TL;DR: We process calculations in real-time and immediately delete all data. No databases, no storage, no tracking.
Table of Contents
Privacy Overview
Our Core Principle: We Don't Store Your Data
AstroAPI is designed as a stateless calculation service. We process astrological calculations in real-time and DO NOT store your users' personal data, birth information, or calculation results. Your data goes in, we calculate, results come out, data is deleted. It's that simple.
What This Means For You
When you send birth data through our API, it is processed immediately and discarded. We have no database of birth charts, no user profiles beyond your developer account, and no way to access historical calculations. Your end users' privacy is protected by design.
What We Actually Collect
Developer Account Information
When you register for an API key, we collect your email address and payment information (processed by Stripe). This is necessary to provide the service and handle billing.
API Usage Statistics
We track aggregated usage metrics: number of API calls, endpoint usage, response times, and error rates. This data is anonymized and used to monitor service health and calculate your billing.
What We Do NOT Collect
We do NOT collect, store, or retain: birth dates, birth times, birth locations, names, calculation results, user profiles, or any personal data sent through API requests. All request data is processed in memory and immediately discarded.
How Data Flows Through Our System
Step 1: Request Received
Your application sends a request with birth data (date, time, location) to our API endpoint. This data exists only in the request payload.
Step 2: Calculation Performed
Our servers perform the astrological calculations using Swiss Ephemeris. Data is processed in memory only - nothing is written to disk or database.
Step 3: Response Sent
Results are immediately returned to your application. The calculation data is then purged from memory.
Step 4: Data Deleted
No trace of the birth data or calculation remains on our servers. We have no way to retrieve past calculations even if we wanted to.
Third-Party Services
Payment Processing (Stripe)
Payment information is handled directly by Stripe and never touches our servers. We only receive confirmation of successful payments. Stripe's privacy policy governs their data handling.
Infrastructure (Cloud Providers)
We use secure cloud infrastructure to host our services. Our providers are contractually obligated to protect data and comply with GDPR and other privacy regulations.
No Data Selling
We do NOT sell, trade, or share any data with third parties for marketing or advertising purposes. Period.
Your Rights
Account Data
You can access, update, or delete your developer account at any time through the dashboard. Deleting your account removes all associated data from our systems.
End User Data
Since we don't store end user data, there's nothing to request, export, or delete. Your users' data was never stored in the first place.
GDPR & CCPA Compliance
We comply with GDPR, CCPA, and other privacy regulations. However, our data minimization approach means most rights (like data portability or deletion) are naturally satisfied because we simply don't hold the data.
Security Measures
Encryption
All data transmission is encrypted using TLS/SSL. API requests are authenticated using secure API keys.
Infrastructure Security
Our servers are protected by firewalls, intrusion detection, and regular security updates. Access is restricted to essential personnel only.
Security by Design
Our stateless architecture is itself a security feature - you can't breach data that doesn't exist. There's no central database of user data to compromise.
Data Retention
API Request Data
Not retained. Processed in real-time, immediately discarded.
Account Information
Retained while your account is active. Deleted within 30 days of account closure.
Usage Statistics
Aggregated statistics retained for 12 months for billing and service improvement purposes. These contain no personal data.
Logs
Server access logs (containing IP addresses and request metadata, but NOT request body content) are retained for 30 days for security and debugging purposes, then automatically deleted.
Children's Privacy
AstroAPI is a developer service not directed at children. We do not knowingly collect information from anyone under 18. Since we don't store user data anyway, this is enforced by design.
International Data
Where We Operate
Our servers are located in the European Union. Our company is registered in Estonia, an EU member state.
Cross-Border Transfers
Since we don't store personal data from API requests, there are no cross-border data transfer concerns for your end users. Your developer account data remains within the EU.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last Updated" date. Your continued use of the Service after changes become effective constitutes acceptance.
Contact Us
Company Information
Procoders OĂ Sepapaja 6 Tallinn, 15551 Estonia
Privacy Inquiries
For any privacy-related questions or requests, please contact us through our website at astrology-api.io/contact
Questions About Privacy?
We believe in transparency. If you have any questions about how we handle data, please reach out.
Contact Us