What This Is
Cosmiclogy is an astrology platform that reads your birth chart to produce personal insights about who you are. To do that, we need information about you — your birth date, birth time, birth place, name, and email at minimum.
This policy explains what happens to that information the moment you hand it to us.
We are Cosmiclogy, operated by a team led by Ragesh Waikar, Founder, based at 21st Floor, Oberoi Commerz 2, International Business Park, Goregaon East, Mumbai 400063, India. When we say “we”, “us”, or “Cosmiclogy”, we mean the team. When we say “you”, we mean the person reading this, who has signed up or is thinking about signing up.
You provide your consent to this policy when you create an account. You can withdraw that consent at any time by deleting your account or by contacting us.
What We Collect
We collect only what we need to provide you with accurate readings and run your account.
Information you give us directly
- Account details: your name, email address, and password (stored encrypted — we never see your actual password).
- Birth data: your date of birth, time of birth, and place of birth — the foundation of every chart we calculate — together with your gender, which we use to tailor the language and framing of your readings.
- Mobile number (optional): you may choose to add your phone number from your account settings. We never require it. You can remove it at any time.
- Questions you ask: the messages you send to our Cosmic Council agents and the questions you ask the Cosmic Oracle are stored so you can return to them later.
Information we generate about you
- Your birth chart: calculated from your birth data using high-precision astronomical data.
- Your readings: the personalised text written for you by our AI agents.
- Your credit and purchase history: which reports you’ve unlocked, which plans you’ve purchased, your payment records.
Information we collect automatically
- Technical information: your IP address, browser type, device type, and operating system — used to detect your region for currency display and to keep the service secure.
- Session data: standard login sessions so you don’t have to sign in repeatedly.
What we do NOT collect
- Your credit card number. Payments are processed by Razorpay and PayPal. We never see or store card details.
- Your location beyond what’s needed for region detection. We do not track your movements.
- Data from third-party social media unless you sign in with Google (in which case we receive only your name and email from Google).
- Behavioural tracking for advertising. We do not sell data to advertisers. Ever.
Why We Collect It
Every piece of data we ask for has a specific purpose. Here it is, plainly:
| Birth data | To calculate your birth chart. Without this, there is no product. |
| Name & email | To create your account, send you payment confirmations, and let you sign in. |
| Password | To secure your account. Stored as a cryptographic hash — we cannot see it. |
| Mobile number | Optional. Used to provide support (by WhatsApp or phone) and for account recovery, if you provide it. |
| Payment records | To provide invoices, honour credit balances, and comply with tax law. |
| Chat history | So you can return to previous conversations with your agents. |
| IP & device data | To detect region for currency, prevent fraud, and keep the service running. |
Our legal basis (for EU/UK users)
Where EU or UK law applies, we process your data to perform our contract with you (providing readings and running your account), to comply with legal obligations (such as tax record-keeping), for our legitimate interests (security, fraud prevention, and product improvement), and with your consent where required (for example, an optional mobile number, or any future non-essential cookies). You can withdraw consent at any time.
How We Use It
We use your data for the following purposes, and no others:
- To provide your readings — calculating your chart, generating your reports, answering your questions via the Cosmic Council.
- To run your account — login, credit tracking, purchase history, invoices.
- To keep you informed — payment confirmations, important account notifications. We do not send marketing emails without your consent.
- To improve the product — aggregated, anonymised analysis of which features are used (never individual user tracking for profiling).
- To comply with the law — tax records, legal requests from Indian authorities.
- To prevent fraud and abuse — detecting suspicious login patterns, protecting the platform.
We will never use your data to build behavioural profiles for advertising, train external AI models outside our product, or predict your future purchases for third parties.
Who Else Sees It
We share data only with service providers who help us operate Cosmiclogy. Each of these providers is contractually required to protect your data and use it only for the purposes we’ve agreed to. Here is the complete list:
| Anthropic | AI model provider. Receives your birth chart data and questions when generating reports or chat responses. Does not use your data to train its models, and retains it only transiently for safety and abuse monitoring under its API terms. |
| Razorpay | Payment processor. Receives payment amount, currency, and order details to process your transactions. Handles all card data — we never see it. |
| PayPal | Payment processor for Human Voice sessions and Name Alignment. Receives payment details to process those bookings. |
| Calendly | Scheduling for Human Voice sessions. Receives your name, email, and booking details when you book a session. |
| Resend | Transactional email provider. Receives your email address and the contents of automated emails (receipts, confirmations, sign-in codes). |
| Zoho Mail | Hosts our support@ and privacy@ mailboxes. Receives the emails you send us and our replies. |
| Gmail (Google) | We send some email from a Gmail account (cosmiclogy@gmail.com). Google processes those messages. |
| WhatsApp (Meta) | Used to provide support when you contact us, or we contact you, by WhatsApp. Meta processes your phone number and the messages exchanged. |
| Google Identity | If you choose to sign in with Google, Google verifies your identity and shares your name and email with us. |
| Supabase | Database hosting. Stores your account and reading data on secure servers. |
| Railway | Application hosting. Runs the Cosmiclogy service and processes data in transit on secure servers. |
| Umami | Privacy-friendly website analytics (Umami Cloud, free tier). Collects only aggregate, anonymous usage data (page views, referrers, campaign source). Sets no cookies, stores no IP address, and does not identify you. |
| ImageKit | Image delivery network. Serves agent avatars and the Cosmiclogy logo. Does not receive personal data. |
| Google Fonts | Provides the typefaces you see on the site. Receives standard web traffic data (like any website visit). |
We do not sell, rent, trade, or otherwise disclose your personal data to anyone for any purpose other than those listed above. We never have. We never will.
Where your data goes
Cosmiclogy is operated from India, and many of our service providers are located outside your country — primarily in the United States (for example, Anthropic, PayPal, Calendly, Resend, Google, and WhatsApp/Meta), with database hosting in South Korea (Supabase) and website analytics in the European Union (Umami). This means your information may be processed in countries with data-protection laws different from your own. Wherever your data is processed, we require it to be handled in line with this policy.
If we are ever legally compelled to share data with Indian authorities, we will do so only when required by a valid court order and only to the extent legally mandated. We will notify you if this happens, unless prohibited by law.
How We Protect It
We treat your data the way we would want our own treated:
- Encryption in transit: all traffic between you and Cosmiclogy is encrypted using HTTPS/TLS.
- Encryption at rest: your data is stored on Supabase servers with encryption at the database level.
- Password protection: passwords are never stored in plain text. They are hashed using industry-standard algorithms.
- Access control: only authorised members of the Cosmiclogy team can access user data, and only when needed to provide support.
- Breach notification: in the unlikely event of a data breach, we will notify you by email as soon as we become aware of it, and we will notify the Data Protection Board of India and any other regulator within the timeframes required by law.
No online service can guarantee perfect security. But we commit to the highest standards we can practically implement, and to improving them as threats evolve.
Your Rights
You have the right to control your data. Specifically:
The right to know
You can ask us what personal data we hold about you. We will respond within a reasonable time, typically within a few days.
The right to correct
If any data we hold about you is wrong, you can correct it yourself in your Account settings, or ask us to correct it.
The right to delete
You can delete your Cosmiclogy account at any time from your Account settings. When you do:
- Your profile, birth data, chat history, and reading content are permanently deleted within 30 days.
- Payment records are retained for 7 years to comply with Indian tax law (this is a legal requirement, not a choice).
- Aggregated, anonymised analytics — data that cannot be traced back to you — may be retained indefinitely.
The right to nominate
You can nominate another person to exercise your rights on your behalf in the event of your death or incapacity.
The right to ask questions
If anything on this page is unclear or you have a concern about how your data is being handled, write to us at privacy@cosmiclogy.com. We read every message.
If you are in the EU, UK, or California, you also have rights under your local law — including access, correction, deletion, portability, restriction of processing, and the right to object to processing, as well as the right to lodge a complaint with your local supervisory authority. To exercise any of these, email privacy@cosmiclogy.com and we will respond within the timeframes your law requires.
If you are not satisfied with how we handle a request, you can escalate to our Grievance Officer (see Contact), and ultimately to the Data Protection Board of India.
How Long We Keep It
As long as your account is active, we keep your data so that we can serve you.
When you delete your account:
- Within 30 days: profile, birth data, chat history, and reading content are permanently deleted.
- For 7 years: payment and invoice records are retained as required by Indian tax law.
- Indefinitely: fully anonymised, aggregated data — the kind that cannot be linked back to you — may be retained for product analytics.
If you are inactive for a long period (more than 3 years) and we cannot reach you, we may delete your account to avoid holding data longer than needed. We will email you before doing so.
Children & Minors
Cosmiclogy is not intended for users under the age of 18. When you sign up, you must confirm that you are 18 or older, and we calculate your age from the birth date you provide — if you are under 18, you cannot create an account. Under India’s Digital Personal Data Protection Act, anyone under 18 is treated as a child whose data needs verifiable parental consent, so we limit Cosmiclogy to adults — and we want to do right by young people.
If you are a parent or guardian and believe your child has created an account without permission, please contact us at privacy@cosmiclogy.com and we will promptly delete the account and all associated data.
Cookies
We use only essential cookies — the kind needed to keep you logged in. We also remember basic preferences like your theme choice (dark or light mode), which is stored locally in your browser rather than in a tracking cookie.
We do not use:
- Advertising cookies
- Third-party tracking cookies
- Social media tracking pixels
- Behavioural profiling cookies
If this ever changes, we will update this policy and ask for your explicit consent before placing any non-essential cookies.
Changes to This Policy
Cosmiclogy is an evolving product. As we grow, add features, or expand to new regions, this policy may change.
When we make material changes — changes that affect what we collect, how we use it, or who sees it — we will:
- Update the “Last Updated” date at the top of this page.
- Email you at the address on your account.
- Post a notice in the app for at least 30 days before the changes take effect.
We will never make retroactive changes to data we have already collected. If a new policy requires your consent, we will ask before proceeding.
Contact
For any question, concern, or request related to your privacy, write to:
Email: privacy@cosmiclogy.com
For general support, use support@cosmiclogy.com.
We read every message. We respond thoughtfully, usually within a few days.
Grievance Officer (under India’s Digital Personal Data Protection Act, 2023)
Ragesh Waikar, Founder & Grievance Officer
Email: privacy@cosmiclogy.com
21st Floor, Oberoi Commerz 2, International Business Park, Goregaon East, Mumbai 400063, India
We acknowledge grievances within a few days and resolve them within the timelines required by law. If you remain unsatisfied, you may escalate to the Data Protection Board of India.