Privacy Policy.
Your data, sovereign.
Last updated: February 28, 2026. This policy outlines how StarsGathered as an organization handles data across all projects operating under its umbrella, in accordance with global privacy standards.
1. Organization-Level Data
StarsGathered collects minimal data at the organizational level to manage accounts, subscriptions, and project administration. This includes administrative emails, billing details, and metadata necessary for orchestration across multiple projects.
- Organization admin account credentials.
- Billing information for organizational subscriptions.
- Project metadata for orchestration and integration services.
2. Project Data Practices
Each project operating under StarsGathered may collect its own project-specific data, but all projects follow the organization's privacy and security standards. Users are informed about project-specific data collection in the respective project’s privacy policy, linked from this central policy.
3. Authentication & Cookies
To provide seamless authentication across multiple projects, we may use third-party services like Google OAuth. Basic profile information (name, email) may be shared across projects under StarsGathered for authentication purposes.
Third-Party OAuth
OAuth authentication may involve sharing minimal information with trusted third-party identity providers. This is strictly for account verification and login purposes.
Session Cookies
Essential session cookies are set to maintain login states and project access. These cookies are functional and are not used for tracking users outside the organization.
4. How Data is Used
Organizational and project data is used exclusively to maintain and improve user experience, orchestration, security, and multi-project collaboration. We do not sell personal or project-specific data to third parties, nor do we use private AI models for external training purposes.
5. Security Infrastructure
All projects adhere to strict security standards:
Zero-Knowledge Encryption
We cannot access your encrypted data. Master keys are held by users and administrators.
Multi-Project Orchestration Safety
All orchestration traffic between projects is tunneled through secure channels.
6. Your Rights
Under GDPR, CCPA, and other global privacy regulations, you have rights over both organizational and project-level data, including access, correction, or deletion. To exercise these rights, contact the organization’s privacy officer. For project-specific inquiries, links to project privacy officers are provided in each project’s documentation.