Privacy Policy

This Privacy Policy explains how AstraSol ("we", "us", "our") collects, uses, discloses, and protects personal information when you use our website, DApp, staking services, swap and related products (collectively, the "Services"). Please read it carefully. If you have questions, contact us at privacy@astrasol.bond.

1. Information We Collect

We collect information necessary to provide and improve the Services. Types of information include:

• Account & profile data: email address, display name, account preferences when you register or sign up for newsletters or alerts.
• Wallet & transaction data: blockchain addresses you connect, transaction hashes, delegation records, staking activity and on-chain events. Note: private keys are never collected by AstraSol unless explicitly part of an opt-in custody product and then only under clear consent and separate agreement.
• Usage & analytics: pages visited, features used, timestamps, device/browser metadata, IP address, and aggregated performance metrics collected via analytics tools.
• Cookies & local storage: cookies and similar technologies to remember preferences and enable features.
• Support & communications: messages you send support or feedback, including any attachments.

2. How We Use Personal Information

We use data for the following purposes:

• Provide, maintain, and improve the Services (including payments, staking mechanics, and UI personalization).
• Process transactions and on-chain operations related to staking, swaps, and transfers.
• Detect, prevent and investigate fraud, abuse, security incidents and other malicious activity.
• Communicate with you about your account, security alerts, product updates, marketing (where permitted), and support requests.
• Perform analytics to improve performance, product features and user experience.
• Comply with legal obligations and respond to lawful requests by public authorities.

3. Legal Bases for Processing (EEA/GDPR Users)

If you are in the EEA, we process personal data on the following legal bases (as applicable):

• Performance of a contract: to provide the Services you request (e.g., staking/delegation).
• Legal obligation: to comply with applicable laws.
• Legitimate interests: to secure the platform, detect abuse, improve services and prevent fraud (balanced against your rights).
• Consent: where we ask for your consent (e.g., marketing emails, certain cookies).

4. Sharing & Disclosure

We may share information in the following circumstances:

• Service providers: trusted third parties that perform services on our behalf (hosting, analytics, email delivery, KYC providers). These providers are contractually bound to protect data.
• Blockchain networks & explorers: on-chain transactions are public by design. Transaction hashes, addresses and on-chain events are visible on the relevant blockchain.
• Business transfers: in connection with a merger, acquisition, reorganization, sale of assets or bankruptcy proceedings.
• Legal requests: to comply with laws, regulations, subpoenas, court orders, or to respond to requests from law enforcement or regulators.
• With your consent: where you explicitly permit sharing (e.g., social features or partner integrations).

5. Cookies, Tracking & Similar Technologies

We use cookies and similar technologies to operate the Services, understand usage, and deliver relevant features and marketing (where permitted). Typical categories include:

• Essential cookies: required to provide core functionality (session management, security).
• Analytics cookies: to measure and improve performance (e.g., Google Analytics or privacy-friendly alternatives).
• Functional cookies: to remember preferences and enable UI features.

You may control cookie preferences via your browser or device settings. Disabling certain cookies may impact user experience.

6. Data Retention

We retain personal data only as long as necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, and for legitimate business purposes like analytics. Retention periods vary by data type and regulatory requirements.

7. Security

We implement industry-standard technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, and destruction. Security practices include encryption in transit (TLS), access controls, monitoring, and periodic security reviews. However, no system is completely secure — users should follow security best practices and not share private keys.

8. International Transfers

AstraSol is a global service. Data may be processed or stored in jurisdictions other than your country of residence. When transferring data internationally we rely on appropriate safeguards (e.g., standard contractual clauses, adequacy decisions) where required by law.

9. Your Rights (GDPR & Similar)

Depending on your jurisdiction you may have rights regarding your personal data, including:

• Access: request a copy of your data.
• Rectification: correct inaccurate information.
• Erasure: request deletion (subject to legal and contractual limits).
• Restriction & portability: restrict processing or obtain a portable copy of your data.
• Objection: object to certain processing (e.g., direct marketing).

To exercise rights, contact us at privacy@astrasol.bond. We may need to verify identity and will respond in accordance with applicable law.

10. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you may have additional rights under the CCPA/CPRA, including the right to request disclosure of categories of personal information collected, sold or shared, and the right to opt-out of certain data sales or sharing. Submit requests to privacy@astrasol.bond and include "California Resident Privacy Request" in the subject line.

11. Children's Privacy

The Services are not directed to children under 16 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe we have collected such data, contact us and we will take steps to remove it.

12. Links to Third-Party Sites

The Services may contain links to third-party websites or services. We are not responsible for the privacy practices of third parties. Review their privacy policies before sharing personal data.

13. Changes to this Policy

We may update this Privacy Policy periodically. When we make material changes we'll provide notice (e.g., email or website banner) and update the effective date above. Continued use after notification constitutes acceptance of the changes.

14. Contact Us

If you have questions, concerns or requests regarding this Privacy Policy or our privacy practices, please contact us:

AstraSol
Website: https://astrasol.bond
Privacy & Compliance: privacy@astrasol.bond
Support: support@astrasol.bond

Last updated: December 21, 2025. Please check back for future updates.