Legal

Privacy Policy

Last updated: June 14, 2026

This Privacy Policy explains how Astra Strateg LLC (“Astra Strateg,” “we,” “us,” or “our”) collects, uses, and protects information when you visit www.astrastrateg.com (the “Site”) or contact us. We are the controller of the personal information described here. You can reach us at info@astrastrateg.com or 650 S Gaines St, Portland, OR 97239, USA.

We keep our data practices deliberately minimal. We do not sell or share your personal information, we do not use it for targeted advertising, and we do not collect sensitive personal information. Although our small marketing site is generally below the thresholds that make laws like the CCPA and the Oregon Consumer Privacy Act mandatory, we voluntarily extend the privacy rights described below to all visitors.

1. Information we collect

Information you provide

If you use our contact form or email us, we collect the name, email address, and message you submit, so we can read and reply to your inquiry.

Information collected automatically

  • Privacy-first analytics. We use Cloudflare Web Analytics, which is cookieless and does not track you across sites or fingerprint you. It reports aggregate, anonymized metrics (page views, referrers, country, device type).
  • Consent-based analytics. Only if you consent, we use Google Analytics 4 (via Google Consent Mode v2) to understand how the Site is used. Analytics cookies remain disabled until you opt in, and you can withdraw consent at any time.
  • Security & delivery. Our infrastructure provider, Cloudflare, processes technical data (such as IP address and request metadata) to deliver and secure the Site and to protect the contact form from spam and abuse via Cloudflare Turnstile.

2. How we use information & legal bases

PurposeDataGDPR legal basis
Respond to your inquiry Name, email, message Consent / steps to enter into a contract
Secure the Site, prevent spam & abuse IP, request metadata, Turnstile token Legitimate interests
Privacy-first, aggregate analytics Anonymized usage metrics Legitimate interests
Detailed analytics (GA4) Usage events, analytics cookies Consent

3. Cookies

We use a small number of cookies and similar technologies. Non-essential (analytics) cookies are set only after you opt in through our consent banner, and you can change your choice at any time. For the full list and how to manage them, see our Cookie Policy.

4. How we share information

We do not sell or share your personal information and we do not disclose it for advertising. We share limited data only with service providers who process it on our behalf under appropriate agreements:

  • Cloudflare, Inc. – hosting, CDN, bot/spam protection (Turnstile), and cookieless analytics.
  • Google LLC – Google Analytics 4, only where you have consented.
  • Email/communications providers – to receive and respond to your messages.

We may also disclose information if required by law, to enforce our Terms of Service, or to protect the rights, safety, and security of Astra Strateg or others.

5. Data retention

We keep contact-form messages only as long as needed to handle your inquiry and any follow-up relationship, then delete or anonymize them. Aggregate analytics are retained in line with our providers' standard, limited retention windows. You can ask us to delete your information sooner (see your rights below).

6. Your privacy rights

Regardless of where you live, you may ask us to access, correct, or delete the personal information you have given us, and to opt out of non-essential analytics. We honor recognized opt-out preference signals, including Global Privacy Control (GPC).

California residents (CCPA/CPRA)

To the extent it applies, California law provides the rights to:

  • Know what personal information we collect and how we use it;
  • Delete personal information we hold about you;
  • Correct inaccurate personal information;
  • Opt out of the “sale” or “sharing” of personal information (we do neither);
  • Limit the use of sensitive personal information (we collect none);
  • Non-discrimination for exercising your rights.

We respond to verifiable requests within 45 days, and will tell you if we need a one-time extension of up to another 45 days (90 days total).

EU / EEA / UK residents (GDPR)

If the GDPR applies to your data, you have the rights to access, rectification, erasure, restriction of processing, data portability, and to object to processing. Where we rely on consent, you may withdraw it at any time without affecting prior processing. You also have the right to lodge a complaint with your local supervisory authority.

Oregon & other US state residents

We voluntarily extend equivalent rights – to confirm, access, correct, delete, and obtain a copy of your personal data, and to opt out of targeted advertising, sale, or profiling (none of which we do) – to residents of Oregon and other states with comprehensive privacy laws.

How to exercise your rights

Email info@astrastrateg.com with your request. We may need to verify your identity before acting. If we decline a request, you may appeal by replying to our response, and we will reconsider it.

7. Security

The Site is served over HTTPS (TLS) with modern security controls. We apply reasonable technical and organizational measures to protect personal information. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

8. International transfers

We are based in the United States, and our providers may process data in the US and other countries. Where required, transfers of EU/EEA/UK data rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.

9. Children's privacy

The Site is intended for a business audience and is not directed to children. We do not knowingly collect personal information from anyone under 16. If you believe a child has provided us information, contact us and we will delete it.

10. Third-party links

The Site may link to third-party websites. Their privacy practices are governed by their own policies, and we are not responsible for them.

11. Changes to this policy

We may update this Privacy Policy from time to time. We will revise the “Last updated” date above and, for material changes, take additional steps where appropriate.