Privacy Policy
Effective Date: June 9, 2025
Contact: info@astromartia.com
Astromartia.com (“we”, “our”, or “us”) is committed to protecting your privacy and handling your personal data responsibly. This Privacy Policy outlines how we collect, use, store, and protect your information in accordance with the General Data Protection Regulation (GDPR) and the Revised Payment Services Directive (PSD2), including Strong Customer Authentication (SCA) standards.
1. Who We Are
Astromartia.com is an educational platform offering digital and printable learning resources. We process your data as a Data Controller under GDPR.
If you have any questions or concerns, contact us at:
📧 info@astromartia.com
2. What Personal Data We Collect
We collect the following types of data:
- Account & Contact Information: name, email address, billing/shipping address
- Payment Data: last 4 digits of your card number, payment confirmation (processed securely by third-party processors)
- Technical Data: IP address, browser type, device information, location data (approximate)
- Usage Data: page views, download activity, time spent on site
3. Why We Collect Your Data
We collect your data to:
- Process orders and provide digital downloads
- Communicate order confirmations and updates
- Comply with legal obligations (e.g., tax and accounting)
- Improve site performance and user experience
- Prevent fraud and ensure secure payments (SCA compliance)
4. Legal Basis for Processing (Under GDPR)
We process your personal data based on one or more of the following legal grounds:
- Contractual necessity – to process and deliver your orders
- Legal obligation – to comply with tax and regulatory duties
- Consent – for optional marketing communications
- Legitimate interest – for analytics, fraud prevention, and improving services
5. Payment Security & PSD2/SCA Compliance
All payments on Astromartia.com comply with PSD2 and Strong Customer Authentication (SCA) requirements:
- Transactions are securely processed through PCI-DSS compliant third-party providers (e.g., Stripe or similar).
- SCA is implemented for card payments when applicable — such as requiring additional user verification (e.g., biometric login, SMS code, or banking app confirmation).
- We do not store full payment card details on our servers.
6. Data Retention
We retain your data only as long as necessary:
- Order records: retained for 7 years (for legal and tax reasons)
- Email communications: retained for 2 years unless unsubscribed
- Analytics data: anonymized after 14 months
7. Cookies
We use cookies to enhance user experience, track usage data, and manage secure sessions. See our Cookies Policy for full details.
8. Your Rights Under GDPR
You have the following rights:
- Right to access your data
- Right to rectification (correction)
- Right to erasure (“right to be forgotten”)
- Right to restrict or object to processing
- Right to data portability
- Right to withdraw consent at any time (e.g., unsubscribe from emails)
To exercise your rights, email info@astromartia.com.
9. Third-Party Services
We only share your data with trusted third parties when necessary to:
- Process payments
- Deliver digital products
- Analyze web performance (e.g., Google Analytics)
These third parties are GDPR-compliant and contractually bound to data protection standards.
10. International Data Transfers
If data is transferred outside the EU/EEA (e.g., to US-based services), we ensure it is protected through legal safeguards such as Standard Contractual Clauses (SCCs).
11. Data Security
We implement appropriate technical and organizational measures including:
- HTTPS encryption
- Limited access controls
- Encrypted backups
- Secure data handling with third-party processors
12. Policy Updates
We may update this policy periodically. Any changes will be posted here with a revised effective date.
If you have questions about this policy or how we use your data, please contact us at:
📧 info@astromartia.com