1. Who We Are

Asterion LLC ("Asterion," "we," "us," or "our") is a Dayforce consulting firm based in Salt Lake City, Utah, United States, providing services to clients across the United States, Canada, and Europe. This Privacy Policy explains how we handle personal information you provide through our website at asterionllc.io and related contact channels.

2. Information We Collect

We collect only what we need to respond to inquiries and deliver services. Specifically:

2.1 Information you provide to us directly

• Consultation and quote forms: name, company name, work email, phone number (optional), preferred contact method, the service area you're asking about, and the description you provide of your Dayforce environment or project.
• Email and phone contact: if you reach out to us at info@asterionllc.io or by phone, we receive whatever information you choose to share in that communication.
• Booking a consultation: when you click a "Schedule Consultation" link, you are redirected to Microsoft Bookings (operated by Microsoft Corporation). The information you provide there is collected and processed by Microsoft under its own privacy terms; we receive only the meeting details Microsoft passes back to us.

2.2 Information collected automatically

• Server logs: like most websites, our hosting infrastructure may record standard request information such as IP address, browser type, referring URL, and timestamps. These logs are used for security, debugging, and operational purposes.
• Session storage: we use a small amount of browser session storage to remember whether you have dismissed the mobile call-to-action banner. This is non-identifying and is cleared when you close your browser.
• No cookies, no analytics, no advertising trackers are currently set by Asterion on this site. If we add analytics or advertising tools in the future, we will update this policy and, where required, obtain consent.

2.3 Information we do not collect

• We do not knowingly collect information from children under 16.
• We do not collect special categories of personal data (such as health, biometric, or government identifier data) through this website.
• We do not sell personal information.

2.4 Asterion for Spreadsheets (our Excel add-in)

Asterion for Spreadsheets is a free Microsoft Excel add-in that builds Dayforce-compatible XML import files from your spreadsheet data. It is designed to keep your data private:

• Your spreadsheet and employee data never leave Excel. The add-in builds, validates, and delivers the import XML entirely on your own device and provides it to you by local download. This content is never transmitted to Asterion or to any server.
• Optional contact details only. The only information the add-in may send to Asterion is an optional contact form — your full name, work email, and company name — and only if you choose to submit it. You can skip it and still use the tool. This form is processed on our behalf by Netlify (Netlify Forms).
• How we use it: to contact you about the add-in and to send related product and marketing communications, from which you can unsubscribe at any time. We do not sell this information.

3. How We Use Information

We use the information you provide to:

• Respond to your inquiry and prepare a tailored quote or consultation agenda.
• Schedule and conduct consultations and follow-up communications.
• Deliver, support, and improve the consulting services you engage us for.
• Send occasional follow-up communications about your inquiry or active engagement. We do not add you to a marketing mailing list without your consent.
• Comply with legal obligations and enforce our agreements.

4. How We Share Information

We share personal information only as needed to operate the business. Specifically:

• Service providers: we use trusted vendors to host our website, process form submissions, and schedule meetings (for example, Microsoft for Outlook Bookings). These providers process information on our behalf under contractual privacy and security obligations.
• Legal compliance: we may disclose information if required by applicable law, regulation, legal process, or governmental request, or to protect our rights, property, or safety.
• Business transfers: if Asterion is involved in a merger, acquisition, or asset sale, your information may be transferred as part of that transaction. You will be notified of any such transfer and any resulting changes to this policy.
• We do not sell or rent your personal information to third parties for their own marketing or advertising purposes.

5. Data Retention

We retain personal information only as long as is reasonably necessary for the purposes for which it was collected, including to respond to your inquiry, perform contracted services, comply with legal and tax obligations, and resolve disputes. Inquiry data from prospects who do not become clients is typically deleted within 24 months of last contact, unless you ask us to keep it longer or applicable law requires a longer retention.

6. Data Security

We use reasonable administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, alteration, disclosure, and destruction. No method of transmission over the internet or electronic storage is fully secure, however, and we cannot guarantee absolute security. If we ever become aware of a security incident affecting your personal information, we will notify you and the appropriate regulators as required by law.

7. International Data Transfers

Asterion is based in the United States. If you are located in Canada, the European Economic Area, the United Kingdom, or another jurisdiction outside the United States, your personal information will be transferred to, stored, and processed in the United States. Where required by applicable law (including the GDPR and UK GDPR), we rely on appropriate transfer mechanisms — such as Standard Contractual Clauses and supplemental safeguards — to protect transferred data.

8. Your Rights

Depending on where you are located, you may have the following rights with respect to your personal information:

8.1 Rights for European Economic Area, United Kingdom, and Switzerland residents (GDPR / UK GDPR)

• Right to access, correct, or delete the personal information we hold about you.
• Right to restrict or object to certain processing.
• Right to data portability.
• Right to withdraw consent where processing is based on consent.
• Right to lodge a complaint with your local data protection authority.

The legal bases on which we process your information are typically: (a) your consent, (b) the performance of a contract with you, (c) compliance with a legal obligation, or (d) our legitimate interests in operating and improving our business, where those interests are not overridden by your rights.

8.2 Rights for California residents (CCPA / CPRA)

• Right to know what personal information we collect, use, disclose, and (if applicable) sell or share.
• Right to request deletion of personal information we have collected from you.
• Right to correct inaccurate personal information.
• Right to limit the use and disclosure of sensitive personal information (we do not currently collect categories that would trigger this right through this website).
• Right to non-discrimination for exercising any of these rights.

Asterion does not "sell" or "share" personal information as those terms are defined under the CCPA/CPRA.

8.3 Rights for Canadian residents (PIPEDA and provincial laws)

• Right to access the personal information we hold about you.
• Right to challenge the accuracy and completeness of that information and have it amended as appropriate.
• Right to withdraw consent, subject to legal and contractual restrictions.
• Right to file a complaint with the Office of the Privacy Commissioner of Canada or your provincial privacy commissioner.

8.4 How to exercise your rights

To exercise any of these rights, email us at info@asterionllc.io with the subject line "Privacy Request." We will respond within the time period required by applicable law (typically 30 days for GDPR requests and 45 days for CCPA requests, with possible extensions). We may need to verify your identity before fulfilling certain requests.

9. Children's Privacy

Our website and services are intended for business professionals and are not directed to children. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us and we will delete it.

10. Third-Party Links

Our website contains links to third-party services we rely on, such as Microsoft Bookings, LinkedIn, and our hosting provider. Once you leave our site, this Privacy Policy no longer applies. We encourage you to read the privacy policy of any third-party service you visit.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we do, we will revise the "Last updated" date at the top of this page. If the changes are material, we will provide a more prominent notice (for example, by email or via a homepage banner). Your continued use of our website after the effective date of the revised policy constitutes your acceptance of the changes.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, you can reach us at:

• Email: info@asterionllc.io
• Phone: (801) 859-8696
• Mail: Asterion LLC, Salt Lake City, UT, United States

This Privacy Policy is provided for general informational purposes and reflects our current data practices. It is not legal advice. If you have questions about how it applies to your situation, please consult qualified counsel.