Security and privacy commitments
Astell's security and privacy commitments and what “controller vs processor” means when you connect integrations.
What privacy commitments does Astell make?
Astell's core commitments include:
- No data selling
- No AI training on your data
- Data minimization (process only what's needed to provide the service)
- Transparent practices around how data is handled
- User control, including easy data export and deletion
When I connect integrations, who is the controller and who is the processor?
You (or your organization) are the data controller (you decide what data to connect and how it should be used). Astell is the data processor, handling that data on your behalf and only to provide the Astell service. Astell does not access your data unless it's needed for troubleshooting — and only with your permission.
Learn more: Privacy Policy
Do you have a Data Processing Agreement (DPA)?
Yes, available for all customers. Email legal@labtwofour.com to request a signed DPA. Enterprise customers receive customized DPAs as part of their contract.
Can I get a copy of your security policies?
Enterprise customers can request detailed policy documentation via legal@labtwofour.com. This includes our information security policy, incident response procedures, and more.
How do I export all my data?
To learn more about how to export your user data, please go to "How to export your data". Enterprise customers may contact support@labtwofour.com for assistance with bulk exports or specific data formats.
Do you help complete vendor security questionnaires?
Yes. Email legal@labtwofour.com with your questionnaire. For complex assessments, calls can be scheduled, and supporting documentation is available.
What happens to my data if I delete my account?
All data is deleted within 14 days. Please see: Privacy Policy
Who do I contact for security and privacy questions?
Email: legal@labtwofour.com
Verwandte Artikel
Lernen Sie weiter mit diesen verwandten Hilfeartikeln