UPDATED 30 MARCH 2026

Privacy Policy

Astos is operated by: Astos AI AB Org. No. 559574-3351 Riddargatan 16 114 51 Stockholm Sweden Email: hello@astos.ai For the purposes of applicable data protection law, Astos AI AB is the data controller for personal data collected through our website, marketing activities, sales communications, and general business operations. Where Astos processes personal data on behalf of a customer as part of providing the Astos platform and related services, Astos acts as a data processor, and the customer remains the data controller.

This Privacy Policy applies to personal data collected through: - our website, - contact forms and demo requests, - email and other direct communications, - customer onboarding and account management, - use of the Astos platform and related services.

We may collect the following categories of personal data: Information you provide directly: - name, - email address, - phone number, - company name, - job title, - any information you choose to include in forms, emails, or messages sent to us. Information collected automatically: - IP address, - browser type, - device information, - operating system, - pages visited, - referring URLs, - session and usage data, - cookie and tracking data. Service-related data: Depending on how our services are used, we may process call metadata, interaction logs, call transcripts, audio recordings (where enabled), CRM and integration data, customer support and configuration data, and analytics and performance data. Information from third parties: We may receive information from CRM systems, integrations connected by customers, telephony and communications providers, analytics providers, and business partners and public business sources.

We use personal data to: - operate, provide, and improve our website and services, - respond to inquiries and provide support, - schedule demos and communicate with prospects, - onboard and manage customer relationships, - deliver voice automation, call handling, analytics, and related services, - improve performance, quality, and reliability of our platform, - personalize service experiences where relevant, - maintain security, monitor misuse, and prevent fraud, - comply with legal and regulatory obligations, - send relevant business communications and marketing, where permitted by law.

Where required by law, we rely on one or more of the following legal bases: - consent, - performance of a contract, - compliance with legal obligations, - legitimate interests, such as operating and improving our business, securing our services, communicating with customers and prospects, and preventing misuse. Where Astos processes personal data on behalf of a customer, the customer is responsible for identifying and documenting the appropriate legal basis for that processing.

Astos provides AI-powered voice and communication services, including inbound and outbound call-related workflows. In connection with those services, personal data may be processed in the form of audio, transcripts, metadata, logs, and CRM-linked information. Customers are responsible for ensuring that they have an appropriate legal basis, and where required, appropriate notices and consents, for using Astos in connection with their customer interactions, call flows, and data sources. Customers are also responsible for ensuring that their use of Astos complies with applicable laws relating to privacy, telecommunications, direct marketing, call recording, and consumer protection.

We may use cookies and similar technologies to: - operate and secure the website, - analyze traffic and usage, - improve website performance, - remember preferences, - measure campaign effectiveness. Where required by law, we will request consent before placing non-essential cookies. You can control cookies through your browser settings. Please note that disabling certain cookies may affect website functionality.

We may share personal data with: - hosting and infrastructure providers, - telephony and communications providers, - analytics and software providers, - CRM and support tools, - professional advisors, - payment providers, where relevant, - authorities or regulators, where required by law, - potential investors, acquirers, or group entities in connection with a financing, merger, acquisition, or business reorganization. We do not sell personal data.

Your personal data may be processed in countries outside your own. Where we transfer personal data internationally, we take appropriate safeguards as required by applicable law, including contractual protections and other lawful transfer mechanisms where necessary.

We retain personal data only for as long as necessary for the purposes described in this Privacy Policy, including to: - provide our services, - comply with legal, tax, accounting, and regulatory obligations, - resolve disputes, - enforce agreements, - maintain appropriate business records. Retention periods will vary depending on the type of data and the reason for processing.

We use appropriate technical and organizational measures to protect personal data against unauthorized access, misuse, disclosure, alteration, and destruction. However, no system is completely secure, and we cannot guarantee absolute security.

Depending on your location and applicable law, you may have the right to: - access your personal data, - request correction of inaccurate data, - request deletion, - request restriction of processing, - object to processing, - withdraw consent, - request data portability, - lodge a complaint with a supervisory authority. To exercise your rights, contact us at hello@astos.ai. If you are located in the EU or EEA, you may also have the right to lodge a complaint with your local supervisory authority. In Sweden, this is the Swedish Authority for Privacy Protection, Integritetsskyddsmyndigheten.

If you receive marketing emails from us, you can unsubscribe at any time by clicking the unsubscribe link or by contacting us at hello@astos.ai. Even if you opt out of marketing, we may still send service-related or transactional communications where necessary.

Our website or services may contain links to third-party websites or integrations. We are not responsible for the privacy practices of those third parties. We recommend reviewing their privacy policies separately.

Our website and services are not intended for children, and we do not knowingly collect personal data from children.

We may update this Privacy Policy from time to time. Any changes will be published on this page together with an updated revision date.

If you have questions about this Privacy Policy or our processing of personal data, contact: Astos AI AB Riddargatan 16 114 51 Stockholm Sweden hello@astos.ai