Privacy Policy - ASTRONEX AI

General

BeCasa – AI Home Design (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by BeCasa.

This Privacy Policy applies to our website and its associated subdomains (collectively, our “Service”) alongside our application, BeCasa – AI Home Design. By accessing or using our Service, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy and our Terms of Service.

Definitions and key terms

To help explain things as clearly as possible in this Privacy Policy, every time any of these terms are referenced, they are strictly defined as:

Cookie: a small data generated by a website and saved by your web browser. It is used to identify your browser, provide analytics, and remember information about you, such as your language preference or login information.
Company: When this policy mentions “Company,” “we,” “us,” or “our,” it refers to ASTRONEX JOINT STOCK COMPANY (ASTRONEX), located at https://astronex.ai, which is responsible for your information under this Privacy Policy.
Country: Refers to the country where BeCasa or the founders of BeCasa are based — in this case, Vietnam.
Customer: Refers to the company, organisation, or individual that signs up to use the BeCasa Service to manage design workflows or access AI-powered interior design tools.
Device: Any internet-connected device, such as a smartphone, tablet, computer, or similar, that can be used to access the BeCasa platform and its services.
IP Address: Every device connected to the internet is assigned an Internet Protocol (IP) address. IP addresses can often indicate the approximate location from which a device is accessing the platform.
Personnel: Refers to individuals employed by BeCasa or under contract to perform tasks or services on behalf of the company.
Personal Data: Any information that directly or indirectly identifies an individual, either on its own or in combination with other data, including identifiers like name, email, IP address, device ID, or face data.
Service: Refers to the BeCasa services, including the mobile app, web platform, tools, and content, as described in this Privacy Policy and Terms of Service.
Third-Party Service: Refers to external partners, such as advertising networks, analytics providers, or social platforms, whose tools or services may be integrated into BeCasa or shown to users as part of their experience.
Website: Refers to BeCasa’s official website, accessible at https://astronex.ai or any subdomain or landing page directly related to the BeCasa product.
You: A person or entity that accesses or registers with BeCasa – AI Home Design to use the services and features provided by the application.

Information automatically collected

When you visit the BeCasa platform, we automatically collect certain technical information such as your IP address, device type, browser details, time zone, operating system, and in-app activity. This may include login data, email address, purchase history, visited pages, interaction behaviour (e.g., clicks, scrolling), and customer support contact details.

We also collect data using technologies like cookies, Flash cookies, and JavaScript to analyse session activity, detect fraud, and enhance functionality. This information, while not directly identifying you, may include device identifiers, location (e.g., country), and usage patterns.

The purpose of collecting this data is to maintain security, improve performance, and support analytics to enhance your user experience.

Collection of personal data and method

BeCasa may process your data for the purposes outlined in this Privacy Policy. The collection of such data is necessary to ensure that you can fully access and benefit from the features provided through our application and related services.

Specifically, the personal data collected and used by BeCasa includes your phone number, which we may receive when you initiate contact with us. In addition, we may collect identifiers assigned by your mobile device that are used for analytics and advertising purposes, such as the Identifier for Advertisers (IDFA) and the Identifier for Vendors or Developers (IDVF). We also collect your Internet Protocol (IP) address, which allows us to identify the general location of your device and ensure proper functionality of the service. This information is collected through your device when you access the BeCasa application and may also be gathered via integrated third-party platforms that help deliver and improve our services.

Data categories and data types

BeCasa may collect and process various categories of personal data necessary to deliver and improve our services effectively, including:

Identity Information: Full name and surname
Contact Information: Phone number, email address
Process Security Data: Internet traffic activity, IP address, visit logs, time and date stamps, device name, in-app purchase history
Advertising and Analytics Identifiers: Identifier for Advertisers (IDFA) – if permission is granted, Identifier for Vendors or Developers (IDVF)
Visual and Audio Records: Facial feature data (collected only if you use features involving facial recognition or AI-based visualisation)
Customer Transaction Data: Order information related to paid services or in-app purchases
Marketing Data: IDFA and IDVF (used to support personalised marketing campaigns and performance measurement)

Furthermore, we may collect log data generated during your usage of our services, either through BeCasa directly or through third-party integrations. This log data may include your device’s IP address, device name, operating system version, app configuration at the time of use, timestamps, and other relevant performance metrics or usage statistics.

How do we use your information

We use your personal information for a variety of business purposes, including delivering our Services, managing operations, and marketing our products and services. Below are the specific ways your information may be used.

Provide our services

BeCasa uses your information to fulfil our agreement with you and to deliver a seamless user experience. This includes:

Responding to your text inputs, search queries, and other similar user interactions
Managing your personal information and user account(s)
Enabling access to specific features, areas, and functionalities within our Services
Handling requests for customer service or technical support
Communicating with you regarding your account, service activity, or changes to our policies
Processing payments and managing your financial information for any purchases or subscriptions within the app

Administrative purposes

We use your information to support a range of administrative functions necessary for operating, maintaining, and securing BeCasa. These purposes include:

Pursuing our legitimate business interests, including: Direct marketing, research and development, marketing analysis, network and information security, fraud detection and prevention.
Detecting and responding to security incidents, and protecting against malicious, deceptive, fraudulent, or illegal activity
Measuring user interest and engagement with our Services
Supporting short-term, transient uses, such as contextual customisation of ads
Improving, upgrading, or enhancing the performance and usability of our Services
Developing and testing new features and services
Maintaining internal quality control and operational safety standards
Authenticating and verifying the identity of users
Debugging to identify and fix errors or technical issues in the application
Conducting audits related to user interactions, transactions, and compliance requirements
Enforcing our terms, policies, and agreements
Complying with legal and regulatory obligations

Marketing and advertising our products and services

We may use personal information to tailor and provide you with content and advertisements. We may provide you with these materials as permitted by applicable law. Some of the ways we may market to you include email campaigns, custom audiences advertising, and “interest-based” or “personalised advertising,” including through cross-device tracking.

If you have any questions about our marketing practices or if you would like to opt out of the use of your personal information for marketing purposes, you may contact us at any time as outlined in Section 15 below.

Other purposes

We also use your information for other purposes as requested by you or as permitted by applicable law.

(a) Share Content with Friends or Colleagues: Our Services may offer various tools and functionalities. For example, we may allow you to provide information about your friends or colleagues through our referral services. Our referral services may allow you to forward or share certain content with a friend or colleague, such as an email inviting your friend to use our Services.

How we disclose your information

We disclose your information to third parties for a range of business purposes, including providing our Services, protecting our interests or those of others, and in the event of a major business transaction (such as a merger, sale, or asset transfer).

Disclosures to provide our services

The categories of third parties with whom we may share your information include:

(a) Other Users or Third Parties: When you use our Services, you may choose to share personal information or content with other users or third parties. In addition, certain aspects of your profile may be visible to other users.

(b) Service Providers: We may share your personal information with third-party service providers who help us deliver our Services, including IT support, hosting, payment processing, and customer service.

(c) Business Partners: We may share your data with business partners to provide you with requested products or services, or when jointly offering products or services.

(d) Advertising Partners: We may disclose your personal information—except for biometric data—to third-party advertising partners. These partners may employ tracking tools on our Services (e.g., your IP address, cookie identifiers, pages visited, location, time of day) for the purpose of delivering personalised, interest-based advertising.

(e) APIs/SDKs: We may utilise third-party APIs and SDKs as part of the functionality of our Services. For additional details on our use of these technologies, please contact us as specified in the “Contact Us” section.

Disclosures to protect us or others

We may access, preserve, and disclose any information we store about you to external parties if we, in good faith, believe that such disclosure is necessary or appropriate to: comply with law enforcement or national security requests and legal processes (such as a court order or subpoena); protect your rights, our rights, or the rights, property, or safety of others; enforce our policies or contracts; collect amounts owed to us; or assist in the investigation or prosecution of suspected or actual illegal activities.

Retention of personal information

We may retain the personal information we collect as described in this Privacy Policy for as long as you use our Services, or as necessary to fulfill the purposes for which it was collected, deliver our Services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business interests, enforce our agreements, and comply with applicable laws.

Notwithstanding the above, biometric data may be stored for no longer than twenty-four (24) hours.

General principles regarding personal data processing

Following this Privacy Policy, personal data is processed by ASTRONEX JOINT STOCK COMPANY (ASTRONEX) as a data controller in line with the following fundamental principles:

(i) Being guided by the law and principles of good faith;

(ii) Being accurate and, where necessary, kept up to date;

(iii) Being processed for specific, explicit, and legitimate purposes;

(iv) Being limited to the purpose for which they are processed and adhering to the principle of data minimisation;

(v) Being stored only for the duration required by applicable legislation or for the purpose for which the data was collected.

Purposes of processing personal data and legal reasons

Your data will be processed through automated or non-automated means for the purposes outlined in this Privacy Policy. This processing is conducted by applicable legislation, including Articles 5 and 6 of the Personal Data Protection Law (PDP Law), where:

The processing is expressly permitted by law.
It is necessary for the establishment or performance of a contract to which you are a party; or
It is required for the legitimate interests of ASTRONEX, provided that your fundamental rights and freedoms are not violated.

Purposes of processing personal data

Your data is processed by the general principles outlined above, and for the following specific purposes:

Identity Information

Execution of activities in compliance with legislation
Fulfilment of company, product, or service-related commitments

Contact Information

Execution of communication activities
Execution and auditing of business activities
Provision of after-sales support services
Execution of goods and services sales processes
Conducting storage and archiving activities
Execution of contractual processes
Implementation of information security measures
Conducting internal audits and ethical reviews

Process Security

Ensuring business continuity
Providing information to authorised public institutions and organisations
Execution and auditing of business operations
Providing after-sales support for goods and services

Customer Transaction

Managing goods and services sales processes
Carrying out customer satisfaction initiatives
Execution of contractual processes
Execution of legal compliance activities

Visual and Audio Records

Execution of agreement-related processes
Conducting storage and archiving activities
Performing marketing and user behaviour analysis

Marketing Data

Execution of advertising, campaign, and promotion processes

Legal reasons

Your data is processed for the following legal reasons:

Identity Information, Contact Information, Visual and Audio Records, Customer Transaction

It is necessary to process your data for the establishment or performance of a contract between you and BeCasa
It is required to exercise or protect your legal rights

Process Security

The processing is explicitly permitted by applicable law
It is necessary to fulfil our legal obligations

Marketing data

Your explicit consent is required for the processing of marketing data for the following purposes:

Creating user accounts for service recipients and application users
Customising our Services, understanding user preferences, and enhancing overall user experience and satisfaction
Informing you about new products, services, and applications, and delivering promotional and advertising content
Carrying out digital subscription and in-app purchase processes
Managing auto-renewable subscriptions to provide continued access to content, services, or premium features
Executing information security processes
Conducting activities in compliance with applicable laws and regulations
Responding to requests from competent authorities
Executing finance and accounting transactions
Conducting communication activities with users
Managing and processing contract-related tasks
Supporting strategic planning activities
Following up on user requests, support tickets, and complaints

Third-Party websites and applications

BeCasa – AI Home Design may contain links to third-party websites that are not owned or controlled by ASTRONEX JOINT STOCK COMPANY (ASTRONEX). These linked websites may have their terms and conditions, which differ from those of BeCasa. ASTRONEX is not responsible for the content, accuracy, or privacy practices of such websites, and cannot be held liable for any use or disclosure of information by those third parties. Similarly, ASTRONEX assumes no responsibility for links to BeCasa that may be provided on other external sites.

We collect personal information by fair and lawful means, with your knowledge and consent. We will always explain why we are collecting your data and how it will be used. You have the right to refuse the provision of this data; however, doing so may limit access to certain features or services within the application.

Push notifications

BeCasa may occasionally send push notifications via the mobile application regarding feature updates, service alerts, or promotional messages. You may manage or disable these communications at any time by adjusting the notification settings on your device.

Your data will be stored for the duration specified under applicable law or for a reasonable time until the processing purpose is fulfilled, or until the expiration of legal limitation periods. In cases where you have given consent for extended storage of your data, ASTRONEX may continue to store such data until your consent is withdrawn or the additional retention period expires. Once the relevant purpose no longer exists, or the extended period ends, the data will be deleted, destroyed, or anonymised immediately.

Technical and administrative measures

BeCasa stores the personal data it processes by applicable legislation and for the periods required by law or necessary to fulfil the purposes for which the data is collected. ASTRONEX JOINT STOCK COMPANY (ASTRONEX) is committed to taking all necessary technical and administrative measures and exercising due care to ensure the confidentiality, integrity, and security of your data.

To this end, ASTRONEX takes precautions to prevent unlawful processing, unauthorised access, or unlawful disclosure, alteration, or destruction of personal data. The following technical and administrative safeguards are in place for the data we process:

Anti-virus application

All computers and servers within ASTRONEX’s IT infrastructure are equipped with anti-virus software that is updated periodically to ensure continued protection.

Firewall

Our data centres and disaster recovery systems are protected by next-generation, regularly updated firewalls. These firewalls monitor staff internet connections and defend against threats such as malware and unauthorised access.

VPN (Virtual Private Network)

Third-party suppliers or contractors who require access to BeCasa systems do so via SSL-VPN connections configured through our firewall infrastructure. Each supplier receives a dedicated SSL-VPN profile, allowing access only to the specific systems they are authorised to use.

User identifications

BeCasa employees are granted system access strictly based on their job responsibilities. In the event of a change in role or authority, system permissions are promptly reviewed and updated to reflect the new scope of access.

Information security threat and event management

All activities occurring on BeCasa servers and firewalls are transmitted to an Information Security Threat and Event Management system. This system monitors for potential security incidents and alerts responsible personnel to enable immediate and effective responses to any threats.

Encryption

Sensitive data is encrypted both at rest and, where necessary, during transmission. Cryptographic keys used for encryption are securely stored across trusted and controlled environments to prevent unauthorised access.

Logging

All transactions and interactions involving sensitive data are securely logged to maintain auditability and to support compliance with data protection requirements.

Two-factor authentication

Remote access to systems containing sensitive personal data is protected through at least two-factor authentication, providing an additional layer of security beyond standard login credentials.

Training

To reduce the risk of human error and enhance awareness, BeCasa provides its employees with regular training sessions focused on data protection, cybersecurity, and response protocols for potential security incidents.

Physical data security

All physical documents containing personal data are stored in locked cabinets and are accessible only by authorised personnel. Appropriate safety measures are implemented based on the environmental risks, including protections against electrical hazards, fire, flooding, and theft.

Backup

BeCasa regularly performs backups of stored data. These backups are handled via trusted cloud infrastructure providers and, when necessary, through proprietary backup mechanisms, all by applicable data protection laws and this Privacy Policy.

Non-disclosure agreement

Non-disclosure agreements are signed with employees who are involved in the processing of sensitive personal data. These agreements are intended to ensure confidentiality and the responsible handling of data by applicable legal and internal requirements.

Transfer of sensitive personal data

If the transfer of sensitive personal data is necessary via email, such transfers are carried out through:

(i) encrypted corporate email, or

(ii) registered email (with verification and traceability).

If personal data is compromised due to attacks on the BeCasa application or BeCasa’s systems, despite necessary data security precautions, or if data is accessed by unauthorised third parties, ASTRONEX will promptly notify the affected users and, if required, report the incident to the relevant data protection authorities. Necessary technical, administrative, and legal measures will be taken in response.

Transferring personal data to third parties

The transfer of personal data to third parties is governed by the procedures and principles stated in Articles 8 and 9 of the applicable Personal Data Protection Law. Depending on the service infrastructure, your personal and/or sensitive data may be transferred both within Vietnam and internationally, particularly when using cloud storage or server systems located abroad.

Your data may be transferred abroad for the following purposes:

Conducting storage and archiving operations
Executing business operations
Providing after-sales support for goods or services
Managing customer relationship management (CRM) processes

BeCasa may also transfer your data to authorised service providers and third-party platforms integrated into our Services, including Facebook SDK, Adjust, and Firebase Analytics, for the purposes below:

Sharing identity, communication, and transaction security data with authorised public institutions or legal entities for the execution of compliance activities, legal proceedings, or reporting obligations
Sharing identity and contact information to perform after-sales support services, conduct business operations, or manage customer relationships
Sharing identity and contact data (with your explicit consent) to enable integration and use of third-party applications connected to the BeCasa platform

Personnel

If you are a BeCasa employee or job applicant, we collect the information that you voluntarily provide to us. This information is used solely for Human Resources purposes, such as administering employee benefits and evaluating applicants during the recruitment process.

You may contact us at any time to (1) update or correct your information, (2) change your preferences regarding communications and other information you receive from us, or (3) request a copy of the information we have collected about you. Please note that any updates, corrections, or deletions you request will not affect other information we retain or have already shared with third parties by this Privacy Policy before such changes.

Sale of business

We reserve the right to transfer your information to a third party in the event of a merger, acquisition, sale, or other transfer of all or substantially all of the assets of BeCasa or any of its corporate affiliates, or in connection with the portion of BeCasa or its affiliates that provides the Services. This also applies in the case of a business closure or bankruptcy filing. Any third party receiving such information will be required to honour the commitments outlined in this Privacy Policy.

Affiliates

We may disclose information (including personal information) about you to our Corporate Affiliates. For this Privacy Policy, a “Corporate Affiliate” means any person or entity that directly or indirectly controls, is controlled by, or is under common control with BeCasa, whether through ownership or other means. Any personal information shared with our Corporate Affiliates will be handled by them following the terms of this Privacy Policy.

Governing law

This Privacy Policy is governed by the laws of Vietnam, without regard to its conflict of laws provisions. You consent to the exclusive jurisdiction of the courts in connection with any action or dispute arising between the parties under or in connection with this Privacy Policy, except where otherwise provided by applicable international frameworks.

The laws of Vietnam, excluding its conflict of law rules, shall govern this Agreement and your use of the BeCasa app. Your use of the app may also be subject to other local, state, national, or international laws depending on your location.

By using BeCasa or contacting us directly, you signify your acceptance of this Privacy Policy. If you do not agree with this Privacy Policy, you should not use our website or services. Continued use of the platform, direct engagement with us, or acceptance of updates to this Privacy Policy that do not significantly alter how your personal information is used or disclosed will constitute your agreement to the revised terms.

Your consent

We’ve updated our Privacy Policy to give you complete transparency into what data is collected when you use our app and how that data is used. By using BeCasa, registering an account, or making a purchase, you hereby consent to our Privacy Policy and agree to all of its terms.

Links to other websites

This Privacy Policy applies only to the Services provided by BeCasa – AI Home Design. Our Services may contain links to external websites that are not operated or controlled by BeCasa. We are not responsible for the content, accuracy, or opinions expressed on such websites. These external websites are not monitored, reviewed, or checked by us for accuracy or completeness.

Please be aware that when you follow a link from our Services to another website, our Privacy Policy no longer applies. Your browsing activity and interactions on any other website, including those linked from our platform, are subject to that website’s terms, conditions, and privacy policies. These third-party websites may also use their cookies or other tracking technologies to collect information about you.

Advertising

This app may include advertisements and links to third-party websites. BeCasa – AI Home Design does not represent or guarantee the accuracy, relevance, or appropriateness of the content within those advertisements or linked sites, nor are we responsible for the behaviour, offers, or content presented by these third parties.

Advertising helps keep BeCasa and many of the services you use free of charge. We strive to ensure that any advertising shown is safe, minimally disruptive, and as relevant as possible to your interests.

The presence of third-party advertisements or links does not constitute an endorsement or recommendation by BeCasa of the third-party sites, goods, or services. BeCasa assumes no responsibility for the content of any ads, the accuracy of claims made, or the quality or reliability of the products or services offered through those advertisements.

Cookies for advertising

These cookies collect data over time about your activity on the BeCasa app and other online services to deliver ads that are more relevant and effective for you. This practice is known as interest-based advertising. These cookies also serve important functions, such as preventing the same ad from appearing repeatedly and ensuring that advertisements are displayed properly for advertisers. Without cookies, it becomes significantly more difficult for advertisers to effectively reach their intended audiences or to measure ad impressions and engagement, such as how many clicks an ad receives.

Cookies

BeCasa uses “Cookies” to identify which areas of our website or app you have visited. A cookie is a small text file stored on your computer or mobile device by your web browser. We use cookies to enhance the functionality and performance of our app. While these cookies are not strictly essential, they do improve the user experience. For example, without cookies, certain features like embedded videos may not function properly, or you may be required to re-enter your login credentials each time you access the app.

Most web browsers allow you to control the use of cookies through settings. However, disabling cookies may affect your ability to access some features or functionality within the BeCasa platform. Please note that we never store personally identifiable information in cookies.

Blocking and disabling cookies and similar technologies

Regardless of your location, you may choose to configure your browser settings to block cookies and similar tracking technologies. However, doing so may disable essential cookies and prevent the BeCasa app or website from functioning as intended. You may also lose saved preferences or login credentials.

Each browser offers different tools and options for managing cookies. Please refer to your browser’s help section for instructions on how to disable, delete, or manage cookies. Keep in mind that disabling a cookie does not remove it from your browser — manual deletion may be necessary.

Payment details

Concerning any credit card or payment information you provide to BeCasa, we are committed to ensuring that this confidential data is handled and stored using the highest level of security available. Your payment details are encrypted and processed in compliance with industry standards to protect against unauthorised access, use, or disclosure.

Kids’ privacy

We do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us. If we become aware that we have collected personal data from anyone under the age of 13 without verification of parental consent, we will take steps to delete that information from our servers immediately.

Disclaimer

BeCasa uses Openai’s GPT-3.5 API, but we are not associated with Openai. We only utilise their official API within our application. BeCasa is not affiliated with any government or political organisation. The information provided in BeCasa is intended for informational purposes only and should not be regarded as official or authoritative advice.

Changes to our privacy policy

We may update our Services or policies from time to time, which may require changes to this Privacy Policy so that it accurately reflects those updates. Unless otherwise required by law, we will notify you (for example, through our Services) before making changes to this Privacy Policy and provide you the opportunity to review them.

If you continue to use the Service after the updated Privacy Policy becomes effective, you agree to be bound by the revised terms. If you do not agree with the updated terms, you may delete your account and discontinue use of the Services.

Third-party services

We may display, include, or make available third-party content (including data, information, applications, or other products and services), or provide links to third-party websites or services (“Third-Party Services”).

You acknowledge and agree that BeCasa is not responsible for any Third-Party Services, including their accuracy, completeness, timeliness, validity, copyright compliance, legality, decency, quality, or any other aspect of such services. BeCasa does not assume and shall not have any liability or responsibility to you or any other person or entity for any Third-Party Services.

Third-party services and links to them are provided solely for your convenience. You access and use them entirely at your own risk and are subject to such third parties’ terms and conditions.

Tracking technologies

Local storage

BeCasa may use Local Storage, also known as DOM storage, to store data directly on your device. Unlike cookies, local storage allows web applications to store larger amounts of data persistently and securely on the client-side. This data is not transmitted in the HTTP request header, making it more efficient for certain types of interactions and features within our app.

Information collected through Microsoft Clarity

Types of Data Processed: BeCasa uses Microsoft Clarity to collect behavioural data related to how users interact with the app. This includes, but is not limited to, mouse movements, clicks, and scrolling activity. This data helps us better understand user behaviour.
Handling of Sensitive Data: We do not use Microsoft Clarity to collect or process sensitive personal information, including data related to health, financial services, or government-issued identification.
Data Security and Protection: The security of your data is important to us. We apply appropriate technical and administrative safeguards to protect your personal information. Microsoft Clarity also implements its own security and confidentiality controls in handling the data it collects.
Use of Data: The information collected through Microsoft Clarity is used solely to enhance the user experience on the BeCasa platform. Microsoft may also use this data by its privacy policies to improve its services.
User Rights: You have the right to access, correct, or delete your data collected through Microsoft Clarity. Please contact us if you wish to exercise any of these rights.
Changes to our Use of Microsoft Clarity: Should there be any changes to the way we use Microsoft Clarity, including the collection of additional data or a change in the purpose for which data is used, we will update this Privacy Policy accordingly and provide notice as required by law.

Information about the General Data Protection Regulation (GDPR)

We may be collecting and using information from you if you are from the European Economic Area (EEA), and in this section of our Privacy Policy we are going to explain exactly how and why this data is collected, and how we maintain this data under protection from being replicated or used in the wrong way.

What is GDPR?

GDPR is an EU-wide privacy and data protection law that regulates how EU residents’ data is protected by companies and enhances the control EU residents have over their personal data.

The GDPR is relevant to any globally operating company and not just EU-based businesses and EU residents. Our customers’ data is important irrespective of where they are located, which is why we have implemented GDPR controls as our baseline standard for all our operations worldwide.

What is personal data?

Any data that relates to an identifiable or identified individual. GDPR covers a broad spectrum of information that could be used on its own, or in combination with other pieces of information, to identify a person. Personal data extends beyond a person’s name or email address. Some examples include financial information, political opinions, genetic data, biometric data, IP addresses, physical address, sexual orientation, and ethnicity.

The Data Protection Principles include requirements such as:

Personal data collected must be processed in a fair, legal, and transparent way and should only be used in a way that a person would reasonably expect.
Personal data should only be collected to fulfil a specific purpose, and it should only be used for that purpose. Organisations must specify why they need the personal data when they collect it.
Personal data should be held no longer than necessary to fulfil its purpose.
People covered by the GDPR have the right to access their own personal data. They can also request a copy of their data, and that their data be updated, deleted, restricted, or moved to another organisation.

Why is GDPR important?

GDPR introduces new requirements on how companies should protect the personal data they collect and process from individuals. It also raises the bar for compliance by increasing enforcement and imposing higher penalties for violations. Beyond the legal aspects, it is simply the right thing to do. At BeCasa, we strongly believe that your privacy matters. We have implemented strong security and data privacy practices that go beyond the basic requirements of GDPR.

Individual data subject’s rights – data access, portability and deletion

We are committed to helping our users and partners meet the data subject rights obligations of GDPR. BeCasa stores and processes personal data only through trusted, DPA-compliant vendors. Unless your account is deleted, we may store conversations and personal data for up to 6 years. If your account is deleted, all associated data will be removed in accordance with our Terms of Service and Privacy Policy — no later than 60 days after deletion.

If you work with customers in the EU, we enable you to provide them with full GDPR-compliant controls, including the ability to access, update, retrieve, or delete their data. BeCasa has been designed to support these rights from the start. Our customer support team is also available to assist with any questions you may have regarding API usage or data access.

California residents

The California Consumer Privacy Act (CCPA) requires us to disclose the categories of Personal Information we collect, how we use it, the sources from which we collect it, and the third parties with whom we share it, as outlined in this Privacy Policy.

California residents have the following rights under California law:

Right to Know and Access: You may request information about (1) the categories of Personal Information we collect, use, or share; (2) the purposes for which the categories of data are used; (3) the sources from which we collect Personal Information; and (4) specific pieces of Personal Information we have collected about you.
Right to Equal Service: We will not discriminate against you for exercising your privacy rights.
Right to Delete: You may request that we delete your Personal Information.
Right to Opt-Out of Sale: You may request that we do not sell your data (note: we do not sell your data).

If you submit a request, we have one month to respond. To exercise any of these rights, please contact us using the information below.

Disclaimer

BeCasa is a chatbot built on Openai’s GPT-3.5 API, but is not affiliated with OpenAI. We use the official API to power our application. BeCasa is not connected to any government, institution, or political entity. The responses generated by the AI are for informational purposes only and should not be considered professional or authoritative advice.

While we strive to provide accurate and helpful responses, we do not guarantee the completeness, reliability, or accuracy of the information provided. You agree to use the information at your discretion, and we disclaim liability for any loss or damages resulting from its use.

California online privacy protection Act (CalOPPA)

Under CalOPPA, we are required to disclose the categories of Personal Information we collect and how we use them, including the sources of collection and the third parties with whom we may share such information, all of which have been outlined in this Privacy Policy.

CalOPPA gives users the following rights:

Right to Know and Access: Request details about the categories and specific types of Personal Information we collect, use, or share.
Right to Equal Service: You will not be treated differently or denied service for exercising your privacy rights.
Right to Delete: You can request that we delete any of your collected Personal Information.
Right to Opt-Out of Sale: You may request that your data not be sold (we do not sell your data).

We will respond to verified requests within one month. To exercise these rights, please contact us.

Contact us

Don’t hesitate to reach out if you have any questions about this Privacy Policy or your data:

Via Email: aso.astronex@gmail.com
Via Website: https://astronex.ai