Privacy Policy

Introduction

AstraLink Connect, LLC (“AstraLink”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our network security services, or interact with us in any way.

We operate from Houston, Texas, and our services are designed to sit between your ISP router and your devices, which means we take the responsibility of handling your data with the utmost seriousness. This policy applies to all personal information processed by AstraLink in the course of providing our enterprise-grade network security solutions to small businesses.

Information We Collect

Information You Provide to Us

We collect information that you voluntarily provide when you:

Register for an account or request a demo
Contact our support team or sales representatives
Subscribe to our newsletter or marketing communications
Participate in surveys, beta programs, or feedback sessions
Apply for a job or partnership opportunity

This may include your name, email address, phone number, business name, billing information, and any other details you choose to share.

Information Collected Automatically

When you use our services or visit our website, we automatically collect certain information about your device and usage, including:

Network metadata: IP addresses, DNS queries, and traffic patterns processed through our security appliance
Device information: Browser type, operating system, and device identifiers
Usage data: Feature usage, configuration changes, and diagnostic logs
Log data: Timestamps, error reports, and system performance metrics

Threat Intelligence Data

As part of our intrusion detection and prevention systems, we may collect anonymized security event data, such as blocked connection attempts, detected malware signatures, and firewall rule triggers. This data is used solely to improve threat detection capabilities and is never associated with individual users or businesses.

How We Use Your Information

We use the information we collect for the following purposes:

Purpose	Description
Service Delivery	To provide, maintain, and improve our network security services
Threat Protection	To detect, prevent, and respond to security incidents and attacks
Customer Support	To respond to inquiries, troubleshoot issues, and provide technical assistance
Billing & Administration	To process payments, manage accounts, and send service notifications
Product Development	To analyze usage patterns and develop new features and capabilities
Legal Compliance	To comply with applicable laws, regulations, and legal processes

We do not sell your personal information to third parties. Period.

We may share your information in the following limited circumstances:

Service Providers

We engage trusted third-party service providers to perform functions on our behalf, such as cloud hosting, payment processing, and customer relationship management. These providers have access only to the information necessary to perform their services and are contractually bound to protect your data.

Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas, or regulatory demands). We will always attempt to notify you of such requests unless prohibited by law.

Business Transfers

In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website of any change in ownership or use of your personal information.

We may share your information with third parties when you have given us explicit consent to do so.

Data Security

AstraLink implements a comprehensive security program designed to protect your information:

Encryption in transit: All data transmitted between your devices and our services is protected using TLS 1.3
Encryption at rest: Stored data is encrypted using AES-256
Access controls: Role-based access controls with multi-factor authentication for all internal systems
Network segmentation: Our infrastructure is segmented to isolate sensitive data and reduce attack surface
Regular audits: We conduct quarterly security assessments and annual penetration testing
SOC 2 compliance: We are actively pursuing SOC 2 Type I certification, expected mid-June 2026

Despite our efforts, no security system is impenetrable. In the event of a data breach, we will notify affected users within 72 hours in accordance with applicable law.

Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected:

Account data: Retained for the duration of your active account plus 30 days after cancellation
Billing records: Retained for 7 years to comply with tax and accounting obligations
Security logs: Retained for 90 days, after which they are anonymized or deleted
Marketing preferences: Retained until you opt out or request deletion

Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

For All Users

Access: Request a copy of the personal information we hold about you
Correction: Request that we correct inaccurate or incomplete information
Deletion: Request that we delete your personal information, subject to legal exceptions
Portability: Request a machine-readable copy of your data for transfer to another service

For California Residents (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act, including:

The right to know what categories of personal information we collect and sell
The right to opt out of the sale of personal information (note: we do not sell personal information)
The right to non-discrimination for exercising your privacy rights

To exercise your rights, email us at privacy@astralinkconnect.com or use the privacy controls in your account dashboard.

If you are located in the European Union or United Kingdom, you have additional rights under the General Data Protection Regulation, including:

The right to object to processing based on legitimate interests
The right to restrict processing in certain circumstances
The right to lodge a complaint with a supervisory authority

Our legal basis for processing your data is typically contractual necessity (to provide the services you’ve requested) or legitimate interests (to improve security and prevent fraud).

Children’s Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a minor, please contact us immediately and we will delete such information.

International Data Transfers

AstraLink is based in the United States. If you access our services from outside the United States, your information may be transferred to, stored, and processed in the United States or other countries where our service providers operate. We ensure that such transfers comply with applicable data protection laws through standard contractual clauses and other safeguards.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

Update the “Last Updated” date at the top of this policy
Provide notice via email to registered users at least 30 days before the changes take effect
Post a prominent notice on our website

Your continued use of our services after the effective date of any changes constitutes acceptance of the updated policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@astralinkconnect.com
Mail: AstraLink Connect, LLC · Houston, Texas
Data Protection Officer: privacy@astralinkconnect.com

We aim to respond to all privacy-related inquiries within 48 hours.