Ad Astra Ltd. – Privacy Policy

Last Updated: April 3, 2025

Ad Astra Ltd (“we”, “us”, “our”) is committed to protecting the privacy and security of personal information in accordance with the Bermuda Personal Information Protection Act 2016 (PIPA). This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website and services.

1. Introduction

Ad Astra Ltd is a Bermuda-based technology company that collects personal data solely to perform vital operations related to the services we provide. We use your data within a limited scope and strictly in accordance with the consent obtained from you. Our operations are designed to adhere to all tenets set out in PIPA, ensuring lawful, fair, and transparent handling of your personal information.

2. Collection of Personal Information

• Types of Information Collected: We collect personal information necessary to facilitate our service offerings. This includes, but is not limited to, contact details, usage data, and other information you provide directly when you use our website or services.
• Purpose of Collection:
  • Manage and improve our services.
  • Provide support and respond to inquiries.
  • Personalize user experience in accordance with your consent.
  • Comply with legal obligations and regulatory requirements.
• Consent: By providing your information, you expressly consent to its collection, processing, and use in line with this Privacy Policy and applicable provisions of PIPA. You may withdraw your consent at any time, subject to our ability to maintain service functionality.

3. Use of Personal Information

• Limited and Purpose-Driven Use: All personal information is processed only for the specific purposes outlined at the time of collection. We do not use your information for purposes beyond what you have consented to.
• Third-Party Service Providers:
  • HubSpot: A Customer Relationship Management (CRM) system.
  • OpenAI & Vercel: Providers for website hosting and data processing services.
  These third-party providers are contractually bound to implement security measures that ensure a level of protection comparable to that required by PIPA.

4. Data Minimization, Accuracy, and Retention

• Data Minimization: We only collect personal information that is adequate, relevant, and not excessive in relation to the purposes for which it is processed.
• Accuracy: We strive to ensure that the personal information we hold is accurate and kept up-to-date. If you identify any inaccuracies in your data, please notify us promptly.
• Retention: Your personal data will be retained only for as long as is necessary to fulfill the purposes for which it was collected, or as required by law. Once the data is no longer needed, it will be securely deleted or anonymized.

5. Security Safeguards

We employ robust technical and organizational measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include:

• Secure data storage and encryption protocols.
• Regular review and updating of our security practices.
• Access controls to ensure that only authorized personnel handle your data.

6. Cross-Border Data Transfers

When transferring your personal information overseas (e.g., using our offshore CRM), we ensure that such transfers are compliant with PIPA. We only work with partners who provide a comparable level of data protection. Where necessary, contractual safeguards are in place to protect your data during international transfers.

7. User Rights under PIPA

Under Bermuda’s PIPA, you have the following rights regarding your personal information:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of any inaccurate or incomplete information.
• Right to Erasure: Request deletion of your personal data when it is no longer necessary for the purposes it was collected.
• Right to Stop or Restrict Processing: Object to or limit the processing of your personal data.
• Right to Withdraw Consent: Revoke your consent for data processing at any time.
• Right to Complain/Seek Review: Lodge a complaint or request a review if you believe we are not complying with PIPA.

8. Exercising Your Rights

If you wish to exercise any of your rights under PIPA (including, but not limited to, accessing, rectifying, erasing, stopping or restricting processing, withdrawing consent, or filing a complaint/appeal), please submit your request in writing via email to:

Email: privacy@adastra.bm

Instructions:
- Clearly state the type of request in the subject line (e.g., “Access Request”, “Rectification Request”).
- Provide a detailed description of the request and the scope in the body of your email.

Please note that, to allow for comprehensive compliance and adherence to your request, we may take up to sixty (60) business days to address your submission.

9. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy as required by legal developments or changes in our business practices. Any amendments will be posted on our website along with a new effective date. We encourage you to review this policy periodically.

10. Contact Us

If you have any questions or concerns about this Privacy Policy or our data protection practices, please contact us at:

Ad Astra Ltd
Email: privacy@adastra.bm

---

By using our website and services, you acknowledge that you have read, understood, and agreed to the terms of this Privacy Policy. Our commitment is to protect your privacy while ensuring the seamless operation of our services in full compliance with PIPA.

← Return to Launch Page