Skip to main content

Security

This section covers common security questions around Astrea.

Data on your devices

Astrea is designed to be a self-contained application, as such, it:

  • Only stores data on local devices or locations selected by the user(s) or organisation.
  • Has no network functionality during operation and does not send any data to a server. The network is only accessed for the initial authentication call.
  • Operates entirely in the browser or desktop application.

This means that your data or the data you are working with or on remains yours. We do not have access to it at any step of the way, by design.

Data transfer

Off-device data transfer

Astrea does not transfer data anywhere out of the application. All data produced, including confiuration files, app and exported data remains on the user(s) or organisations device or specified location.

Telemtry data definition

info

In future the application may transfer telemetry data off device.

Telemtry is data that is created as a result of the automatic processes ran by the system and remotely collected.

This data covers the following elements created by our application

  • Logging
  • Metrics
  • Events
  • Traces

These types of data are necessary to provide on-going maintainance, support and analysis for our applications.

warning

No data extracted by users will ever be transfered off the device.

Incoming data transfer

The application does not transfer any data to itself other than maintenance or self-update data. No advertising, auxillary applications or unsolicited data will ever be transfered.

Application maintainance

The application (depending on requirements/version) may self-update.

Web application

The web application is currently hosted on Azure servers in Sweden. During upgrades or maintainance the application will receive updates and data will be transfered to the application, but these updates will always be communicated with clear dates and change logs.

Desktop application

The desktop application is delivered as a self-contained application and as such, will only make authentication calls, but does not self-update.

Further information

info

For any further questions or queries, please reach out to our security team.