Last updated: February 1, 2025
This Cookie Policy explains how Astra Bastion (“we”, “us”, “our”) uses cookies and similar tracking technologies on the ASTRA BASTION platform.
Cookies are small text files stored on your device when you visit a website. They help us recognize your browser, remember your preferences, and understand how you interact with the ASTRA BASTION platform. We also use similar technologies such as local storage and session storage to provide a seamless experience.
We use the following categories of cookies: Strictly Necessary Cookies (session management, authentication tokens, CSRF protection), Functional Cookies (language preferences, dashboard layout settings, theme selection), Analytics Cookies (platform usage patterns, feature adoption metrics, performance monitoring), and Security Cookies (device fingerprinting for anomaly detection, multi-factor authentication persistence).
These cookies are essential for the ASTRA BASTION platform to function. They include session identifiers for authenticated access, CSRF tokens for request validation, load-balancer affinity cookies, and tenant isolation tokens for multi-tenant security. These cookies cannot be disabled without breaking core platform functionality.
We use analytics cookies to understand how users interact with the platform, measure feature adoption and usability, identify performance bottlenecks, and improve the overall user experience. Analytics data is aggregated and anonymized. We do not use third-party advertising trackers. Our analytics infrastructure is self-hosted to maintain data sovereignty.
ASTRA BASTION minimizes the use of third-party cookies. Where required, we use cookies from identity providers (Okta, Microsoft Entra ID) for Single Sign-On (SSO), payment processors for subscription management, and support tools for live chat and ticketing. Each third-party cookie is governed by the respective provider's cookie policy.
Session cookies are deleted when you close your browser. Persistent cookies remain on your device for a defined period: authentication cookies expire after 24 hours of inactivity, preference cookies are retained for up to 12 months, and analytics cookies expire after 13 months in compliance with regulatory guidance.
You can control cookies through your browser settings. Most browsers allow you to block or delete cookies, set preferences for specific websites, and browse in private or incognito mode. Please note that disabling strictly necessary cookies will prevent you from using the ASTRA BASTION platform. You can also manage cookie preferences through the platform's settings panel.
When you first visit the ASTRA BASTION platform, we present a cookie consent banner that allows you to accept or reject non-essential cookies. Your consent choice is stored and respected across sessions. You may update your cookie preferences at any time from the platform footer or your account settings.
All cookie data is encrypted in transit using TLS 1.3. We do not store sensitive personal information directly in cookies. Session tokens are cryptographically signed and validated server-side. Cookie data is never shared with advertisers or data brokers.
We may update this Cookie Policy to reflect changes in our practices or applicable regulations. Material changes will be communicated via an in-platform notification or updated consent banner. We encourage you to review this policy periodically.
For questions about our use of cookies or this policy, contact our Data Protection Officer at privacy@astrafintechlabs.com or write to: Astra Bastion, Bangalore, India.