Privacy Policy

Last updated: 12 April 2026

This Privacy Policy explains how Astera Technology Limited (星澤科技有限公司) (“Astera”, “we”, “our”, “us”) collects, uses, discloses, and protects your personal data when you visit asteratek.com or engage us for services. Astera is committed to complying with the Personal Data (Privacy) Ordinance (Cap. 486) of the Hong Kong Special Administrative Region (“PDPO”).

Plain-English summary: We only collect what you voluntarily give us (name, email, phone, company, message). We use it solely to reply to your enquiry and deliver services you request. We don't sell it, we don't share it with ad networks, and we delete it when we no longer need it. You can email us any time to access, correct, or delete your data.

1. Personal data we collect

We collect personal data that you actively provide to us, including:

Contact form submissions: name, email address, phone number, company name, service interest, and the message content.
Direct communications: any information you share with us via email, WhatsApp, phone, or video calls.
Engagement records: during a client engagement, we may collect additional information necessary for project delivery (e.g. technical requirements, credentials to systems you authorize us to access).

We do not use tracking cookies, advertising pixels, fingerprinting, or third-party analytics that profile you across sites.

2. Purposes of use

Your personal data is used strictly for the following purposes:

Responding to your enquiry and scheduling consultations.
Negotiating, executing, and performing service agreements.
Providing on-going support, maintenance, and project communication.
Issuing invoices and complying with Hong Kong tax and accounting obligations.
Complying with legal, regulatory, or court requests.

We will not use your personal data for direct marketing without your explicit opt-in consent.

3. Legal basis for processing

Under the PDPO, we rely on your consent (provided when you submit the contact form and tick the consent checkbox) and on our legitimate interests in operating and growing a professional services business. For ongoing client engagements, the legal basis is the contract between you and Astera.

4. Retention

We retain contact enquiry data for up to 24 months from the last interaction, after which it is deleted or anonymized unless a service engagement is in progress. Engagement records (contracts, invoices, project correspondence) are retained for 7 years to comply with Hong Kong tax and accounting requirements, then deleted.

5. Transfers and disclosure

We do not sell, rent, or trade your personal data. We may disclose your personal data only in the following limited circumstances:

Service providers we rely on to operate: web hosting (Cloudflare Workers), email delivery, and accounting tools. Each service provider is bound by confidentiality and data-protection obligations, and processes data strictly on our instructions.
Legal obligation: where required by Hong Kong law, court order, or regulatory authority.
Business transfer: in the unlikely event that Astera's business is sold or merged, personal data may transfer to the successor entity under equivalent privacy protection.

Some of our service providers may store data on servers located outside Hong Kong. Where that is the case, we ensure equivalent data-protection standards are contractually required.

6. Security

We apply industry-standard safeguards: TLS/HTTPS for all traffic, encrypted storage, access controls on internal systems, and least-privilege credentials. No method of electronic storage is 100% secure, but we commit to maintaining proportionate and up-to-date protections and will notify affected individuals in the event of a material personal data breach.

7. Your rights under PDPO

You have the right to:

Request access to your personal data we hold.
Request correction of inaccurate data.
Withdraw consent and request deletion of your data (subject to legal retention obligations).
Lodge a complaint with the Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD).

To exercise any of these rights, email us at hello@asteratek.com with the subject line “PDPO request”. We will respond within 40 days as required by PDPO.

8. Cookies

This website does not use tracking or advertising cookies. Your browser may cache static assets (HTML, CSS, JavaScript, images) for performance — these are first-party technical caches, not cross-site identifiers, and do not contain personal data.

9. Children

Astera's services are aimed at businesses, and this website is not directed to individuals under 18. We do not knowingly collect personal data from minors.

10. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be reflected by a new “Last updated” date at the top of this page. Continued use of the site after an update constitutes acceptance of the revised policy.

11. Contact us

For any question about this Privacy Policy or your personal data, please contact:

Astera Technology Limited (星澤科技有限公司)
Email: hello@asteratek.com
Phone / WhatsApp: +852 5911 6351
Based in Hong Kong · Remote-first engagements