tapped on our advertising). This may include name and type of the advertising campaign, name and ID number of the advertising, and advertising click time.

Device and Location data: We collect data from your mobile device. This may include language settings, IP address, time zone, type and model of a device, device settings, operating system, screen resolution, Internet Service provider, mobile carrier, hardware ID, and Facebook ID. Also, if your device settings allow us to do so, we collect your location data (city, region, country, postal code, designated market area) when you visit our websites or open our mobile application.

Online activity data and Consumption information: We record how you interact with our Service. For example, we log what features and content you interact with, how often you use the Service or the App, how long you stay in the Service or the App, what sections you use, and your subscription orders, to what extent you consume in-app purchases, and other. This category of personal data includes Consumption Information, which may be shared with Apple’s App Store.

Advertising IDs: Depending on the operating system of your device, we collect your Apple Identifier for Advertising (“IDFA”) or Google Advertising ID (“GAID”). You can typically reset these numbers through the settings of your device’s operating system; we do not control these settings or the reset process.

Cookies and similar tracking technologies: We employ technologies (cookies, SDKs, etc.) to process your data to enhance your user experience, optimize ads, and analyze traffic. For example, we use Meta Pixel and Google tracking cookies to collect data about your actions while using the Service, including which pages you visit, the time you spend on each page, and the actions you take. This data is used to measure the effectiveness of our advertising campaigns and to personalize the content and advertising we show to customers. Unless the applicable laws permit otherwise, we activate these technologies upon your consent when you interact with the Service, visit our websites, use our apps, or enable certain features of the Service. Disabling these technologies may affect the functionality of certain features, although the Service will remain usable. Furthermore, we and our partners utilize targeting technologies to tailor advertising, potentially displaying them to you at relevant moments. When enabled, your interactions with the Service or the App could result in seeing our advertising on social media platforms, assisting us in measuring advertising campaign effectiveness. Check our Cookie Policy for more information.

3. PURPOSES AND LEGAL BASES FOR PROCESSING YOUR PERSONAL DATA

We collect and use your data primarily to provide and improve our services, as well as to enhance their overall quality. Furthermore, we aim to attract new customers to our Service. Below is a detailed explanation of the legal bases for and purposes of processing your personal data.

Purpose of processing Category of personal data Lawful basis
To provide Service (e.g., provide content for you) and administer your account
  • All categories (including the Onboarding and product data, e.g., quiz answers)

Performance of a contract with you
To research, analyze, and enhance performance of the Service
  • All categories

Legitimate interest (to improve the Service so that we understand users’ preferences and are able to provide a better user experience, make the use of the Service easier and more enjoyable, or introduce new features and offers)

To ensure quality control and safety of the Service
  • Identifiers
  • Onboarding and product data
  • Communications data
  • Device data
  • Online activity data

Performance of contract

Legitimate interest (to resolve issues and disputes with customers; to respond to crash error system reports; to ensure that individuals responsible for providing the Service deliver the necessary quality of work)

To provide customer support
  • All categories

Performance of a contract with you
To process payments, refunds, and chargebacks
  • Identifiers
  • Payments data
  • Online activity data and Consumption information

Performance of a contract with you (if we fulfil contractual terms)

Legal obligation (if we take action as required by the law)

Your consent

Legitimate interest (protecting our business from fraudulent claims, making informed and efficient decisions regarding refund requests)

To enforce Terms and Conditions of Use, prevent and combat fraud, violations of law and misbehavior, and ensure informational security of the Service
  • All categories

Legal obligation (if we take action as required by the law)

Legitimate interest (to enforce our legal rights, policies, rules, prevent and address fraud, violations of law, misbehaviour or unauthorized use of the Service, and ensure compliance with our Terms and Conditions of Use. This helps provide a secure and reliable Service for all users)

To send communications about the Service (by emails, SMS, push)
  • All categories

Performance of a contract with you
To send marketing communications

(As a result, you will receive information about our products, such as, for example, special offers or new features, products available on the Service, and reminders to make purchases not completed before. We may show you advertisements on our Service, and send you emails, push notifications, and SMS for marketing purposes Note: Each marketing email or SMS includes an unsubscribe option)

  • Identifiers
  • Onboarding and product data (including quiz answers)

Your consent

Legitimate interest (in jurisdictions where consent is not required: to encourage you to use Service, for example, to notify you; to promote the Service, for example, if you didn’t complete the purchase before, we keep your data for a limited period of 3 months to send reminder emails inviting you to purchase).

To serve personalized advertising

(for example, if you have installed our Service, you might see ads of our production your Facebook feed)
  • Identifiers
  • Onboarding and product data
  • Payment data
  • Mobile application marketplace data
  • Device and Location data
  • Advertising IDs
  • Cookies and tracking technologies

Your consent

Legitimate interest (in jurisdictions where consent is not required, to promote the Service in a measured and reasonably targeted way, showing you content that's more likely to be relevant to your interests rather than generic advertising)

To analyze performance of advertising (measuring impression accuracy, ensuring proper ad placement and quality, confirming compliance with industry standards)
  • Onboarding and product data
  • Payment data
  • Advertising performance data
  • Device and Location data
  • Online activity data and Consumption information
  • Advertising IDs
  • Cookies and tracking technologies

Your consent

Legitimate interest (in jurisdictions where consent is not required, to promote the Service in a measured and appropriate way and to ensure the accuracy and quality of our advertising campaigns and complying with industry standards. This helps us measure effectiveness and maintain transparent business practices)

To comply with legal obligations
  • All categories

Legal obligation

4. WITH WHOM WE SHARE YOUR PERSONAL DATA

We share information with third parties that help us operate, provide, improve, integrate, customize, support, and market our Service. We may share some sets of personal data, in particular, for purposes and with parties indicated in Section 3 of this Policy. We strive to conclude specific data processing agreements with all such parties to establish the rules for processing of your data specifically on our behalf and limited to it.

The types of third parties we share information with include the following:

Third-party providers. We share personal data with third parties that we hire to provide services or perform business functions on our behalf, based on our instructions. We process your personal information using the following types of service providers (and in certain cases, their subprocessors):

  1. Cloud storage: we use Amazon Web Service to host personal data and enable our Service to operate.
  2. Monitoring of the Service: we use Firebase Performance Monitoring and Firebase Crash Reporting to monitor infrastructure and performance of the Service, identify and resolve errors and crashes in our Service across different platforms.
  3. Data analytics:

    - We use Meta Pixel, TikTok Pixel, and Google Analytics to analyze how you use the Service and measure the effectiveness of some advertising.

  4. Gateway service and payment processing: we use various payment processing and payment gateway providers that help us connect with different banks and payment systems around the world. Due to the large number of payment processing providers we work with, we cannot list them all here.
  5. Email verification and login: we use Debounce.io to validate, check and verify email addresses of users. We also use Google, Meta, and Apple APIs to enable social sign-in features.
  6. Functionality of the Service: we use OpenAI solutions to generate readings and reports for you. Please note that we send only de-identified data to OpenAI.
  7. Communications:

    - We use Firebase and Apple Push Notification to send Service messages and notifications to you.
    - We use OpenAI to customize push notifications based on the analysis of de-identified content of limited recent interactions with customers.

  8. Security: We use Cloudflare as a content delivery network provider to improve the security and performance of our websites and protect them from malicious attacks.
  9. Marketing and advertising:

    - We use Meta Ads Manager and MetaMeta Custom Audience, TikTok Ads Manager and Pinterest Ads Manager to choose audiences that will see our advertising and deliver advertising Meta’s, TikTok’s, and Pinterest’s platforms.
    - We use Google Ads and Bing Ads to deliver advertising to users in Google and Bing browsers.
    - From time to time, we may use third-party ad networks, ad agencies, and direct publishers that provide us with advertising solutions for displaying our advertising on various websites and apps.

Law enforcement agencies and other public authorities. We may use and disclose personal data to enforce our Terms and Conditions of Use, to protect our rights, privacy, safety, or property, and/or that of our affiliates, you or others, and to respond to requests from courts, law enforcement agencies, regulatory agencies, and other public and government authorities, or in other cases provided for by law.

Third parties as part of a merger or acquisition. As we develop our business, we may buy or sell assets or business offerings. Customers’ information is generally one of the transferred business assets in these types of transactions. We may also share such information with any affiliated entity (e.g. parent company or subsidiary) and may transfer such information in the course of a corporate transaction, such as the sale of our business, a divestiture, merger, consolidation, or asset sale, or in the unlikely event of bankruptcy.

Affiliates. We may share your personal information with our partner organizations that are part of our corporate group - these are companies that are owned by, own, or are jointly-owned with us. These partner organizations will use the information in ways that align with this Policy, ensuring that your privacy is respected and protected across all our affiliated services.

5. HOW YOU CAN EXERCISE YOUR RIGHTS

To be in control of your personal data, you have the following rights:

Accessing / reviewing / updating / correcting your personal data.You may review, edit, or change the personal data that you had previously provided in the App in the settings section of the App.

You may also request a copy of your personal data collected during your use of the App via support@appastro.co.

Deleting your personal data. You can request erasure of your personal data by sending us a request via support@appastro.co.

When you request deletion of your personal data, we will use reasonable efforts to honor your request. In some cases we may be legally required to keep some of the data for a certain time as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements; in such event, we will fulfill your request after we have complied with our obligations.

Objecting to or restricting the use of your personal data. You can ask us to stop using all or some of your personal data or limit our use thereof by sending a request via support@appastro.co.

Additional information for EEA-based users

If you are based in the EEA, you have the following rights in addition to the above:

The right to lodge a complaint with supervisory authority. We would love you to contact us directly, so we could address your concerns. Nevertheless, you have the right to lodge a complaint with a competent data protection supervisory authority, in particular in the EU Member State where you reside, work or where the alleged infringement has taken place. You can find a list of the EU national data protection authorities at: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en.

The right to data portability. If you wish to receive your personal data in a machine-readable format, you can send a respective request via support@appastro.co.

6. AGE LIMITATION

We do not knowingly process personal data from persons under 16 years of age. If you learn that anyone younger than 16 has provided us with personal data, please contact us via support@appastro.co.

7. INTERNATIONAL DATA TRANSFERS

We may transfer personal data to countries other than the country in which the data was originally collected in order to provide the Service set forth in the Terms and Conditions of Use and for purposes indicated in this Privacy Policy. If these countries do not have the same data protection laws as the country in which you initially provided the information, we deploy special safeguards.

In particular, if we transfer personal data originating from the EEA to countries with adequate level of data protection, we rely on the adequacy decision of the European Commission for this country (details available here); for example, we transfer personal data to the USA based on the EU-U.S Data Privacy Framework program. If we transfer personal data originating from the EEA to countries without adequate level of data protection, we rely on the Standard Contractual Clauses approved by the European Commission (details available here).

8. CHANGES TO THIS PRIVACY POLICY

We may modify this Privacy Policy from time to time. If we decide to make material changes to this Privacy Policy, you will be notified through our Service or by other available means and will have an opportunity to review the revised Privacy Policy. By continuing to access or use the Service after those changes become effective, you agree to be bound by the revised Privacy Policy.

9. FOR CALIFORNIA RESIDENTS

California’s Shine the Light law gives California residents the right to ask companies once a year what personal information they share with third parties for those third parties' direct marketing purposes. Learn more about what is considered to be personal information under the statute.

To obtain this information from us, please contact us via support@appastro.co and indicate that this is a “Request for California Privacy Information”. If you are a California resident, we will provide the requested information to you at your email address in response.

10. FOR VIRGINIA RESIDENTS

This section supplements our Privacy Policy and only applies if you reside in the Commonwealth of Virginia. Where applicable, it describes how we use and process your personal data and explains your particular rights under Virginia Consumer Data Privacy Act (VCDPA).

A. Disclosures about the use of your personal data

We may collect and use certain information about you, some of which may be personal data (such as your email address, date of birth, name, height, weight, or other information which may be reasonably linked to you), in order to operate the Service and to maximize your experience.

If you would like more information about the categories of your personal data we collect or the purposes for which we collect them, please read Section 2 and Section 3. To learn more about sharing your personal data with our business partners and other third parties, please read Section 4.

B. Data Rights

Section 5 of our Privacy Policy describes the data rights we offer to all users and how to execute these rights. This includes the right to access, review, correct, update your data, obtain a portable copy of your data, or delete data related to your stored preferences and your use of the Service. Before completing your request, we may require some information sufficient to authenticate your identity.

Additionally, VCDPA provides Virginia residents with these data rights:

  • Opt out of the Processing of your Personal Data for Targeted Advertising. In order to exercise your choice as a Virginia resident, please contact us via support@appastro.co. Please note that we do not process personal data for purposes of profiling in furtherance of decisions that produce legal or similarly significant effects concerning the consumer.
  • Confirm whether your Personal Data is being Processed. You may confirm whether your personal data is being processed by contacting us via support@appastro.co.
  • Appeal a Case with regard to your request. In the case where we declined to take action on your data rights request or have rejected your request, you may contact us via support@appastro.co to initiate an appeal of this decision. Please use the subject line “Appeal of Refusal to Take Action on Privacy Request” and provide the relevant information in the email. Once we receive your appeal, we will notify you in writing within 60 days of any action taken or not taken in response to the appeal, including a written explanation of the reasons for the decisions.

If your appeal is denied, you may contact the Office of the Virginia Attorney General via the contact details available at www.virginia.gov/agencies/office-of-the-attorney-general/#vagov.

11. DATA RETENTION

We will store your personal data for as long as it is reasonably necessary for achieving the purposes set forth in this Privacy Policy and Terms and Conditions of Use (including providing the Service to you), which includes (but is not limited to) the period during which you have an account with the App. We will also retain and use your personal data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. For example, under certain accounting and tax laws we are required to store Payment Data for long periods of time to comply with laws we are subject to. Therefore, even if you submit a data deletion request, a small portion of the data that relates to our compliance obligations will be stored even after the request is satisfied.

12. HOW “DO NOT TRACK” REQUESTS ARE HANDLED

Except as otherwise stipulated in this Privacy Policy, this App does not support “Do Not Track” requests. To determine whether any of the third-party Service it uses honor the “Do Not Track” requests, please read their privacy policies.

13. CONTACT US

You may contact us at any time for details regarding this Privacy Policy and its previous versions. For any questions concerning your account or your personal data please contact us via support@appastro.co.

Effective as of: December 1, 2025