Skip to main content
Celestial
AstrologyFeaturesPricingFAQ
Sign In
Loading...
Loading page content...

Personal Data Processing Policy

1. General Provisions

This Personal Data Processing Policy (hereinafter — the Policy) has been developed in accordance with Federal Law No. 152-FZ dated 27.07.2006 "On Personal Data" and defines the procedure for processing and protecting personal data of users of the Sky Celestial platform (hereinafter — the Platform).

  • Data Controller: OOO "TRADE MARKET", TIN 7734715982, OGRN 1147746019068.
  • Controller's location: Russian Federation.
  • Contact email: privacy@sky-celestial.ru.
  • This Policy applies to all personal data that the Controller may receive from the data subject when using the Platform.

2. Legal Basis for Processing

Personal data is processed on the following legal grounds in accordance with Art. 6 of Federal Law No. 152-FZ:

  • Consent of the data subject (Art. 6, Part 1, Clause 1 of 152-FZ) — upon registration on the Platform.
  • Performance of a contract to which the data subject is a party (Art. 6, Part 1, Clause 5 of 152-FZ) — to provide paid services.
  • Fulfillment of obligations imposed on the controller by law (Art. 6, Part 1, Clause 2 of 152-FZ) — for accounting and tax purposes.
  • Processing of publicly available personal data (Art. 6, Part 1, Clause 10 of 152-FZ) — for data made public by the subject.

3. Categories of Personal Data Collected

The Controller processes the following categories of personal data:

  • Registration data: name, email address, password (in hashed form).
  • Data for astrological calculations: date, time, and place of birth, gender.
  • Payment data: transaction details, order number, amount (bank card data is processed by the Robokassa payment system and is not stored on the Controller's servers).
  • Technical data: IP address, browser type and version, operating system, cookies, data about actions on the Platform.
  • Correspondence data: content of support inquiries and AI assistant chat messages.

4. Purposes of Personal Data Processing

The Controller processes personal data exclusively for the following purposes:

  • User registration and identification on the Platform.
  • Provision of astrological services: natal chart calculations, horoscopes, compatibility analysis, and other features.
  • Payment processing and subscription management.
  • Providing technical support and responding to inquiries.
  • Improving service quality based on anonymized analytical data.
  • Fulfillment of obligations under Russian Federation law (accounting, tax reporting).
  • Ensuring information security of the Platform.

5. Processing Procedures and Conditions

Personal data is processed in compliance with the principles and rules established by 152-FZ:

  • Processing is carried out by automated means using computing equipment.
  • Personal data is not distributed or transferred to third parties without the subject's consent, except as provided by Russian Federation law.
  • Bank card data is processed by certified payment providers (Robokassa, NowPayments) in accordance with PCI DSS standards.
  • The Controller takes necessary organizational and technical measures to protect personal data from unauthorized access, destruction, modification, blocking, and other unlawful actions.

6. Personal Data Retention Periods

Personal data is stored no longer than required by the purposes of processing, unless otherwise established by law:

  • Account data — for the duration of the account and 30 days after deletion.
  • Payment and transaction data — 5 years from the date of the transaction (in accordance with Russian tax legislation requirements).
  • Consent records — 3 years from the date of obtaining consent (to confirm the fact of obtaining consent).
  • Technical logs (IP addresses, sessions) — 12 months.
  • Support correspondence — 1 year after the inquiry is closed.
  • Upon expiration of the retention period, data is destroyed within 30 days.

7. Data Subject Rights

In accordance with Chapter 3 of Federal Law No. 152-FZ, the data subject has the following rights:

  • Right to obtain information about the processing of their personal data (Art. 14 of 152-FZ).
  • Right to request clarification, blocking, or destruction of personal data if it is incomplete, outdated, or inaccurate (Art. 14 of 152-FZ).
  • Right to withdraw consent to personal data processing (Art. 9, Part 2 of 152-FZ) by sending a written notification to privacy@sky-celestial.ru.
  • Right to delete their account and all associated data through dashboard settings or by contacting support.
  • Right to receive personal data in a machine-readable format (JSON/CSV) — export is provided within 2 business days.
  • Right to appeal the Controller's actions or inaction to Roskomnadzor (rkn.gov.ru) or through the courts.

8. Consent Withdrawal Procedure

The data subject may withdraw consent to processing at any time:

  • Send a written request to privacy@sky-celestial.ru specifying your full name, account email, and request to cease processing.
  • Delete your account through "Settings" → "Delete Account" in your dashboard.
  • The Controller will cease processing within 30 days of receiving the request.
  • Withdrawal of consent does not affect the lawfulness of processing carried out before the withdrawal.
  • The Controller may continue processing if other legal grounds exist under Art. 6 of 152-FZ (e.g., contract performance or legal requirements).

9. Cross-Border Data Transfer

The Controller provides the following information regarding cross-border transfer of personal data:

  • Platform servers are located in the Russian Federation.
  • For AI services, request data may be transferred to OpenAI (USA) in anonymized form — without linking to a specific data subject.
  • Payment data is processed by payment providers in accordance with international PCI DSS security standards.
  • Data is transferred only to countries that provide adequate protection of data subject rights, or with the subject's consent (Art. 12 of 152-FZ).

10. Personal Data Protection Measures

The Controller takes the following organizational and technical measures to protect personal data in accordance with Art. 19 of 152-FZ:

  • Data encryption in transit (TLS 1.3) and at rest.
  • Role-based access control (RBAC) for personal data.
  • Regular software and security system updates.
  • Password hashing using bcrypt.
  • Logging of personal data processing activities for audit purposes.
  • Regular testing and evaluation of protection measure effectiveness.

11. Final Provisions

This Policy is a publicly available document and is published on the Platform at sky-celestial.ru/privacy.

  • The Controller reserves the right to amend the Policy. The current version is published on the Platform with the date of the last update.
  • Last updated: February 15, 2026.
  • For all questions regarding personal data processing, contact: privacy@sky-celestial.ru.
  • Support: support@sky-celestial.ru.