Privacy Policy

AstroViral Analytics — BY Sirius Group Ai & Technology Co. · Last updated: April 7, 2026

1. Introduction

Welcome to AstroViral Analytics ("we", "our", "us"), operated by BY Sirius Group Ai & Technology Co. We are committed to protecting your personal information and your right to privacy.

2. Information We Collect

Account & Profile Data

  • Name, email address, and hashed password when you register
  • Profile settings and language preferences

Usage & Device Data

  • Pages visited, features used, and search queries within the platform
  • IP address, browser type, operating system, and session timestamps
  • Activity logs used for security and service improvement

Connected Platform Data

  • TikTok: When you connect a TikTok account via OAuth, we access your public profile (username, display name, follower count), public video metrics (views, likes, comments, shares), and hashtag/trend data provided by the TikTok API. We do not access private messages, contacts, or data beyond what you explicitly authorize.
  • Instagram: When you connect an Instagram account via Meta OAuth, we access the public profile information and media metrics you authorize. We do not access private messages or contacts.

Billing Data

  • Subscription status and transaction history. Payment card details are processed and stored by Stripe — we do not store full card numbers.

3. How We Use Your Information

We process your data on the following legal bases (GDPR Article 6): contract performance (to deliver the Service), legitimate interests (platform security and improvement), legal obligation (financial record-keeping), and consent (where you have opted in).

  • Provide and operate the analytics platform
  • Process subscription payments
  • Respond to support requests
  • Detect and prevent abuse or unauthorized access
  • Comply with legal obligations

We do not sell your personal data to third parties.

4. Data Sharing & Sub-Processors

We share data only with the following trusted sub-processors, under contractual data protection obligations:

  • Stripe — payment processing (PCI DSS compliant)
  • Supabase — secure database hosting
  • Vercel — hosting and CDN infrastructure
  • Meta & TikTok APIs — only to fetch data you explicitly authorize via OAuth
  • Law enforcement or regulatory authorities when legally required

5. Cookies & Session Management

We use the following types of cookies:

  • Essential cookies: Required for authentication and session management. The platform cannot function without these.
  • Preference cookies: Store your language and display settings across sessions.
  • Analytics cookies: Anonymous usage statistics to improve the platform. No personally identifiable information is included.

You can disable non-essential cookies in your browser settings. Disabling essential cookies will prevent authentication from working correctly.

6. Data Retention

  • Account data: retained while your account is active
  • Usage logs: 90 days
  • Billing records: 7 years (legal requirement)
  • After account deletion: data removed within 30 days

7. Your Rights (GDPR / UK GDPR)

You have the right to access, correct, delete, export, and object to processing of your personal data.

To exercise these rights: privacy@astroviral.com

8. Security

All data is transmitted with HTTPS encryption. Sensitive data is stored encrypted. Regular security audits are conducted.

9. Children's Privacy

Our service is not directed to children under 16. We do not knowingly collect data from minors.

10. Changes to This Policy

We may update this policy periodically. We will notify you via email or in-app notification for significant changes.

11. Contact Us

BY Sirius Group Ai & Technology Co.

Email: privacy@astroviral.com

HomeTerms of ServiceBilling