Ashlar logoAshlar
← Back to Ashlar

Privacy Policy

Last updated · June 2026

Ashlar ("we", "our", "us") is committed to handling personal data with discretion, transparency, and full alignment with the principles set out in the EU General Data Protection Regulation (GDPR) and equivalent privacy frameworks. This Privacy Policy describes what information we collect, how we use it, on what legal basis, and the rights you may exercise as a data subject.

1. Data Collection Architecture

The Ashlar website operates a minimal, intentional data footprint. The following categories of personal data may be captured exclusively through the Application Form infrastructure or direct correspondence:

  • Identity fields: full name, professional title, and brand handle.
  • Contact data: email address and, optionally, a preferred messaging handle.
  • Digital properties: URLs to public-facing accounts, websites, communities, and revenue surfaces voluntarily disclosed by the applicant.
  • Operational profile: self-reported audience size, monetization stage, and partnership intent.
  • Communication logs: message content exchanged between you and the Ashlar team.
  • Technical telemetry: aggregated, non-identifying analytics such as page views, session duration, and referrer source.

2. Data Utilization Protocol

All records submitted through the Services are processed lawfully, fairly, and transparently, exclusively for the purpose of vetting prospective partner applications and conducting the resulting commercial conversation. Data is never sold, brokered, rented, or otherwise transferred to third parties for marketing, profiling, or commercial enrichment.

Records are stored within isolated, access-controlled environments and are retained only for as long as is strictly necessary to evaluate, communicate, and — where applicable — onboard or formally decline an applicant. Inactive applications are purged on a rolling cycle in accordance with our internal retention schedule.

3. Legal Basis for Processing

  • Consent — provided when you voluntarily submit the application form.
  • Legitimate interest — to evaluate prospective partnerships and operate the Services.
  • Contractual necessity — when a partnership agreement is being negotiated or executed.

4. User Rights System

You may invoke the following rights at any time, free of charge, by contacting us through the form on the main site:

  • Right of access — request a copy of the personal data we hold about you.
  • Right of rectification — request that inaccurate or incomplete data be corrected.
  • Right of erasure — request the permanent deletion of your metadata files from our environment.
  • Right to restrict processing — request that we pause processing while a query is resolved.
  • Right to data portability — request a structured, machine-readable export of your data.
  • Right to withdraw consent — at any moment, without affecting the lawfulness of prior processing.
  • Right to lodge a complaint with the data-protection authority of your jurisdiction.

5. Security

We deploy industry-standard administrative, technical, and physical safeguards to protect personal data against unauthorized access, alteration, disclosure, or destruction. No system, however, is perfectly impermeable; you submit information at your informed discretion.

6. International Transfers

Where personal data is transferred outside the European Economic Area, such transfers are conducted under appropriate safeguards including Standard Contractual Clauses or equivalent mechanisms recognized by competent authorities.

7. Changes

We may update this Privacy Policy from time to time to reflect operational, legal, or regulatory developments. The "Last updated" date at the top reflects the most recent revision.