Astralog Logo Astralog

Privacy Policy

Last Updated: May 31, 2026

At AstraLog, we take your privacy seriously. This Privacy Policy outlines how we collect, use, and protect your information when you use our website, APIs, and SaaS platform.

1. Information We Collect

We collect information to provide, maintain, and improve our services:

  • Account Information: When you sign up for AstraLog Cloud, we collect your name, email address, and billing information (processed securely via Stripe).
  • Infrastructure Data (BYOC Plan): If you use the Bring Your Own Cloud plan, we require access credentials (e.g., S3 Access Keys, ClickHouse addresses) to synchronize your data. These credentials are encrypted at rest.
  • Log Data (Managed Plan): If you use our Fully Managed plan, we store the log data you send to our API. We process this data solely to provide the analytics service to you.
  • Usage Telemetry: We collect aggregated, anonymized metrics (e.g., ingestion volume, API latency) to monitor the health of the AstraLog engine.

2. How We Use Your Information

We use the collected information to:

  • Authenticate your API requests and dashboard access.
  • Process your subscription payments.
  • Synchronize your log data from staging (S3) to analytics (ClickHouse).
  • Provide customer support and send critical service updates (e.g., downtime alerts).

3. How We Protect Your Data

Security is core to our architecture:

  • Encryption: All data in transit (via the ingestion API) is encrypted using TLS/SSL.
  • Credential Storage: Customer S3 and ClickHouse credentials in the BYOC plan are encrypted in our database and never exposed in plaintext.
  • No Data Selling: We do not, and will never, sell your personal information or log data to third parties.

4. Third-Party Subprocessors

To provide our service, we share limited data with trusted third parties:

  • Stripe: For payment processing (we do not store your credit card numbers).
  • AWS / Google Cloud / Hetzner: For hosting our ingestion servers and Managed ClickHouse clusters.
  • Authentication: We use industry-standard providers to ensure secure access to your account.

5. Your Rights (GDPR & CCPA)

Depending on your location, you have the right to:

  • Access the personal data we hold about you.
  • Request the deletion of your account and associated data ("Right to be Forgotten").
  • Opt-out of marketing communications.

To exercise these rights, please contact us at privacy@astralog.cloud.

6. Data Retention

  • BYOC Plan: Log data is never stored permanently on AstraLog servers; it resides exclusively in your cloud infrastructure.
  • Managed Plan: We retain your log data for the duration specified in your active plan (e.g., 15 or 30 days). Once the retention period expires, the data is automatically deleted.

7. Changes to this Policy

We may update this Privacy Policy as our services evolve. We will notify you of any material changes via email or an announcement on our dashboard.

8. Contact Us

If you have questions about this Privacy Policy, please contact us at:
Email: privacy@astralog.cloud