Privacy Policy

Last updated: February 3, 2026

1. Introduction

CelestialDB ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our astrology chart calculation service and API.

2. Information We Collect

2.1 Account Information

  • Email address (for authentication)
  • Name and profile picture (from Google OAuth, if provided)
  • Subscription status and billing information (processed by Stripe)

2.2 Birth Chart Data

  • Birth date and time
  • Birth location (city, coordinates)
  • Chart names you assign
  • Calculated planetary positions and house data

2.3 API Usage Data

  • API keys (hashed for security)
  • API request logs (endpoint, timestamp, response status)
  • Query parameters sent to our API

2.4 Chat Data

  • Messages exchanged with our AI assistant
  • Chat history and conversation context

2.5 Automatically Collected Information

  • IP address and browser type
  • Device information
  • Usage patterns and feature interactions

3. How We Use Your Information

  • To calculate and display your astrological charts
  • To provide AI-powered chart interpretations
  • To save and sync your charts across devices
  • To process API requests and maintain usage limits
  • To process payments and manage subscriptions
  • To improve our services and fix bugs
  • To communicate service updates and changes
  • To prevent fraud and abuse

4. Data Sharing

We do not sell your personal information. We may share data with:

  • Stripe: Payment processing (billing info only)
  • Google: Authentication via OAuth
  • Anthropic: AI chat processing (conversation content)
  • Vercel: Hosting and infrastructure
  • Neon: Database hosting

We may also disclose information if required by law or to protect our rights.

5. Data Retention

  • Account data: Retained until you delete your account
  • Chart data: Retained until you delete individual charts or your account
  • Chat history: Retained until you delete chats or your account
  • API logs: Retained for 90 days for debugging and abuse prevention
  • Deleted data: Permanently removed within 30 days of deletion request

6. Data Security

We implement industry-standard security measures including:

  • HTTPS encryption for all data transmission
  • Hashed API keys (we cannot see your full key)
  • Secure OAuth authentication (no password storage)
  • Regular security audits and updates

7. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data and account
  • Export your chart data
  • Opt out of marketing communications

To exercise these rights, contact us at [email protected]

8. Cookies

We use essential cookies for authentication and session management. We do not use advertising or tracking cookies.

9. Children's Privacy

Our service is not intended for children under 13. We do not knowingly collect information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or in-app notification.

11. Contact Us

For privacy-related questions or concerns, contact us at:

Email: [email protected]