Privacy Policy
1) Scope and Definitions
Scope
This Privacy Policy applies to personal information we collect through:
Our websites and pages that link to this Privacy Policy
Our online store checkout and order processing
Digital content and access portals (including AIO Protocol access)
Marketing communications (email and SMS)
Customer support and community interactions (if offered)
Offline interactions where we link you to this Privacy Policy (for example, customer service)
Definitions
“Personal Information” generally means information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked to an individual or household.
“Sensitive Personal Information” (where applicable by law) may include precise geolocation, health-related information, government identifiers, and similar categories.
“Processing” means any operation performed on personal information, such as collecting, storing, using, disclosing, or deleting.
2) Personal Information We Collect
We collect information in three main ways: (A) you provide it to us, (B) we collect it automatically, and (C) we receive it from third parties.
A) Information you provide to us
Depending on how you interact with the Services, you may provide:
Contact information: name, email address, phone number, billing/shipping address
Account information (if you create an account): login credentials and profile details
Order and transaction information: products purchased, order history, subscription status, discount codes used
Payment information: payment method details (note: payment processing is typically handled by our payment processors; we generally do not store full payment card numbers)
Communications: messages you send to us (support requests, emails, chat messages), and records of our responses
User content: reviews, testimonials, survey responses, feedback submissions, and other content you post or upload
Preferences: product preferences, marketing preferences, and communication preferences
Wellness or goal information (optional): if you choose to share fitness goals, training frequency, dietary preferences, or similar information to personalize recommendations or protocols
B) Information collected automatically
When you use the Services, we may automatically collect:
Device information: device type, operating system, browser type, language settings
Usage information: pages viewed, clicks, time on site, referring/exit pages, session activity
Identifiers: IP address, cookie IDs, mobile ad IDs (where available), and similar identifiers
Approximate location: derived from IP address (not precise geolocation unless you explicitly enable it)
Analytics and performance data: information used to measure site performance and improve user experience
C) Information from third parties
We may receive information from:
Service providers that support our Services (ecommerce platform, payment processors, shipping carriers, email/SMS providers, analytics providers)
Advertising and social platforms (for example, if you interact with our ads)
Referral sources (if a friend refers you and you claim a referral incentive)
Fraud prevention providers (to protect transactions and reduce fraud)
3) How We Use Personal Information
We use personal information for the following business and commercial purposes:
A) Provide and operate the Services
Process orders, payments, shipments, returns, and exchanges
Provide digital product access (including AIO Protocol access and course progress tracking if enabled)
Manage subscriptions, including renewals, skips, cancellations, and account servicing
Provide customer support and respond to inquiries
B) Improve and personalize the Services
Understand how people use our Services
Improve site functionality, product pages, and checkout flow
Personalize content, product recommendations, or protocol recommendations (where offered)
C) Marketing and communications
Send emails you opted into, including promotions, product updates, and educational content
Send SMS messages if you opted in to SMS marketing
Provide order and service communications (transactional messages) such as confirmations and shipping updates
Maintain suppression lists for unsubscribes and opt-outs (so we honor your choices)
Marketing emails must provide an opt-out mechanism and we honor unsubscribe requests as required by law.
D) Security, fraud prevention, and legal compliance
Detect and prevent fraud, abuse, and security incidents
Enforce our Terms of Use and policies
Comply with legal obligations and respond to lawful requests
E) Research and internal operations
Internal reporting and forecasting
Product and customer experience research (aggregated or de-identified where feasible)
4) How We Disclose Personal Information
We may disclose personal information to the following categories of recipients:
A) Service providers and processors
We share personal information with vendors that help us run the Services, such as:
Ecommerce and storefront hosting
Payment processing and fraud prevention
Order fulfillment, shipping, and returns
Email delivery and SMS providers
Customer support platforms
Analytics and site performance tools
These providers are permitted to process personal information to perform services for us and are expected to protect it.
B) Advertising and analytics partners
We may share certain identifiers and usage data with analytics and advertising partners to:
Measure ad performance
Attribute conversions
Serve relevant ads and reduce irrelevant ads
This type of sharing may be considered “sharing” for cross-context behavioral advertising under certain privacy laws (for example, California). See Section 9 (Your U.S. State Privacy Rights).
C) Business transfers
If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, personal information may be disclosed as part of that transaction, subject to standard confidentiality protections.
D) Legal and safety disclosures
We may disclose information if required to do so by law, or if we believe disclosure is necessary to:
Comply with legal process
Protect our rights, property, and safety
Prevent fraud or abuse
Protect users or the public
E) With your direction
We may disclose information when you instruct us to do so (for example, when you share content publicly or connect third-party integrations).
5) Cookies, Tracking Technologies, and Similar Tools
We use cookies and similar technologies (such as pixels, SDKs, tags, and local storage) to:
Keep the site working (shopping cart, login sessions)
Remember preferences
Run analytics and improve performance
Measure advertising performance and optimize campaigns
Cookie choices
Depending on your location, you may have options to manage cookies through:
Cookie consent banners (where required)
Browser settings that allow you to block or delete cookies (note: some features may not work properly)
Platform-level privacy controls (such as Global Privacy Control, where recognized)
Third-Party Advertising and Analytics
We work with third-party partners to provide analytics services, deliver advertisements, and measure the performance of our marketing campaigns. To do this, we and our partners may use cookies, pixels, SDKs, and similar technologies to collect information about your activity on our Services, including device identifiers, IP address, browser and network information, pages viewed, links clicked, time spent on pages, and conversion information (such as purchases).
Meta Ads and Similar Technologies
We may use tools such as the Meta Pixel and related conversion measurement technologies to:
Understand which ads lead to purchases or other actions on our Services
Improve ad targeting and reduce irrelevant ads
Build audiences for advertising (for example, retargeting)
Depending on where you live, sharing certain information for targeted advertising may be considered “sale,” “sharing,” or “targeted advertising” under certain U.S. state privacy laws.
Your Targeted Advertising Choices
You may have the right to opt out of certain targeted advertising activities. Where required, we provide one or more of the following opt-out methods:
Cookie Preferences: You can manage cookies and similar technologies through our cookie preferences tool: [Insert Cookie Preferences Link] (if enabled).
Do Not Sell or Share: You can opt out of “sale” or “sharing” (as defined by applicable law) by visiting: [Insert “Do Not Sell or Share My Personal Information” Link].
Global Privacy Control (GPC): If you enable a recognized opt-out signal such as GPC, we will process it as a valid request to opt out of sale/sharing for the browser/device where the signal is enabled, where required by law.
Platform Controls: You may also be able to control ad personalization through settings provided by platforms (for example, Meta account ad settings).
Note: Opting out may not stop you from seeing ads, but it may make the ads less relevant.
6) Email and SMS Marketing
If you sign up for our email list through one of our forms, we clearly state you are signing up to receive marketing emails, announcements, promotions, etc. , we may send you marketing communications. You can unsubscribe at any time using the link in our emails. We honor opt-outs as required.
SMS (text messages)
If you opt in to receive marketing text messages:
You can opt out at any time by replying with a reasonable opt-out request (for example, “STOP”).
We will honor consent revocation requests within the timeframes required by applicable rules.
Message and data rates may apply. Message frequency may vary.
Important: Your SMS consent is not required as a condition of purchase.
7) User Content, Reviews, and Testimonials
If you submit reviews, testimonials, feedback, or other content:
You understand the content may be displayed publicly (for example, on product pages) if you submit it for public posting.
You should not include sensitive personal information in public submissions.
We may use feedback to improve products, protocols, and customer experience.
8) Data Retention and Security
Retention
We retain personal information for as long as reasonably necessary to:
Provide the Services
Maintain business records (for example, orders, returns, fraud prevention)
Comply with legal obligations
Resolve disputes and enforce agreements
Retention periods vary depending on the type of information and the reason we collected it.
Security
We use reasonable administrative, technical, and physical safeguards designed to protect personal information. However, no security system is perfect, and we cannot guarantee absolute security.
9) Your U.S. State Privacy Rights
Certain U.S. state privacy laws (including California) provide rights related to personal information. If you are a resident of a state with applicable privacy rights, you may have the right to:
Know/Access: request access to personal information we hold about you
Delete: request deletion of certain personal information
Correct: request correction of inaccurate personal information
Opt out of sale/sharing: request that we stop selling or sharing personal information (including for targeted advertising, where applicable)
Opt out of targeted advertising/profiling: where applicable by state law
Non-discrimination: you will not be unlawfully discriminated against for exercising privacy rights
California residents also have a right to opt out of the “sale or sharing” of personal information, and businesses must honor valid opt-out requests.
How to submit a request
You (or your authorized agent, where permitted) may submit a request by:
Email: support@tryastrand.com
We may need to verify your identity before fulfilling certain requests.
Do we “sell” personal information?
ASTRAND does not sell personal information for money.
However, we may share certain identifiers and browsing activity with advertising partners to measure and improve advertising. Under some laws (including California), this may be considered “sharing” for cross-context behavioral advertising. If required, we provide a “Do Not Sell or Share My Personal Information” mechanism.
Global Privacy Control
Where required, we will treat browser-based opt-out signals (such as Global Privacy Control) as valid opt-out requests.
United States Regional Privacy Notice
If you are a resident of a U.S. state with an applicable privacy law (including California), you may have rights to access, delete, correct, and opt out of certain processing, including targeted advertising and “sale/sharing” (as defined by law).
Categories of Personal Information We Collect
We may collect the following categories of personal information (examples listed):
Identifiers: name, email address, phone number, IP address, cookie IDs
Commercial information: products purchased, order history, subscription status
Internet or network activity: pages viewed, clicks, time on site, referral URLs, conversion events
Geolocation data: approximate location derived from IP address
Customer communications: messages to support, survey responses, feedback/reviews
Inferences: preferences or interests inferred from your interactions with our Services (for example, which stacks you view most)
Sources of Personal Information
We collect personal information from:
You (when you purchase, sign up, or contact us)
Your device/browser (automatically through cookies/pixels)
Service providers and partners (for example, payment processors, shipping carriers, analytics and advertising partners)
Business/Commercial Purposes
We collect and use personal information for:
Providing and operating the Services (orders, fulfillment, subscriptions, digital access)
Customer support
Security and fraud prevention
Analytics and site improvement
Marketing and advertising (including targeted advertising where permitted)
Categories of Personal Information Disclosed
In the last 12 months, we may have disclosed the categories above to the following categories of recipients:
Service providers (ecommerce platform, payment processors, shipping/fulfillment, customer support)
Analytics providers
Advertising partners (including providers that help measure ad performance)
“Sale” / “Sharing” of Personal Information
ASTRAND does not sell personal information for money. However, we may share certain identifiers and internet activity information with advertising partners for targeted advertising and measurement. Under some state laws, this may be considered a “sale” or “sharing.”
You can opt out using the methods described in Your Targeted Advertising Choices above, including via Global Privacy Control (GPC) where required.
10) International Users (EEA/UK and Similar Regions)
If you are located in the European Economic Area (EEA), the United Kingdom, or another region with data protection laws, you may have rights such as access, correction, deletion, portability, restriction, and objection, depending on the legal basis for processing.
Legal bases (examples)
When applicable, we process personal information based on:
Contract: to fulfill orders and provide Services
Legitimate interests: to secure and improve Services, prevent fraud, and understand performance
Consent: for marketing communications and certain cookies (where required)
Legal obligation: to comply with laws and regulations
International transfers
If we transfer personal information internationally, we use appropriate safeguards (such as contractual protections) as required by law.
11) Sensitive Information and Health-Related Information
We do not require sensitive personal information to use our Services.
If you voluntarily provide wellness or goal-related information (for example, training schedule or dietary preferences), we use it to support the Services you requested (such as recommendations or protocol guidance).
Do not submit medical diagnoses, lab results, or other sensitive health information unless specifically requested by an official ASTRAND feature that clearly explains why it is needed and how it will be used.
12) Third-Party Links and External Sites
Our Services may include links to third-party websites or services. We are not responsible for the privacy practices of third parties. We encourage you to review their privacy policies before providing information.
13) Children’s Privacy
The Services are not intended for children under 18, and we do not knowingly collect personal information from children under 18. If you believe a child has provided us information, contact us and we will take appropriate steps to delete it.
You must be at least 18 years old to purchase.
14) Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will post the updated version on this page and update the “Last Updated” date above. If changes are material, we may provide additional notice (for example, by email or prominent website notice).
15) Accessibility
We are committed to making our Services and this Privacy Policy accessible. If you need this Privacy Policy in an alternative format, contact us at support@tryastrand.com.
16) Contact Us
If you have questions, requests, or concerns about this Privacy Policy or our privacy practices, contact: support@tryastrand.com.

