Privacy Policy

1. Introduction

Retrograde Observatory ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our API services and billing portal.

By using our Services, you consent to the data practices described in this policy. If you do not agree, please discontinue use of our Services.

2. Information We Collect

We collect information in the following categories:

3. How We Use Your Data

We use your information for the following purposes:

• Service Delivery: To provide, maintain, and improve our API services
• Billing & Payments: To process transactions, generate invoices, and manage your account balance
• Communication: To send service updates, security alerts, and support responses
• Analytics: To understand usage patterns and improve our offerings
• Security: To detect and prevent fraud, abuse, and unauthorized access
• Legal Compliance: To comply with applicable laws and regulations

4. Third-Party Services

We share data with trusted third-party service providers:

• Razorpay: Payment processing (PCI-DSS compliant). We do not store your full card details.
• Google Cloud Platform: Infrastructure and data hosting (ISO 27001 certified)
• Email Services: For transactional emails (password reset, notifications)

These providers are contractually obligated to protect your data and may only use it for the specific services they provide to us.

5. Data Storage & Security

We implement industry-standard security measures:

• Encryption: All data is encrypted in transit (TLS 1.3) and at rest
• Access Controls: Strict role-based access to production systems
• API Keys: Hashed and stored securely; never logged in plain text
• Infrastructure: Hosted on Google Cloud Platform with SOC 2 compliance
• Monitoring: 24/7 security monitoring and incident response

While we strive to protect your data, no method of transmission over the internet is 100% secure.

6. Data Retention

We retain your data for the following periods:

• Account Data: Until you delete your account, plus 30 days for backup purposes
• Billing Records: 7 years (as required by financial regulations)
• Usage Logs: 90 days for operational purposes
• Support Communications: 2 years after resolution

Upon account deletion, we will remove your personal data within 30 days, except where retention is required by law.

7. Your Rights

Depending on your location, you may have the following rights:

To exercise these rights, contact us at evolve@retrogradeobservatory.com. We will respond within 30 days.

8. Cookies & Tracking

We use minimal cookies for essential functionality:

• Session Cookies: To maintain your login state (expires on browser close)
• Authentication Tokens: Stored in secure HTTP-only cookies

We do not use advertising cookies or third-party tracking scripts. We do not sell your data to advertisers.

9. International Data Transfers

Your data may be processed in countries outside your residence, including India and the United States (via Google Cloud). We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses (SCCs) for EU data transfers
• Data processing agreements with all service providers

10. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us immediately.

11. Policy Updates

We may update this Privacy Policy from time to time. Material changes will be:

• Announced via email to registered users
• Posted on this page with an updated "Last Updated" date

Continued use of our Services after changes constitutes acceptance of the updated policy.

12. Contact Us

For privacy-related questions, data requests, or concerns: