Security and privacy: our commitment at Astra
We prioritize protecting your data with industry-leading security practices, ensuring trust at every level of your experience.
Certificates and Reports
Astra follows global privacy and security standards, conducting regular internal and external audits to ensure compliance. Contact us directly for specific reports or certifications.
Security
Third Party Audits
Astra regularly undergoes external audits, including SOC, PCI, and vulnerability testing, to ensure the highest standards of security.
Policies & Training
Astra trains employees using industry-standard content focused on information security and privacy.
Access Control
At Astra, access permissions are assigned based on roles and responsibilities and are audited monthly to ensure accuracy.
Data Encryption
Astra employs industry-proven encryption to protect data at rest and in transit.
Secure Development
We follow rigorous processes to ensure system integrity, including change control procedures, software version control, and comprehensive security testing.
Backups
We leverage automated backups to safeguard client data and ensure system reliability.
Availability
Astra systems are built for reliability, featuring redundancies for critical capabilities to ensure uninterrupted performance.
Internal Controls
Astra follows strict HR protocols, including employee background checks and comprehensive vendor management.
Privacy
Privacy Policy
Astra’s Privacy Policy complies with CCPA/CPRA and GDPR frameworks and is reviewed annually to ensure alignment with the latest standards.
GDPR & US Data Privacy
Astra strictly adheres to data privacy requirements, including CCPA in the U.S. and GDPR in the European Union, across all products and services.
Tokenization
Astra prioritizes data privacy and the protection of end users, utilizing tokenization to obscure sensitive information whenever possible.