Privacy Policy

This policy describes what data AsterSearch collects when you use the hosted service, why, and what we do with it. It is written to be read, not to be hidden behind.

What we collect

When you sign up we collect your email and a hashed password. When you use the API we collect the documents and queries you send us — that is the service. We log request metadata (timestamps, status codes, latency) for operational purposes.

What we do with it

Your documents and queries are processed solely to power the search features you use. We do not sell them. We do not feed them to third-party model providers without your explicit configuration. Aggregated, non-identifying metrics may be used to improve the service.

Billing

Payments are processed by Stripe. Stripe stores your payment details under their own terms. We store only a customer ID and the metadata necessary to issue invoices.

Sub-processors

• Stripe — payments and billing.
• Resend / Postmark — transactional email delivery.
• Cloud hosting — compute and storage. Region depends on your plan.

Data retention

Indexed documents live until you delete them or close your account. Operational logs are retained for 30 days unless required for security or legal reasons. On account deletion, all indexed data is purged within 30 days.

Your rights

You can export or delete your data at any time from the console. For GDPR / CCPA requests, contact your account owner.

Self-hosted deployments

If you run AsterSearch on your own infrastructure, none of the data ever touches us. This policy applies only to the hosted cloud service.

Updates

We will notify you in-product before changing this policy in any material way.